Collaborate Disseminate
The most effective phishing and malware campaigns usually employ one of the following two age-old social engineering techniques:
Impersonation
These online phishing campaigns impersonate a popular brand or product through specially crafted emails, SMS… Continue reading Hackers Use Fake Google reCAPTCHA to Cloak Banking Malware
As a security company, we deal with a lot of compromised websites. Unfortunately, in most cases, we have limited access to customer logs, which is one of the reasons why we don’t offer forensic analysis.
Sucuri offers website monitoring, protect… Continue reading The Importance of Website Logs
As a website industry professional, you are aware of the importance of website security. This is especially true when managing 10 or more sites. How can you convey this message to your customers?
Offering Website Security to Clients
Website security s… Continue reading Add Security to Your Website Agency Portfolio
A bot is a software application that uses automation to run scripts on the internet. Also called crawlers or spiders, these guys take on the simple yet repetitive tasks we do. There are legitimate bots and malicious ones. A Web Application Firewall (W… Continue reading Googlebot or a DDoS Attack?
We see a lot of files infected by website malware on a daily basis here at Sucuri Labs. What we don’t see is very many categories of infections. The purpose of this blog post series is to provide an overview of the most common infection categori… Continue reading The Anatomy of Website Malware: An Introduction
Roughly a quarter of all websites on the internet are built on WordPress. You’d think that such popularity would ensure that the platform is flawless and secure! But did you ever wonder that this popularity could be the very cause of security breaches… Continue reading The Security of the WordPress Platform
Here at Sucuri, we clean WordPress websites every day. There are various types of common malware, but when we stumble upon a different scenario, our research team likes to dig deeper and conduct a complete investigation.
A license key is a place where… Continue reading Spam Injector Disguised as License Key in WordPress Website
Distributed denial-of-service (DDoS) attacks can disrupt website traffic and impact any business. To help website owners and webmasters improve their website resilience to DDoS attacks, we have put together a series of posts.
Here are the topics that … Continue reading Optimize Setup to Improve Your Website Resilience for DDoS Attacks
The U.S. Department of Homeland Security (DHS) has today issued an “emergency directive” to all federal agencies ordering IT staff to audit DNS records for their respective website domains, or other agency-managed domains, within next 10 business days…. Continue reading DHS Orders U.S. Federal Agencies to Audit DNS Security for Their Domains
SiteCheck is Sucuri’s free website malware and security scanner offered to anyone who wants to scan their websites for malware and blacklist status.
Last year, we improved SiteCheck’s speed and reliability. Today, we are excited to share t… Continue reading Improvements to SiteCheck Website Scanner