Recently, Avast’s researchers Pavel Novák and Jan Rubín posted a detailed writeup about the “Parrot TDS” campaign involving more than 16,500 infected websites. Such massive infections don’t go unnoticed by Sucuri and we immediately recognized that the infection in their writeup belonged to the campaign we internally refer to as “ndsw/ndsx” malware. We’ve been tracking this particular campaign since February 2019 — however, some variations have even older reference dates.
- How to Find & Clean Up the AnonymousFox Hack
- 2021 Threat Report Webinar
- Tips for WP-Config & How to Avoid Sensitive Data Exposure
- WooCommerce Credit Card Skimmer Uses Telegram Bot to Exfiltrate Stolen Data
- PSA: Critical Vulnerability Patched in Ninja Forms WordPress Plugin
- Top Five Attacking IPs This Month: Their Locations May Not Be Where You Think
- What is a Scam?
- Smilodon Credit Card Skimming Malware Shifts to WordPress
- It Takes 2 Seconds of Silence to Skim a Credit Card
- Cross-Site Scripting Vulnerability In Download Manager Plugin