Malicious Redirect Injected in Magento One Page Checkout
Bruno Zanelato With the holiday season around the corner, ecommerce sites are very valuable to website owners and equally attractive to attackers. Hackers have been targeting Magento…
The Tale of a Malicious Stored Procedure
Douglas Santos Nowadays, the most common issues with database injections are related to SPAM. Brian Krebs has a book called Spam Nation, that gives us a more…
Website Spam Infection via Zip File Upload
Denis Sinegubko Since the beginning of November we’ve been cleaning many sites infected with the same SEO spam malware. The malware creates doorways for hundreds of random…
IPv4 vs IPv6 Performance Comparison – Part 2
Tiago Pellegrini A few months ago, we posted an article about the difference between IPv4 and IPv6. Our research team has expanded on those findings with additional…
Malware Targets Mobile Platforms
Cesar Anjos With the increase of mobile internet browsing, attackers have adapted their techniques to target such platforms and distribute SPAM & malware to these devices. Our…
Cloned Spam Sites in Subdirectories
Fernando Barbosa In a recent post, we covered how attackers were abusing server resources to create WordPress sites in subdirectories and distribute spam. By adding a complete…
Multiple UNIX users symbolic link injector
Yuliyan Tsvetkov Recently we found a very interesting malware that injects symbolic links in each and every Linux/UNIX home folder. Once the website is infected, it uses…
New Guide on How to Fix Hacked Joomla! Sites
Alycia Mitchell Joomla! is one of the most popular open-source content management systems (CMS) on the market, powering a large percentage of websites on the internet today.…
Malicious routine stealing WordPress credentials in the wild
From the hacker’s perspective, maintaining access to a compromised website for as long as possible, is ideal. One way to achieve this goal, is by…
New XM1RPC SEO Spam and Backdoor Campaign
We have been monitoring a new campaign specifically targeting WordPress sites, using hundreds of them for SEO spam distribution. We call it the XM1RPC campaign…
Unwanted Sex Toys Advertisement
Eugene Wozniak Recently, during an incident response process, we have found an advertisement floating banner on specific pages of an html-based website. Despite what people think, these…