Global CyberSecurity
Stylish Magento Card Stealer loads Without Script Tags
Post Views: 697 Recently one of our analysts, Weston H., found a very interesting credit card stealer in a Magento environment which loads ...
Global CyberSecurity
Vulnerable Plugin Exploited in Spam Redirect Campaign
Post Views: 746 Some weeks ago a critical unauthenticated privilege escalation vulnerability was discovered in old, unpatched versions of the wp-user-avatar plugin. It ...
Global CyberSecurity
An Overview of Basic WordPress Hardening
Post Views: 1,321 We have discussed in the past how out-of-the-box security configurations tend to not be very secure. This is usually true ...
Global CyberSecurity
Magecart Swiper Uses Unorthodox Concatenation
Post Views: 1,016 MageCart is the name given to the roughly one dozen groups of cyber criminals targeting e-commerce websites with the goal ...
Global CyberSecurity
Online Credit Card Theft – A Brief Overview of Online Fraud and Abuse – Part 2
Post Views: 832 In my previous post about ecommerce credit card swipers I described the general overview of the online ecommerce environment as ...
Global CyberSecurity
Online Credit Card Theft – A Brief Overview of Online Fraud and Abuse – Part 1
Post Views: 801 Many clients that we work with host and operate ecommerce websites which are frequent targets of attackers. The goal of ...
Global CyberSecurity
Malicious Redirects Through Bogus Plugin
Post Views: 1,214 Recently we have been seeing a rash of WordPress website compromises with attackers abusing the plugin upload functionality in the ...
