What is a Website Audit Log & Why Are They Important?

OWASP Top 10 Security Risks – Part V

Gerson Ruiz | January 15, 2019 | Ask Sucuri, Best Practices, Security Advisory, Security Education, Website Security

To bring awareness to what threatens the integrity of websites, we are continuing a series of posts on the OWASP top 10 security risks. The OWASP Top 10 list consists of the 10 most seen application vulnerabilities: Injection Broken Authentication Sensitive data exposure XML External Entities (XXE) Broken Access control ... Read More

Sucuri Blog

It is National Cyber Security Awareness Month and in order to bring awareness to what threatens the integrity of websites, we have started a series of posts on the OWASP top 10 security risks. The OWASP Top 10 list consists of the 10 most seen application vulnerabilities: Injection Broken Authentication ... Read More

Sucuri Blog

OWASP Top 10 Security Risks – Part I

Gerson Ruiz | October 3, 2018 | Ask Sucuri, Black Hat Tactics, Hacked Websites, Security Advisory, Security Education, sql injection, Website Security

It is National Cyber Security Awareness Month and in order to bring awareness to what threatens the integrity of websites, we would like to start a series of post on the OWASP top 10 security risks. OWASP stands for the Open Web Application Security Project, an online community that produces ... Read More

Sucuri Blog

What is SSL & How Does It Work to Secure Your Website?

SSL vs. Website Security

Gerson Ruiz | September 25, 2018 | Ask Sucuri, Best Practices, HTTP/HTTPS, Security Advisory, Security Education, Website Security

Having a website today is way easier than it was 10 or 15 years ago. Tools like content management systems (CMS), website builders, static site generators and alike remove a lot of the friction around building and maintaining sites. But, is there a price for such convenience? I would dare ... Read More

Sucuri Blog

Core Integrity Verifications

Gerson Ruiz | August 28, 2018 | encryption, Server Security, Sucuri WordPress Plugin, Website Security, WordPress Plugins, wordpress security

In order to clean a malware infection, the first thing we need to know is which files have been compromised. At Sucuri, we use several techniques including whitelists, blacklists, and anomaly checks. In this blog post, we’re going to be focusing on how core integrity checks are a key component ... Read More

Sucuri Blog

Content Security Policy

Gerson Ruiz | April 13, 2018 | Ask Sucuri, Best Practices, Security Advisory, Security Education, Website Security, XSS

As a website owner, it’s a good idea to be aware of the security issues that might affect your site. For example, Cross-site Scripting (XSS) attacks consist of injecting malicious client-side scripts into a website and using the website as a propagation method. You probably know too that client-side scripts ... Read More

Sucuri Blog

The Impacts of Zero-Day Attacks

Gerson Ruiz | February 28, 2018 | Ask Sucuri, Best Practices, Security Advisory, security bloggers network, Security Education, Website Security, zero-day

Last week, we explained what zero-day vulnerabilities and attacks are. Essentially, zero-day vulnerabilities exist in the wild, with no patch available to prevent hackers from exploiting it. Today, we would like to expand on the impacts of these attacks. What Do Zero-Day Attacks Depend On? The impact a zero-day attack ... Read More

Sucuri Blog

Gerson Ruiz
Sucuri Blog

OWASP Top 10 Security Risks – Part V

OWASP Top 10 Security Risks – Part IV

OWASP Top 10 Security Risks – Part III

OWASP Top 10 Security Risks – Part II

OWASP Top 10 Security Risks – Part I

SSL vs. Website Security

Core Integrity Verifications

Content Security Policy

The Impacts of Zero-Day Attacks

The Future of Multi-Cloud Security: A Look Ahead at Intelligent Cloud Security Posture Management Solutions

Prevent Catastrophic Data Loss in the Cloud

CISO Roundtable: What We’ve Heard, and What We’re Looking Forward To