A vast majority of website malware employ the ever-familiar HTTP/HTTPS protocols for its malicious activities. But, we also periodically confront more interesting hybrid malware leveraging…
Conducting an external website scan for indicators of compromise is one of the easiest ways to identify security issues. While remote scanners may not provide…
Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…
Even the most diligent site owners should consider when they had their last website security check. As our own research indicates, infections resulting from known…
This investigation started with a small and quite simple piece of PHP malware found on a hacked website. We located the following PHP code, responsible…
During a recent investigation, our malware remediation team encountered a variant of a common malware injection that has been active since at least 2017. The…