When attackers shift up their campaigns, change their payload or exfiltration domains, and put some extra effort into hiding their malware it’s usually a telltale sign that they are making some money off of their exploits. One such campaign is the fake CloudFlare DDoS pages which we reported on last month.
The attack is simple: when browsing an infected website, the user receives a notification that insists they must download a file to continue to access the content.
Continue reading New Malware Variants Serve Bogus CloudFlare DDoS Captcha at Sucuri Blog.
It’s estimated that 98.5% of sites who advertise use Google Ads to generate revenue and bring in traffic. That’s a hefty number of websites who leverage the popular platform to publish and serve ads.
And while most webmasters are keenly aware that a hack can significantly impact your site’s revenue and organic rankings, malicious code or software can also affect your ability to run ads on Google and other advertising platforms.
Your Google Ads must be trustworthy and relevant — this policy applies to your website as well.
Continue reading How to Fix Google Ads Disapproved Due to Malicious Software at Sucuri Blog.
All software has bugs — but some bugs can lead to serious security vulnerabilities that can impact your website and traffic. Vulnerabilities can be especially dangerous when your software is running over the web, since anyone can reach out and try to attack it. That’s why keeping your website up-to-date with the latest patches and security updates is so important.
The reality is there is no shortage of websites running outdated WordPress, Joomla, or Magento software.
Continue reading A Guide to Virtual Patching for Website Vulnerabilities at Sucuri Blog.
Magento store owners using the popular FishPig extensions should be wary of a recent supply chain attack which compromised their software repository. FishPig released a detailed security announcement on September 13th, 2022. The attack is estimated to have occurred on or before August 19th of this year so any eCommerce stores which have installed FishPig extensions since this date have likely been compromised.
Website administrators should completely remove, reinstall, and upgrade all instances of FishPig software present within their environment and check their systems for any signs of infection.
Continue reading Magento Supply Chain Attack Targets Extension Developer FishPig at Sucuri Blog.
Bad actors often look for clever ways to boost the rankings and visibility of their spam pages in search.
One of the many black hat SEO injections that we regularly find on compromised sites involves spammy links hidden inside a <div> with the following style “overflow:hidden;height:1px” that makes them invisible to a regular site visitor.
Our SiteCheck scanner detects these SEO link injections as “spam-seo.hidden_content?68.5”.
Continue reading Gambling Spam in Visual Composer Raw HTML Element: [vc_raw_html] at Sucuri Blog.