Remote Access Trojans Archives

Fake “Fix It” Pop-Ups Target WordPress Sites via Malicious Plugin to Download Trojan

Puja Srivastava
October 18, 2024

In our recent investigation, we discovered a new malware campaign targeting WordPress sites through a fake plugin, universal-popup-plugin-v133, which delivers deceptive browser fix pop-ups. This…

Read the Post

New Wave of SocGholish Infections Impersonates WordPress Plugins

Ben Martin
March 1, 2024

SocGholish malware, otherwise known as “fake browser updates”, is one of the most common types of malware infections that we see on hacked websites. This…

Read the Post

Remote Access Trojan (RAT): Types, Mitigation & Removal

Ben Martin
February 16, 2024

Remote Access Trojans (RATs) are a serious threat capable of giving attackers control over infected systems. This malware stealthily enters systems (often disguised as legitimate…

Read the Post

New Malware Variants Serve Bogus CloudFlare DDoS Captcha

Ben Martin
September 27, 2022

When attackers shift up their campaigns, change their payload or exfiltration domains, and put some extra effort into hiding their malware it’s usually a telltale…

Read the Post

Magento Supply Chain Attack Targets Extension Developer FishPig

Ben Martin
September 15, 2022

Magento store owners using the popular FishPig extensions should be wary of a recent supply chain attack which compromised their software repository. FishPig released a…

Read the Post

Fake DDoS Pages on WordPress Sites Lead to Drive-By-Downloads

Fake DDoS Pages On WordPress Sites Lead to Malicious Downloads

Ben Martin
August 18, 2022

It’s not uncommon for users to experience “DDoS Protection” pages when casually browsing the web. These DDoS protection pages are typically associated with browser checks…

Read the Post