Global CyberSecurity
Credit Card Skimmer and Backdoor on WordPress E-commerce Site
Post Views: 1,369 The battle against e-commerce malware continues to intensify, with attackers deploying increasingly sophisticated tactics. In a recent case at Sucuri, ...
Global CyberSecurity
Cascading Redirects: Unmasking a Multi-Site JavaScript Malware Campaign
Post Views: 1,255 During a recent website security investigation, we uncovered a malicious JavaScript injection affecting a WordPress website. The infection was responsible ...
Global CyberSecurity
Vulnerability & Patch Roundup — February 2025
Post Views: 762 Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are ...
Global CyberSecurity
Fake WordPress Plugin Impacts SEO by Injecting Casino Spam
Post Views: 1,414 Injecting malware via a fake WordPress plugin has been a common tactic of attackers for some time. This clever method ...
Global CyberSecurity
WordPress ClickFix Malware Causes Google Warnings and Infected Computers
Post Views: 1,152 Since December of last year there has been a new fake Google reCAPTCHA campaign making its way through the WordPress ...
Global CyberSecurity
When Spam Hides In Plain Sight
Post Views: 1,308 We recently worked on an interesting case where Casino spam was visible in the page source, but couldn’t be located ...
Global CyberSecurity
Hidden Backdoors Uncovered in WordPress Malware Investigation
Post Views: 763 At Sucuri, we often encounter cases where malware is deeply embedded in websites, hidden in files and scripts that can ...














