• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar
  • Skip to footer

Sucuri Blog

Website Security News

  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Enterprise Website Security
    • Multisite Solutions
  • Features
    • Detection
    • Protection
    • Performance
    • Response
    • Backups
  • Partners
    • Agency Solutions
    • Partners
    • Referral Program
    • Ecommerce
  • Resources
    • Guides
    • Webinars
    • Infographics
    • SiteCheck
    • Reports
    • Email Courses
  • Immediate Help
  • Login

Google

Skimmers Magento GitHub

July 22, 2020Denis Sinegubko

Skimmers in Images & GitHub Repos

MalwareBytes recently shared some information about web skimmers that store malicious code inside real .ico files. During a routine investigation, we detected a similar issue. Instead of targeting .ico files, however, attackers chose to inject content into real .png files — both on compromised sites…

Read More about Skimmers in Images & GitHub Repos

Fixing "Uncommon Download" Warnings in Google Search Console

February 3, 2020Alycia Mitchell

Fixing “Uncommon Download” Warnings in Google Search Console

Over the past few months, a lot of website owners have received “uncommon download” warnings from Google Search Console. These warnings can be vague, often lacking specific information about where…

Read More about Fixing “Uncommon Download” Warnings in Google Search Console

Mixed Content Chrome

November 14, 2019Peter Kankowski

Mixed Content Warnings in Google Chrome

Migrating your website to HTTPS may seem like a simple task. Get the TLS/SSL certificate, install it on your web server, and you’re done. The real pain for large projects,…

Read More about Mixed Content Warnings in Google Chrome

Phishing

September 19, 2019Luke Leal

Fake SSO Used In Multi-Email Provider Phishing

Single sign-on (SSO) allows users to sign into a single account (e.g Google) and access other services like YouTube or Gmail without authenticating with a separate username and password. This…

Read More about Fake SSO Used In Multi-Email Provider Phishing

Throwback Threat Thursday: Joomla GoogleMaps Plugin SEO Spam Injection

September 5, 2019Fioravante Souza

Throwback Threat Thursday: Joomla GoogleMaps Plugin SEO Spam Injection

Throwback Threat Thursday is a series of posts where we recall older vulnerabilities that have since been patched by their developers. In the past, these vulnerabilities caused significant impacts to…

Read More about Throwback Threat Thursday: Joomla GoogleMaps Plugin SEO Spam Injection

Magento 2 PHP Skimmer Saves To Image File

August 7, 2019Denis Sinegubko

Magento Skimmers: From Atob to Alibaba

Last year we saw a fairly massive Magento malware campaign that injected credit card stealing code similar to this: It uses the JavaScript atob function to decode base64-encoded domain names…

Read More about Magento Skimmers: From Atob to Alibaba

July 25, 2019Luke Leal

Fake Google Domains Used in Evasive Magento Skimmer

We were recently contacted by a Magento website owner who had been blacklisted and was experiencing McAfee SiteAdvisor “Dangerous Site” warnings. Our investigation revealed that the site had been infected…

Read More about Fake Google Domains Used in Evasive Magento Skimmer

Lightbox Adware - From Innocent Scripts to Malicious Redirects

June 24, 2019Douglas Santos

Why is Your Website a Target? The SEO Value of a Website

Website security is what we eat, sleep, and breathe. It’s what we do best because we deal with hacked websites every single day, thousands of them. Among the various types…

Read More about Why is Your Website a Target? The SEO Value of a Website

Typo 3 Spam Infection

April 26, 2019Ben Martin

Typo 3 Spam Infection

Here at Sucuri most of the malware that we deal with is on CMS platforms like: WordPress, Joomla, Drupal, Magento, and others. But every now and then we come across…

Read More about Typo 3 Spam Infection

How to add SSL and Move WordPress from HTTP to HTTPS

March 6, 2019Juliana Lewis

How to Add SSL & Move WordPress from HTTP to HTTPS

Moving a WordPress website from HTTP to HTTPS should be a priority for any webmaster. Recent statistics show that over 33% of website administrators across the web use WordPress and…

Read More about How to Add SSL & Move WordPress from HTTP to HTTPS

Hacked Website and Malware Trend Analysis for 2018

March 4, 2019Rianna MacLeod

Hacked Website Trend Report – 2018

We are proud to be releasing our latest Hacked Website Trend Report for 2018. This report is based on data collected and analyzed by the GoDaddy Security / Sucuri team,…

Read More about Hacked Website Trend Report – 2018

Primary Sidebar

Socialize With Sucuri

We're actively engaged across multiple platforms. Follow us and let's connect!

  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram
  • RSS Feed

Join Over 20,000 Subscribers!

Sucuri Sidebar Malware Removal to Signup Page

Footer

Products

  • Website Firewall
  • Website AntiVirus
  • Website Backups
  • WordPress Security
  • Enterprise Services

Solutions

  • DDos Protection
  • Malware Detection
  • Malware Removal
  • Malware Prevention
  • Blacklist Removal

Support

  • Blog
  • Knowledge Base
  • SiteCheck
  • Research Labs
  • FAQ

Company

  • About
  • Media
  • Events
  • Employment
  • Contact
  • Testimonials
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram

Customer Login

Sucuri Home

  • Terms of Use
  • Privacy Policy
  • Frequently Asked Questions

© 2023 Sucuri Inc. All rights reserved

Sucuri Cookie Policy
See our policy>>

Our website uses cookies, which help us to improve our site and enables us to deliver the best possible service and customer experience.