Expired Domain Leads to WordPress Plugin Redirects
Krasimir Konov A malicious redirect is a snippet of code used by attackers with the intention of redirecting visitors to another site; a very common tactic seen…
Evasion Techniques in Phishing Attacks
Fernando Barbosa We all know that we shouldn’t click on links from sketchy looking emails. But what if the website you’re viewing takes you to a spoofed…
Small One-liner Backdoor
Samuel Odendaal During an incident response investigation, we detected an interesting backdoor that was small but had the potential to give the attacker full access to your…
Personal Security Guide – iOS/Android
Caleb Lane We’ve covered a lot of personal security practices, but many people forget how important it is to secure mobile devices, which are riddled with personal…
JavaScript Used to Generate Malicious Documents
When talking about compromised environments, we often think that the website itself is the end goal but that’s not always true. In some cases, attackers…
Decoding Complex Malware – Step-by-Step
Rodrigo Escobar When cleaning websites, one of the most complicated parts of our job is ensuring we find all backdoors. Most of the time, attackers inject code…
How to Restore Website Backups from the Command Line
Gerson Ruiz Earlier this week we wrote about how to use command line tools to back up your website. Check out our previous article for details on…
Mobile Malware Targets eCommerce Websites & Users
Moe O A mobile malware is a malicious software that targets mobile/smartphones, tablets and similar devices. The attacks may vary from fatal damage to the OS (bricking)…
How to Create Website Backups Using Command-line Tools
Creating website backups should be one of the most important recurring tasks for a website administrator, and yet backups are often forgotten when thinking about…
PHP Script Nukes All Website Files
Ben Martin Most malware and spam that we come across has some sort of discernable purpose to it, usually something which benefits the attackers financially. This is…
Setting Expectations For Your Website Security
Victor Santoyo I have a website. Sweet! What happens next? Well, it’s a natural question. I had a brilliant idea and purchased a domain name, but what…