Global CyberSecurity
PrestaShop SuperAdmin Injector and Login Stealer
Post Views: 934 According to W3Tech’s data, PrestaShop is among the most popular CMS choices for existing ecommerce websites, so it should come ...
Global CyberSecurity
Evasive Maneuvers in Data Stealing Gateways
Post Views: 977 We have already shared examples of many kinds of malware that rely on an external gateway to receive or return ...
Global CyberSecurity
Another Credit Card Stealer That Pretends to Be Sucuri
Post Views: 1,103 During a routine investigation, we found yet another web skimmer that pretends to be related to Sucuri. One of our ...
Global CyberSecurity
Code Comments Reveal SCP-173 Malware
Post Views: 1,086 We sometimes find malware code injections that contain strange code comments, which are normally used by programmers to annotate a ...
Global CyberSecurity
ALFA TEaM Shell ~ v4.1-Tesla: A Feature Update Analysis
Post Views: 1,248 We’ve seen a wider variety of PHP web shells being used by attackers this year — including a number of ...
Global CyberSecurity
CSS-JS Steganography in Fake Flash Player Update Malware
Post Views: 1,452 This summer, MalwareBytes researcher Jérôme Segura wrote an article about how criminals use image files (.ico) to hide JavaScript credit ...
Global CyberSecurity
Reflected XSS in WordPress v5.5.1 and Lower
Post Views: 1,029 WordPress released version 5.5.2 yesterday, which fixed a reflected XSS vulnerability we reported earlier this year. The root cause of ...
