Clik here to view.
Free Sucuri WordPress Plugin Gets New Features
We just released some major updates to our Free WordPress plugin that we recommend all WordPress users check out. Before the update, the plugin was just a simplified way to reach and scan a site using...
View ArticlePotential vBulletin Exploit (4.1+ and 5+)
The vBulletin team just posted a pre-disclosure warning on their announcements forum about a possible exploit in versions 4.1+ and 5+ of vBulletin. They don’t provide many details, but did state that...
View ArticleClik here to view.
Big Increase in Distributed Brute Force Attacks Against Joomla Websites
A few months ago, we discussed and published details about a very large brute force attack targeting WordPress sites. The attackers (bad guys) had thousands of servers at their disposal, and were...
View ArticleClik here to view.
Over 10% of Alexa TOP Million Websites Found Not Safe – Infographic Report
We scan a lot of websites per day. Through our daily work we see all sizes and types of websites compromised, blacklisted, and filled with various security issues. But, we don’t often aggregate the...
View ArticleSecurity Archive – Case Study: phpbb.com Compromised
Security Archive: It is important to remember past security incidents to make sure we don’t commit the same mistakes over and over again. The idea is to learn from our mistakes. You can read other case...
View ArticleClik here to view.
Ask Sucuri: Non-alphanumeric Backdoors
If you have any questions about malware, blacklisting, or security in general, send them to contact@sucuri.net and we will write a post about it and share. For all the “Ask Sucuri” answers, go here....
View ArticleClik here to view.
Sucuri Affiliate Updates
We have been running a quite successful (but stealthy) affiliate program for a few years, paying our partners very well. Our goal has always been to allow our clients that already love what we do, to...
View ArticleBackdoor Evasion Using Encrypted Content
A few weeks ago on the Sucuri Research Labs we mentioned a new type of malware injection that does not use base64_decode, and instead conceals itself as a variable and is built with a combination of...
View ArticleClik here to view.
Understanding Search Engine Warnings – Part I – Google – This Site May Be Hacked
If you have any questions about malware, blacklisting, or security in general, send them to us: contact@sucuri.net and we will answer here. For all the “Ask Sucuri” answers, go here. Question: I just...
View ArticleGoogle Bots Doing SQL Injection Attacks
One of the things we have to be very sensitive about when writing rules for our CloudProxy Website Firewall is to never block any major search engine bot (ie., Google, Bing, Yahoo, etc..). To date,...
View ArticlevBulletin.com Compromised
The vBulletin team recently announced that they suffered a compromise which allowed the attackers access to vbulletin.com servers and database. On their own words: We take your security and privacy...
View ArticleMalware iFrame Campaign from Sytes(.)net
For the last few weeks we have been tracking a large malframe (malicious iframe) campaign that has been injecting iframes from random domains from sytes(.)net into compromised sites. Malicious iframe...
View ArticleWHMCS SQL Injection Vulnerability in the Wild
A few days ago, a zero-day SQL injection vulnerability in WHMCS was disclosed by localhost.re, along with the exploit code. It was quickly patched by the WHCMS team and rated as critical since it...
View ArticleClik here to view.
Sucuri CloudProxy WAF Plugin for WordPress
If you are using our CloudProxy WAF to protect your WordPress websites, we highly recommend that you also install our new CloudProxy plugin for WordPress. It has been public for a few weeks, and now we...
View ArticleClik here to view.
Cleaning Up Your WordPress Site with the Free Sucuri Plugin
If your site has been recently hacked and you are trying to clean it up yourself, we recommend that you use SiteCheck Malware Scanner, our Free WordPress plugin to help you during that task. The plugin...
View ArticleClik here to view.
Phishing Emails to Install Malicious WordPress Plugins
When all else fails, the bad guys can always rely on some basic social engineering tactics with a little hit of phishing!! Over the weekend, a few of our clients received a very suspicious email...
View ArticleRecent OptimizePress Vulnerability Being Mass Infected
A few weeks ago we wrote about a file upload vulnerability in the OptmizePress theme. We were seeing a few sites being compromised by it, but nothing major. That all changed yesterday when we detected...
View ArticleClik here to view.
Website Mesh Networks Distributing Malware
Can you imagine having the keys to a kingdom? How awesome would that be!! This is true in all domains, especialy when it comes to your website. This is almost like the holy grail of website attacks,...
View ArticleClik here to view.
Layer 7 DDOS – Blocking HTTP Flood Attacks
There are many types of Distributed Denial of Service (DDOS) attacks that can affect and bring down a website, and they vary in complexity and size. The most well known attacks are the good old...
View ArticleJoomla JomSocial Remote Code Execution Vulnerability
The JomSocial team just released an update that fixes a very serious remote code execution vulnerability that affects any JomSocial version older than 3.1.0.4. From their hot-fix update: Yesterday we...
View Article