How to Find & Fix Japanese SEO Spam
Puja Srivastava Japanese SEO Spam, also known as “Japanese keyword hack” or “Japanese SEO poisoning,” is a spammy search engine optimization technique used by black hat SEO…
Browsing Tag
Hacked Websites
666 posts
Decoding Magecart: Credit Card Skimmers Concealed Through Pixels & Images
Ben Martin MageCart infections most often come in the form of complex, obfuscated JavaScript injected into Magento database tables such as core_config_data, or as malicious plugins or…
Bogus URL Shorteners Go Mobile-Only in AdSense Fraud Campaign
Denis Sinegubko Since September 2022, our team has been tracking a bogus URL shortener redirect campaign that started with just a single domain: ois[.]is. By the beginning…
Compromised OpenCart Payment Module Steals Credit Card Information
Today’s story starts much the same as many others on this blog: A new client came to us reporting that credit card details were being…
From Google DNS to Tech Support Scam Sites: Unmasking the Malware Trail
A vast majority of website malware employ the ever-familiar HTTP/HTTPS protocols for its malicious activities. But, we also periodically confront more interesting hybrid malware leveraging…
SiteCheck Remote Website Scanner — Mid-Year 2023 Report
Conducting an external website scan for indicators of compromise is one of the easiest ways to identify security issues. While remote scanners may not provide…
Massive Google Colaboratory Abuse: Gambling and Subscription Scam
This investigation started with a small and quite simple piece of PHP malware found on a hacked website. We located the following PHP code, responsible…
Malicious Injection Redirects Traffic via Parked Domain
During a recent investigation, our malware remediation team encountered a variant of a common malware injection that has been active since at least 2017. The…
Spamdexing: What is SEO Spam & How to Remove It
Rianna MacLeod Ever had an uninvited guest crash your party, resulting in chaos, confusion, and some unhappy visitors? Well, SEO spam is that party crasher — just…
Remote Code Execution Backdoor Uses Unicode Obfuscation & Non-Standard File Extensions
Readers of this blog will know that attackers are constantly finding new ways to hide their malware and avoid detection; after all, that’s what good…
How to Secure Your Online Store: A Ecommerce Security Primer
Victor Santoyo Welcome to another installment in helping website owners secure their digital assets, this time with a focus on the world of ecommerce. If you’re an…