The AnonymousFox hack targets insecure websites and actively exploits them to spread phishing, spam, and other malware. A major nuisance for website owners, it also happens to be one of the more prevalent types of malware seen on client sites in the past two years.
In this post we’ll describe what AnonymousFox is and how it works, describe common indicators of compromise, and outline the steps you can take to mitigate risk of an infection.
Continue reading How to Find & Clean Up the AnonymousFox Hack at Sucuri Blog.
The threat landscape is constantly shifting.
As attackers continue to hone their tools and exploit new vulnerabilities, our team works diligently to identify and analyze threats posed to webmasters.
So – what do you need to do to stay one step ahead of attackers? Join Sucuri researcher Ben Martin on July 6th in our latest webinar to uncover the latest insights into emerging and ongoing trends and threats in the website security landscape.
Continue reading 2021 Threat Report Webinar at Sucuri Blog.
The wp-config file is a powerful core WordPress file that is vital for running your website. It contains important configuration settings for WordPress, including details on where to find the database, login credentials, name and host. This config file is also used to define advanced options for database elements, security keys, and developer options.
In this post, we’ll outline some important website hardening recommendations for your wp-config file and explain exactly how to safely update it to avoid sensitive data exposure.
Continue reading Tips for WP-Config & How to Avoid Sensitive Data Exposure at Sucuri Blog.
Our story starts like many others told on this blog: A new client came to us with reported cases of credit card theft on their eCommerce website.
The website owner had received complaints from several customers who reported bogus transactions on their cards shortly after purchasing from their webstore, so the webmaster suspected that something could be amiss.
Fortunately our new client wasted no time in seeking a solution and came to us for help almost immediately after receiving the complaints.
Continue reading WooCommerce Credit Card Skimmer Uses Telegram Bot to Exfiltrate Stolen Data at Sucuri Blog.
Sure — as a security-minded website owner you’re probably already using a VPN to protect your privacy, managing app permissions to protect your phone, making sure your browser is blocking third party trackers, and enforcing strong passwords for all of your databases and user accounts. But personal security extends well beyond the scope of protecting your cellphones, computers and websites.
In today’s post, we’ll be raising awareness about what scams are, why you should care, and how to protect yourself against scammers.
Continue reading What is a Scam? at Sucuri Blog.
WordPress’ massive market share has come with an unsurprising side effect: As more and more site admins turn to popular plugins like WooCommerce to turn a profit on their website and set up online stores we’ve seen a significant increase in the number of attacks targeting WordPress eCommerce sites. What’s more, bad actors are repurposing their old Magento credit card stealing malware for use against WordPress.
In today’s post we are going to examine one such piece of malware which was initially used as a backdoor in Magento environments but more recently repurposed to act as a credit card skimmer and webshell in websites running WordPress and WooCommerce.
Continue reading Smilodon Credit Card Skimming Malware Shifts to WordPress at Sucuri Blog.