You searched for wordpress

Ad-Jacked Cybercriminals Inject Fake Google Adsense into WordPress

Ad-Jacked: Cybercriminals Inject Google Adsense into WordPress

Puja Srivastava
April 15, 2025

Recently, we’ve encountered cases where WordPress websites were impacted by Google Adsense hijackers. Attackers inject advertisements and scripts that steal website resources and pump ad…

Read the Post

Credit Card Skimmer and Backdoor on WordPress E-commerce Site

Puja Srivastava
March 14, 2025

The battle against e-commerce malware continues to intensify, with attackers deploying increasingly sophisticated tactics. In a recent case at Sucuri, a customer reported suspicious files…

Read the Post

Fake WordPress Plugin Impacts SEO by Injecting Casino Spam

Kayleigh Martin
February 26, 2025

Injecting malware via a fake WordPress plugin has been a common tactic of attackers for some time. This clever method is often used to bypass…

Read the Post

WordPress ClickFix Malware Causes Google Warnings and Infected Computers

Ben Martin
February 21, 2025

Since December of last year there has been a new fake Google reCAPTCHA campaign making its way through the WordPress world. Very similar to malware…

Read the Post

Hidden Backdoors Uncovered in WordPress Malware Investigation

Puja Srivastava
February 14, 2025

At Sucuri, we often encounter cases where malware is deeply embedded in websites, hidden in files and scripts that can easily escape detection. In this…

Read the Post

Malware Redirects WordPress Traffic to Harmful Sites

Puja Srivastava
January 23, 2025

Recently, a customer approached us after noticing their website was redirecting visitors to a suspicious URL. They suspected their site had been compromised and sought…

Read the Post

Japanese Spam on a Cleaned WordPress Site: The Hidden Sitemap Problem

Puja Srivastava
January 15, 2025

While investigating a compromised WordPress site, we discovered a malware infection causing Japanese spam links to appear in Google search results. Although the site had…

Read the Post

Stealthy Credit Card Skimmer Targets WordPress Checkout Pages via Database Injection

Puja Srivastava
January 9, 2025

Recently, we released an article where a credit card skimmer was targeting checkout pages on a Magento site. Now we’ve come across sophisticated credit card…

Read the Post

Malicious Script Injection on WordPress Sites

Puja Srivastava
December 5, 2024

Recently, our team discovered a JavaScript-based malware affecting WordPress sites, primarily targeting those using the Hello Elementor theme. This type of malware is commonly embedded…

Read the Post

PHP Reinfector and Backdoor Malware Targeting WordPress Sites

PHP Reinfector and Backdoor Malware Target WordPress Sites

Puja Srivastava
November 13, 2024

We recently observed a surge in WordPress websites being infected by a sophisticated PHP reinfector and backdoor malware. While we initially believed that the infection…

Read the Post

Sucuri October 2024 Vulnerability Roundup

WordPress Vulnerability & Patch Roundup October 2024

Sucuri Malware Research Team
November 1, 2024

Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…

Read the Post