Website Security News
Recently, someone reached out to us about a malicious process they had discovered running on their web server. This process was maxing out the CPU, which is not unusual when a cryptominer process is running without any throttling. Below is an example of what this…
Update: Read our new PCI Compliance guide. Welcome to the seventh post of a series on understanding the Payment Card Industry Data Security Standard–PCI DSS. We want to show how…
Read More about PCI for SMB: Requirement 10 & 11 – Regularly Monitor and Test Networks
In the first post of this series, we discussed some of the main website security threats. Knowing the website security environment is a vital part of a good website posture….
Read More about How to Improve Your Website Security Posture – Part II
In order to clean a malware infection, the first thing we need to know is which files have been compromised. At Sucuri, we use several techniques including whitelists, blacklists, and…
This post provides a brief overview of how to manually remove server-side cryptominers and other types of Binary-Process-Cron malware from a server. Unlike browser-based JavaScript cryptominers that have been injected…
Read More about Cryptominers: Binary-Process-Cron Variants and Methods of Removal
This is the second post of a series about Steps to Keep Your Site Clean. In the first post, we talked about Access Points; here we are going to offer more…
Three years ago, researchers at Yandex discovered a complex server infection, dubbed Mayhem, that embeds itself deep within a system by compiling a shared object and running as a service….
Read More about Mayhem Malware Server Botnet Continues to Evolve
If you suffer multiple reinfections and your site is one of many in an account, the odds are high that you’re suffering from cross-site contamination. Cross-site contamination is when a…
Read More about What is Cross-Site Contamination and How to Prevent it
Many webmasters may not be aware that hackers are able to maliciously redirect cPanel pages. The specific tactic we describe in this article is unique. Included are recommendations to prevent…
Read More about Ask Sucuri: Can Your cPanel Page Be Maliciously Redirected?
Remediating over 500 infected sites per day, we see attacks executed at varying levels of complexity. The tactics attackers use to compromise a site provide insight into their motives. Some…
Read More about Malicious WordPress Subdirectory Installs For SEO Spam
A few weeks ago we ran an experiment to see how long it would take for some IPv4-only and IPv6-only servers to be compromised via SSH brute force attacks. We…
