Understanding SSRF: Abusing Server Trust from the Inside Out
Kyle Knight In our daily interactions online, trust is a fundamental currency. We trust servers to handle our data, process our requests, and reliably deliver content. But…
Browsing Tag
Server Security
89 posts
Security Tips for Modern Web Administrators
Keeping your website secure is crucial to protecting user data and maintaining trust. Think of your website as a digital vault that needs constant safeguarding…
Attackers Abuse Swap File to Steal Credit Cards
Matt Morrow When it comes to website security, sometimes the most innocuous features can become powerful tools in the hands of attackers. Such was the case in…
Mastering WordPress File Permissions: A Guide for All Levels
Rianna MacLeod File permissions might seem like a small part of managing a WordPress site, but they play a key role in your website’s security and functionality.…
Input Validation for Web Forms & Website Security
Web forms are incredibly useful tools. They allow you to gather important information about potential clients and site visitors, collect comments and feedback, upload files,…
Cross-Origin Resource Sharing (CORS)
Thanks to the rapid growth of JavaScript frameworks like Angular, React, and Vue, Cross-Origin Resource Sharing (CORS) has become a popular word in the developer’s…
What is HTTP 504 Gateway Timeout & How to Fix It
Marc Kranat Website errors can be extremely frustrating, and one that often appears is the 504 Gateway Timeout error. This error occurs when an upstream server fails…
JavaScript Malware Switches to Server-Side Redirects & DNS TXT Records as TDS
Denis Sinegubko Last August we documented a malware campaign that was injecting malicious JavaScript code into compromised WordPress sites to redirect site visitors to VexTrio domains. The…
Web Shells: Types, Mitigation & Removal
Cesar Anjos Web shells are malicious scripts that give attackers persistent access to compromised web servers, enabling them to execute commands and control the server remotely. These…
What is .htaccess Malware? (Detection, Symptoms & Prevention)
Ben Martin The .htaccess file is notorious for being targeted by attackers. Whether it’s using the file to hide malware, redirect search engines to other sites with…
WordPress Hacked: What to Do When Your Site is Compromised
OK – your WordPress site is hacked. Now what? Questions we frequently get from new users are, “Why was my WordPress site hacked?” and “What…