Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

Super Amazon Banners Plugin Gone Rogue

  • Krasimir Konov
  • March 26, 2019
During a recent investigation we found the plugin Super Amazon Banners to be serving malware/spam via the domain seoranker[.]info. We suspect that the domain expired…
Read the Post
How to Choose a Website Security Provider
  • Security Advisory
  • Security Education
  • Website Security

How to Choose a Website Security Provider

  • Josh Hammer
  • March 25, 2019
As more people are creating websites and becoming aware of website security, companies are popping up everywhere to help with the problem. And just like…
Read the Post
Labs Note
  • Sucuri Labs
  • Vulnerability Disclosure
  • Website Malware Infections
  • WordPress Security

Multi-Vector Attack in Server Logs

  • John Castro
  • March 25, 2019
We recently noticed an increase on suspicious requests in our logs which reveal a planned attack against the Social Warfare plugin. Bad actors added this…
Read the Post
Stored XSS in MyBB
  • Vulnerability Disclosure
  • WordPress Security

Zero-Day Stored XSS in Social Warfare

  • Marc-Alexandre Montpas
  • March 21, 2019
A zero-day vulnerability has just appeared in the WordPress plugin world, affecting over 70,000 sites using the Social Warfare plugin. The plugin is vulnerable to…
Read the Post
WordPress Vulnerability Detail
  • Vulnerability Disclosure
  • WordPress Security

0day Vulnerability in Easy WP SMTP Affects Thousands of Sites

  • Marc-Alexandre Montpas
  • March 21, 2019
The Easy WP SMTP plugin authors have released a new update, fixing a very critical 0day vulnerability. When leveraged, this vulnerability gives unauthenticated attackers the…
Read the Post
More on Dnsden[.]biz Swipers and Radix Obfuscation
  • Website Malware Infections
  • Website Security

More on Dnsden[.]biz Swipers and Radix Obfuscation

  • Denis Sinegubko
  • March 19, 2019
After recent publication of the Uncommon Radixes Used in Malware Obfuscation article, we found an interesting Twitter thread involving @EKFiddle and @Ledtech3 #EKFiddle [Regex update]:…
Read the Post
Arbitrary Directory Deletion in WP-Fastest-Cache
  • Vulnerability Disclosure
  • Website Security
  • WordPress Security

Arbitrary Directory Deletion in WP-Fastest-Cache

  • Marc-Alexandre Montpas
  • March 18, 2019
The WP-Fastest-Cache plugin authors released a new update, version 0.8.9.1, fixing a vulnerability (CVE-2019-6726) present during its install alongside the WP-PostRatings plugin. According to seclists.org:…
Read the Post
Uncommon Radixes Obfuscation
  • Website Security

Uncommon Radixes Used in Malware Obfuscation

  • Denis Sinegubko
  • March 15, 2019
Some JavaScript features allow for pretty interesting obfuscation techniques. For example, did you know that virtually any English word can be used as a valid…
Read the Post
Stored XSS in MyBB
  • Vulnerability Disclosure
  • WordPress Security

Insufficient Privilege Validation in SiteGround Optimizer & Caldera Forms Pro

  • Marc-Alexandre Montpas
  • March 13, 2019
While investigating the SiteGround Optimizer and Caldera Forms Pro plugins we have discovered a critical privilege escalation vulnerability. It was not being abused externally and…
Read the Post
PCI Compliance
  • Ecommerce Security
  • Security Advisory
  • Security Education
  • Website Security

PCI for SMB: Requirement 10 & 11 – Regularly Monitor and Test Networks

  • Victor Santoyo
  • March 11, 2019
Update: Read our new PCI Compliance guide. Welcome to the seventh post of a series on understanding the Payment Card Industry Data Security Standard–PCI DSS.…
Read the Post
Women in Tech
  • Sucuri Updates
  • Website Security

Spotlight on Women in Cybersecurity

  • Juliana Lewis
  • March 8, 2019
Sucuri is committed to helping women develop their careers in technology. On International Women’s Day, Sucuri team members share their insights into working in cybersecurity.…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top

'