PCI for SMB: Requirement 9 – Implement Strong Access Control Measures
Victor Santoyo Update: Read our new PCI Compliance guide. Welcome to the sixth post of a series on understanding the Payment Card Industry Data Security Standard–PCI DSS.…
Real-Time Fine-Tuning of the WAF via API
Northon Torga Though the Sucuri Firewall is simple to set up and protects your website immediately, it’s possible to have granular control of the WAF by using…
Hackers Change WordPress Siteurl to Pastebin
Denis Sinegubko Last Friday, we reported on a hack that used a vulnerability in the popular WP GDPR Compliance plugin to change WordPress siteurl settings to erealitatea[.]net.…
Erealitatea[.]net Hack Corrupts Websites with WP GDPR Compliance Plugin Vulnerability
Pedro Peixoto We have noticed a growing number of WordPress-based sites that have had their URL settings changed to hxxp://erealitatea[.]net. Further investigations show that the issue is…
Website Security Best Practices: 10 Tips to Keep Your Site Safe
Keir Desailly Having a website has become easier than ever due to the proliferation of great tools and services in the web development space. Content management systems…
New WordPress Security Email Course
Rianna MacLeod Recent statistics show that over 32% of website administrators across the web use WordPress. Unfortunately, the CMSs popularity comes at a price — attackers often…
Website Security Tips for Marketers
Alycia Mitchell In our previous post, we have discussed why marketers should have a proactive approach to website security. Today we are going to discuss some security…
Fake Wp.org/jquery.js
There is a long-lasting malware campaign (dating back to at least 2016) that injects fake jQuery scripts: <script type=”text/javascript” src=”hxxps://www.XX[X]wp[.]org/jquery.js”></script> Where XX[X] are 2 or…
Web Marketers Should Learn Security
Most online marketers think of themselves as T-shaped individuals. The theory behind this concept is that individuals possess a wide range of skills, with some…
Saskmade[.]net Redirects
Earlier this week, we published a blog post about an ongoing massive malware campaign describing multiple infection vectors that it uses. This same week, we…
OWASP Top 10 Security Risks – Part II
Gerson Ruiz It is National Cyber Security Awareness Month and in order to bring awareness to what threatens the integrity of websites, we have started a series…