• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar
  • Skip to footer

Sucuri Blog

Website Security News

  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Enterprise Website Security
    • Multisite Solutions
  • Features
    • Detection
    • Protection
    • Performance
    • Response
    • Backups
  • Partners
    • Agency Solutions
    • Partners
    • Referral Program
    • Ecommerce
  • Resources
    • Guides
    • Webinars
    • Infographics
    • SiteCheck
    • Reports
    • Email Courses
  • Immediate Help
  • Login

Drive-by-Download

Fake DDoS Pages on WordPress Sites Lead to Drive-By-Downloads

August 18, 2022Ben Martin

Fake DDoS Pages On WordPress Sites Lead to Drive-By-Downloads

It’s not uncommon for users to experience “DDoS Protection” pages when casually browsing the web. These DDoS protection pages are typically associated with browser checks performed by WAF/CDN services which verify if the site visitor is, in fact, a human or is part of a…

Read More about Fake DDoS Pages On WordPress Sites Lead to Drive-By-Downloads

WordPress Redirect Hack via Test0.com/Default7.com

June 4, 2021Denis Sinegubko

WordPress Redirect Hack via Test0.com/Default7.com

Malicious redirect is a type of hack where website visitors are automatically redirected to some third-party website: usually it’s some malicious resource, scam site or a commercial site that buys…

Read More about WordPress Redirect Hack via Test0.com/Default7.com

July 5, 2017Cesar Anjos

Evolution of Conditional Spam Targeting Drupal Sites

Last year we took a look at how attackers  were infecting Drupal installations to spread their spam and keep their campaigns going by just including a malicious file in each…

Read More about Evolution of Conditional Spam Targeting Drupal Sites

February 17, 2017Rodrigo Escobar

WordPress Security – Fake TrafficAnalytics Website Infection

Several months ago, our research team identified a fake analytics infection, known as RealStatistics. The malicious Javascript injection looks a lot like tracking code for a legitimate analytics service. RealStatistics…

Read More about WordPress Security – Fake TrafficAnalytics Website Infection

January 2, 2017Cesar Anjos

Website Malware Targets Mobile Platforms

Navigating the web on a mobile device can be tricky even when you’re browsing clean sites. If hackers are involved, the frustration of a pop-up can turn into the dangerous…

Read More about Website Malware Targets Mobile Platforms

Labs Note

December 29, 2016Yuliyan Tsvetkov

Web shell downloader – simple attempt to avoid detection

When dealing with compromised scenarios, our team has to be very thorough to remove all pieces of malware in the infected website. Most of the time attackers don’t inject single…

Read More about Web shell downloader – simple attempt to avoid detection

October 11, 2016Tony Perez

Ask Sucuri: Is My Website Hacked?

Having your website hacked can be a devastating experience for any website owner. Unfortunately, many website owners rarely know they are infected until days, if not weeks, after the compromise…

Read More about Ask Sucuri: Is My Website Hacked?

May 5, 2016Denis Sinegubko

WordPress Redirect Hack via Test0.com/Default7.com

Update 9/14/16: We released a new guide that provides better instructions on how to clean a hacked WordPress site using the Free WordPress security plugin. We’ve been working on a…

Read More about WordPress Redirect Hack via Test0.com/Default7.com

November 24, 2015Ben Martin

Unwanted Software and Harmful Programs

We frequently clean blacklisted websites and submit reconsideration requests to have them de-listed. We have encountered many kinds of blacklist warnings including search engines, anti-virus programs, firewalls and and e-mail spam….

Read More about Unwanted Software and Harmful Programs

August 25, 2015Alycia Mitchell

FunWebProducts UserAgent Bloating Traffic

Every once in a while we get a case that makes us dig deep to find answers. We have spoken before about the trouble with forensics and reasons why websites…

Read More about FunWebProducts UserAgent Bloating Traffic

July 23, 2015Denis Sinegubko

SweetCAPTCHA Returns Hijacking Another Plugin

Yesterday we observed a strange short return of the SweetCaptcha plugin to WordPress.org repository. In June we reported that SweetCaptcha injected third-party ad code to their scripts which lead to…

Read More about SweetCAPTCHA Returns Hijacking Another Plugin

Primary Sidebar

Socialize With Sucuri

We're actively engaged across multiple platforms. Follow us and let's connect!

  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram
  • RSS Feed

Join Over 20,000 Subscribers!

Sucuri Sidebar Malware Removal to Signup Page

Footer

Products

  • Website Firewall
  • Website AntiVirus
  • Website Backups
  • WordPress Security
  • Enterprise Services

Solutions

  • DDos Protection
  • Malware Detection
  • Malware Removal
  • Malware Prevention
  • Blacklist Removal

Support

  • Blog
  • Knowledge Base
  • SiteCheck
  • Research Labs
  • FAQ

Company

  • About
  • Media
  • Events
  • Employment
  • Contact
  • Testimonials
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram

Customer Login

Sucuri Home

  • Terms of Use
  • Privacy Policy
  • Frequently Asked Questions

© 2023 Sucuri Inc. All rights reserved

Sucuri Cookie Policy
See our policy>>

Our website uses cookies, which help us to improve our site and enables us to deliver the best possible service and customer experience.