Website Security News
Attackers commonly rely on backdoors to easily gain reentry and maintain control over a website. They also use PHP functions to further deepen the level of their backdoors. A good example of this is the shell_exec function which allows plain shell commands to be run…
Update: Read our new PCI Compliance guide. Welcome to the seventh post of a series on understanding the Payment Card Industry Data Security Standard–PCI DSS. We want to show how…
Read More about PCI for SMB: Requirement 10 & 11 – Regularly Monitor and Test Networks
The internet is a complex ecosystem of interconnected devices, and at its core is the Internet Protocol (IP). This protocol is currently in its second major incarnation (IPv6) but many…
Question: How does Sucuri clean hacked websites? What is the process? We clean a lot of websites, ~ 400 / 500, daily during our normal load. To understand how we do it,…
Read More about Ask Sucuri: How Does Sucuri Clean a Website?
We leverage OSSEC extensively here at Sucuri to help monitor and protect our servers. If you are not familiar with OSSEC, it is an open source Intrusion Detection System (HIDS); with…
Read More about Server Security: Indicators of Compromised Behavior with OSSEC
heWhat do you do if you suspect your server (VPS or dedicated) has been compromised? If you are a customer, you have the option to leverage our team to perform…
Read More about Investigating a Compromised Server with Rootcheck
We leverage OSSEC extensively to help monitor and protect our servers. If you are not familiar with OSSEC, it is an open source Intrusion Detection System (HIDS); it has a powerful…
Read More about Server Security: Import WordPress Events to OSSEC
We leverage OSSEC extensively to help monitor and protect our servers. If you are not familiar with OSSEC, it is an open source Intrusion Detection System (HIDS); it has a powerful…
Read More about Server Security: OSSEC Integrates Slack and PagerDuty
We leverage OSSEC extensively to help monitor and protect our servers. If you are not familiar with OSSEC, it is an open source Host-Based Intrusion Detection System (HIDS); it has a…
Read More about Server Security: OSSEC Updated With GeoIP Support
Bugs exist in every piece of code. It is suggested that for every 1,000 lines of code, there are on average 1 to 5 bugs to be found. Some of…
Read More about Protecting Against Unknown Software Vulnerabilities
New year, same tricks, mostly because they work. That’s how we’re kicking off the new year folks. In September of 2012, Dennis, of Unmask Parasites, first wrote about rogue apache…
Read More about Web Server Attacks – Apache Modules, Log Management and RELM
