Malicious Script Injection on WordPress Sites
Puja Srivastava Recently, our team discovered a JavaScript-based malware affecting WordPress sites, primarily targeting those using the Hello Elementor theme. This type of malware is commonly embedded…
Browsing Tag
Malware
198 posts
Credit Card Skimmer Malware Targeting Magento Checkout Pages
Magento websites are a frequent target for cybercriminals due to their widespread usage in eCommerce and the valuable customer data they handle. During a routine…
Simple Include Statement Hides Casino Spam
Kayleigh Martin Just as there are countless types of websites on the internet, there are just as many attackers seeking to exploit them. These attackers develop malicious…
PHP Reinfector and Backdoor Malware Target WordPress Sites
We recently observed a surge in WordPress websites being infected by a sophisticated PHP reinfector and backdoor malware. While we initially believed that the infection…
Malware Steals Account Credentials
Matt Morrow It’s common for malware to target e-commerce sites, and these attackers are usually seeking to steal credit card details. In most cases, they will insert…
2024 Credit Card Theft Season Arrives
Ben Martin The holiday shopping season is just around the corner, and it’s the time of year the eCommerce website owners need to be most on their…
Indonesian Gambling Redirect Hiding in Plain Sight
Many pieces of malware found over the years have been complex and difficult to find. Attackers often obfuscate their code to make it harder to…
Fake “Fix It” Pop-Ups Target WordPress Sites via Malicious Plugin to Download Trojan
In our recent investigation, we discovered a new malware campaign targeting WordPress sites through a fake plugin, universal-popup-plugin-v133, which delivers deceptive browser fix pop-ups. This…
Woo Skimmer Uses Style Tags and Image Extension to Steal Card Details
This post starts the same way many others do on this blog, and it will be familiar to those who keep up with website security:…
SiteCheck Remote Website Scanner — Mid-Year 2024 Report
Kyle Knight Conducting an external website scan for indicators of compromise is one of the easiest ways to identify security issues. While remote website scanners may not…
WordPress Websites Used to Distribute ClearFake Trojan Malware
Unfortunately, scams are all over the place, and anybody who has surfed the web should know this. We’ve all gotten phishing emails, or redirected to…