Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

Malware Campaign Evolves to Target New Plugins: May 2019

  • John Castro
  • May 28, 2019
A long-lasting malware campaign targeting deprecated, vulnerable versions of plugins continues to be leveraged by attackers to inject malicious scripts into affected websites. Easily automated…
Read the Post
Return to the City of Cron - Malware Infections on Joomla and WordPress
  • Joomla Security
  • Website Security
  • WordPress Security

Return to the City of Cron – Malware Infections on Joomla and WordPress

  • Luke Leal
  • May 27, 2019
We recently had a client that had a persistent malware infection on their shared hosting environment that would re-infect the files quickly after we had…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

Threat intelligence gathering from slight changes in malicious code samples

  • Luke Leal
  • May 24, 2019
We found the following PHP backdoor in August 2018 along with other malware samples uploaded after hackers exploit a specific vulnerable WordPress plugin covered in…
Read the Post
.Htaccess Injector on Joomla and WordPress Websites
  • Joomla Security
  • Website Security
  • WordPress Security

.htaccess Injector on Joomla and WordPress Websites

  • Eugene Wozniak
  • May 23, 2019
During the process of investigating one of our incident response cases, we found an .htaccess code injection. It had been widely spread on the website,…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • Website Security

Hosting page templates causing your website ad campaign to be blocked

  • Cesar Anjos
  • May 22, 2019
It’s quite common that hosting providers have templates set for pages like 40x and 50x error pages but it’s uncommon for those templates to have…
Read the Post
WordPress Vulnerability
  • Vulnerability Disclosure
  • Website Security
  • WordPress Security

Slimstat: Stored XSS from Visitors

  • Antony Garand
  • May 21, 2019
The WordPress Slimstat plugin, which currently has over 100k installs, allows your website to gather analytics data for your WordPress website. It will track certain…
Read the Post
W97M/Downloader Malware Dropper Served from Compromised Websites
  • Website Malware Infections
  • Website Security

W97M/Downloader Malware Dropper Served from Compromised Websites

  • Bruno Zanelato
  • May 20, 2019
W97M/Downloader is part of a large banking malware operation that peaked in March 2016. Bad actors have been distributing this campaign for well over a…
Read the Post
Top 10 Website Hardening Steps
  • Security Education
  • Web Pros
  • Website Security

Who is Responsible for the Security of Your Website?

  • Josh Hammer
  • May 17, 2019
On a daily basis at Sucuri, we hear things like: “My host takes care of my website security.” “I have never been hacked, so why…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • Website Security

Hex’ing the CSS Style Attribute for Black Hat SEO

  • Ahmad Azizan Idris
  • May 16, 2019
Dealing with Black Hat SEO injections on our daily operation is always fun and challenging at the same time. One day, we may work with…
Read the Post
WordPress Vulnerability
  • Vulnerability Disclosure
  • Website Security
  • WordPress Security

Persistent Cross-site Scripting in WP Live Chat Support Plugin

  • John Castro
  • May 15, 2019
During a routine research audits for our Sucuri Firewall, we discovered an Unauthenticated Persistent Cross-Site Scripting (XSS) affecting 60,000+ users of the  WP Live Chat…
Read the Post
WordPress Vulnerability
  • Vulnerability Disclosure
  • Website Security
  • WordPress Security

WordPress Plugin Give – Stored XSS for Donors

  • Antony Garand
  • May 15, 2019
​​Give is a WordPress plugin which allows users to setup a donation page on a website. It currently has 60k installs. ​​During a recent audit…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top

'