Conducting an external website scan for indicators of compromise is one of the easiest ways to identify security issues. While remote scanners may not provide…
This investigation started with a small and quite simple piece of PHP malware found on a hacked website. We located the following PHP code, responsible…
During a recent investigation, our malware remediation team encountered a variant of a common malware injection that has been active since at least 2017. The…
When we think about website malware, visible infection symptoms most often come to mind: unwanted ads or pop-ups, redirects to third party sites, or spam…
On May 11th, 2023, the very popular WordPress plugin Essential Addons for Elementor released a patch for a critical privilege escalation vulnerability, initially discovered by…
In November, 2022, my colleague Ben Martin described how hackers were using zipped files and encrypted WordPress options stored in the database to inject SocGholish…
Attackers are always finding new and creative ways to compromise websites and maintain their foothold in environments. This is frequently done via the use of…