Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
Sucuri Blog
  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Multi-Site plans
    • Custom & Enterprise Plans
    • Partnerships
  • Features
    • Detection
      Website Monitoring & Alerts
    • Protection
      Future Website Hacks
    • Performance
      Speed Up Your Website
    • Response
      Help For Hacked Websites
    • Backups
      Disaster Recovery Plan
  • Resources
    • Guides
    • Webinars
    • Infographics
    • Blog
    • SiteCheck
    • Reports
    • Email Courses
  • Pricing
  • Immediate Help
  • Login
  • Immediate Help
Login
Login

New Customer?

Sign up now.
  • Submit a ticket
  • Knowledge base
  • Chat now
Stored XSS in MyBB
  • Vulnerability Disclosure
  • Website Malware Infections
  • Website Security

Stored XSS in MyBB <= 1.8.20

  • Marc-Alexandre Montpas
  • June 11, 2019
The open source PHP forum software myBB recently published a new update, version 1.8.21. This is a security release fixing a Stored XSS vulnerability in…
Read the Post
FTP Logs Used to Determine Attack Vector
  • Security Advisory
  • Website Security

FTP Logs Used to Determine Attack Vector

  • Krasimir Konov
  • June 10, 2019
Logs can be very useful because they are a record of what was done by whom. They are especially useful when you need to find…
Read the Post
Korean Gambling and Call Girl Spam on Hacked and Non-hacked Sites
  • Website Malware Infections
  • Website Security
  • WordPress Security

Korean Gambling and Call Girl Spam on Hacked and Non-hacked Sites

  • Denis Sinegubko
  • June 7, 2019
This blog post talks about how a web spam campaign that targets only one country may create problems for sites owners around the world —…
Read the Post
WordPress Vulnerability Detail
  • Vulnerability Disclosure
  • WordPress Security

OS Command Injection in WP-Database-Backup

  • Marc-Alexandre Montpas
  • June 4, 2019
On May 28th, a critical OS Command Injection vulnerability affecting the WP-Database-Backup plugin  was disclosed to the public by the Wordfence team. This is a…
Read the Post
  • Ecommerce Security
  • Website Malware Infections
  • Website Security

Closed Source E-commerce Platforms Can Be Compromised

  • Krasimir Konov
  • June 3, 2019
These days, the majority of store owners opt-in for the easiest closed-source ecommerce platform options. For the most part, these platforms typically allow users to…
Read the Post
WordPress Hacks: 5 Ways to Protect WordPress from Hacking
  • Security Education
  • Website Security
  • WordPress Security

WordPress Hacks: 5 Ways to Protect WordPress from Hacking

  • Dutch Hill
  • May 31, 2019
WordPress is one of the most popular content management systems (CMS) out there. That’s why it is vital to prevent WordPress hacking. Statistically, over 33%…
Read the Post
Labs Note
  • Website Malware Infections
  • Website Security

Malware-Serving Spam to Search Engine Bots

  • Krasimir Konov
  • May 31, 2019
We recently discovered this malware with a list of IP ranges belonging to search engines that are serving them SEO spam. It even takes a…
Read the Post
PHP Backdoor Evaluates XOR Encrypted Requests
  • Website Malware Infections
  • Website Security

PHP Backdoor Evaluates XOR Encrypted Requests

  • Luke Leal
  • May 29, 2019
In the past, we’ve mentioned how the PHP XOR bitwise operator (represented by the caret ^) can be used to encrypt a malware’s source code.…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

Malware Campaign Evolves to Target New Plugins: May 2019

  • John Castro
  • May 28, 2019
A long-lasting malware campaign targeting deprecated, vulnerable versions of plugins continues to be leveraged by attackers to inject malicious scripts into affected websites. Easily automated…
Read the Post
Return to the City of Cron - Malware Infections on Joomla and WordPress
  • Joomla Security
  • Website Security
  • WordPress Security

Return to the City of Cron – Malware Infections on Joomla and WordPress

  • Luke Leal
  • May 27, 2019
We recently had a client that had a persistent malware infection on their shared hosting environment that would re-infect the files quickly after we had…
Read the Post
Labs Note
  • Sucuri Labs
  • Website Malware Infections
  • WordPress Security

Threat intelligence gathering from slight changes in malicious code samples

  • Luke Leal
  • May 24, 2019
We found the following PHP backdoor in August 2018 along with other malware samples uploaded after hackers exploit a specific vulnerable WordPress plugin covered in…
Read the Post
Search
Sucuri Sidebar Malware Removal to Signup Page
Sucuri Logo

Let’s Connect

Products
Website Firewall Website Security Platform WordPress Security Website Backups Hack Assistance Pricing
Solutions
DDoS Protection Malware Detection Malware Removal Malware Prevention Blacklist Removal SEO Spam Removal
USE CASES
Developers Ecommerce Agency Plans Enterprise Services HTTPS/2 Virtual Patching
Support
Knowledge Base SiteCheck Guides Research Labs Report Abuse Status Report
Company
About Sucuri Contact Blog Referral Partners Testimonials
Terms of Use Privacy Policy Do Not Sell My Personal Information Frequently Asked Questions

© 2025 GoDaddy Mediatemple, Inc., d/b/a Sucuri. All rights reserved.

back to top