Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

PHP Dropper Concealed in Malicious WordPress Plugin

  • Luke Leal
  • January 30, 2020
Moe Obaid – an analyst from our Remediation Team – recently found a PHP dropper that had been installed as a malicious WordPress plugin. Unlike…
Read the Post
Labs Note
  • Joomla Security
  • Sucuri Labs
  • Vulnerability Disclosure
  • Website Malware Infections
  • Website Security

Stored XSS in Elementor

  • Marc-Alexandre Montpas
  • January 29, 2020
During a routine audit of WordPress plugins last december, we discovered a Stored XSS vulnerability in the very popular Elementor Page Builder plugin, which powers…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

Vulnerabilities Digest: January 2020

  • John Castro
  • January 28, 2020
Fixed Plugins and Vulnerabilities Plugin Vulnerability Patched Version Installs InfiniteWP Client Login bypass 1.9.4.5 300000 ListingPro Reflected XSS 2.5.4 13000 Travel Booking Stored XSS 2.7.8.6…
Read the Post
Hacked Website Threat Report 2019
  • Drupal Security
  • Ecommerce Security
  • Joomla Security
  • Magento Security
  • Security Education
  • Sucuri
  • Website Malware Infections
  • Website Security
  • WordPress Security

Hacked Website Threat Report – 2019

  • Rianna MacLeod
  • January 28, 2020
The threat landscape for website owners is constantly shifting on a regular basis — and it’s becoming increasingly more complex. As attackers continue to develop…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

Webshell in Fake Plugin /blnmrpb/ Directory

  • Luke Leal
  • January 27, 2020
Our team recently discovered a web shell attempting to hide within a fake WordPress plugin directory wp-content/plugins/blnmrpb/. Inside this fake plugin directory were only two…
Read the Post
Web Swiper in Image Title
  • Ecommerce Security
  • Magento Security
  • Website Malware Infections
  • Website Security

Web Swiper in Image Title

  • Denis Sinegubko
  • January 27, 2020
Cybercriminals regularly try a variety of approaches to hide their malicious code — web skimmers are well known for using all sorts of obfuscation and…
Read the Post
  • Security Education
  • Web Pros
  • Website Security

Personal Online Security – Account Management

  • Victor Santoyo
  • January 24, 2020
Continuing a series on how to better strengthen your personal online privacy, we are looking to take personal inventory of how we connect online. These…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

Backdoor Found in Compromised WordPress Environment

  • Luke Leal
  • January 23, 2020
Our security analyst Ben Martin recently came across a backdoor in a compromised WordPress installation that had been injected into the first line of the…
Read the Post
Fake AmeriCommerce Shopping Cart
  • Ecommerce Security
  • Website Malware Infections
  • Website Security

Fake AmeriCommerce Shopping Cart

  • Denis Sinegubko
  • January 23, 2020
Our malware analyst Liam Smith recently found malware on a client’s site that targets ecommerce sites powered by AmeriCommerce software. A popular ecommerce software solution…
Read the Post
Down the Malware Rabbit Hole Part 2
  • Ecommerce Security
  • Website Security
  • WordPress Security

Malicious JavaScript Used in WP Site/Home URL Redirects

  • Luke Leal
  • January 21, 2020
Our team recently found a malicious JavaScript injection within the WordPress index.php theme file on a compromised WordPress website which ultimately redirects site visitors to…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • Website Security

Simple WAF Evasion Backdoor

  • Luke Leal
  • January 17, 2020
Our team recently located a malicious PHP file on a compromised website which claims to evade web application firewalls, with the intention of downloading a…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top