Protecting Phishing Pages via .htaccess
Yuliyan Tsvetkov Phishers usually want to protect their pages from being detected by search engines and security companies. To achieve that, they add .htaccess files that deny…
A Simple Prestashop Login Swiper
Conrado Torquato In a compromised environment, attackers may inject malicious code into different files, including the core of different CMSs, in order to maintain access to the…
Evolution of Conditional Spam Targeting Drupal Sites
Cesar Anjos Last year we took a look at how attackers were infecting Drupal installations to spread their spam and keep their campaigns going by just including…
Phishing the Right Phish
Fernando Barbosa Social engineering techniques, like phishing, can be powerful in persuading users into performing specific actions or disclosing confidential information. In these types of scenarios, attackers…
SQL Injection Vulnerability in WP Statistics
John Castro Update 11/3/2017: We are always looking for the latest to be shared with you and now we have released our WordPress Security Guide, were you…
Personal Security Guide – Windows and macOS
Caleb Lane For the fourth installment of our personal security guides, we are covering how to secure your computer. This includes current versions of Mac (Sierra) and…
Spotlight: Security for List25, a Popular Entertainment Website
Nikki Gerren For a website initially created to be just an experiment, it’s a pretty big deal to hit two major milestones, though it didn’t happen overnight.…
Unwanted “Shorte St” Ads in Unpatched Newspaper Theme
Unwanted ads are one of the most common problems that site owners ask us to solve. Recently, we’ve noticed quite a few requests to remove…
Yet Another Expired Domain causes WP Plugin to Redirect Users
Krasimir Konov Malicious redirects are very common in compromised websites. Attackers try to take advantage of the site resources to promote spam, distribute other malware/backdoors, and perform…
When Your Plugins Turn Against You
Every day we face countless cases of sites getting compromised and infected by an attacker. From there, the sites can be used for various operations…
Undesired Redirects
Whether it is your own or a website you are visiting, undesired redirects and pop-ups are always annoying. The situation gets worse when your visitors…