Global CyberSecurity
Vulnerability & Patch Roundup — June 2025
Post Views: 1,281 Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are ...
Global CyberSecurity
Stealthy WordPress Malware Drops Windows Trojan via PHP Backdoor
Post Views: 1,312 Last month, we encountered a particularly interesting and complex malware case that stood out from the usual infections we see ...
Global CyberSecurity
The Case of Hidden Spam Pages
Post Views: 1,330 Spammy posts and pages being placed on WordPress websites is one of the most common infections that we come across. ...
Global CyberSecurity
Malicious WordPress Plugin Creates Hidden Admin User Backdoor
Post Views: 407 I recently wrote about a case where a malicious plugin was used to steal admin credentials. Here we will examine ...
Global CyberSecurity
Analysis of a Malicious WordPress Plugin: The Covert Redirector
Post Views: 1,253 A few weeks ago, we received a support request from a website owner who was experiencing unexpected redirects. Visitors landed ...
Global CyberSecurity
Understanding SSRF: Abusing Server Trust from the Inside Out
Post Views: 1,276 In our daily interactions online, trust is a fundamental currency. We trust servers to handle our data, process our requests, ...
Global CyberSecurity
Fake WordPress Caching Plugin Used to Steal Admin Credentials
Post Views: 308 A common trend we see is that bad actors will upload malicious plugins to WordPress sites. These plugins serve a ...
