Malware

Obfuscation Techniques in MARIJUANA Shell “Bypass”

Obfuscation Techniques in MARIJUANA Shell “Bypass”

| | Black Hat Tactics, Hacked Websites, Labs Note, Malware, Security Education, Sucuri Labs, Website Backdoor, Website Malware Infections, Website Security
Attackers are always trying to come up with new ways to evade detection from the wide range of security controls available for web applications. This also extends to malware like PHP shells, ...
Sucuri Blog

How to Protect Your Business From Multi-Platform Malware Systems

| | Cyber Security, cyberattack, Featured Articles, Lazarus, Malware, North Korea
The Lazarus Group (also known as Guardians of Peace or Whois) is a notorious cybercrime gang made up of unknown individuals. According to the United States Federal Bureau of Investigations, the group ...
The State of Security
“Free” Symchanger Malware Tricks Users Into Installing Backdoor

“Free” Symchanger Malware Tricks Users Into Installing Backdoor

| | Black Hat Tactics, Hacked Websites, Malware, Sucuri Labs, Website Backdoor, Website Malware Infections, Website Security
In a previous post, I discussed how attackers can trick website owners into installing malware onto a website — granting the attacker the same unauthorized access as if they had exploited a ...
Sucuri Blog
Razy

How to Spot Razy Malware Undetected By AV Systems

| | indicators of compromise, Malware, network flows, Razy, traffic patterns
Examining traffic patterns can help spot malware such as Razy on users’ systems Note: Periodically, security researchers on the Cato Networks Research Lab publish internal findings gained while hunting threats on customer ...
Security Boulevard
WannaCry

Old Vulnerabilities Open the Door for WannaCry Ransomware

| | 0-day vulnerability, heartbleed, Malware, Ransomware, software updates, WannaCry
More than three years since it was discovered, WannaCry is still a threat for some organizations, research has found How often does your organization conduct a security assessment? Once a year? Once ...
Security Boulevard
CISA’s recommendations to recognize and avoid email scams [E-book]

CISA’s recommendations to recognize and avoid email scams [E-book]

| | cisa, email security, Exchange administration, Exchange Reporter Plus, Malware, Spam
Email has always been a popular tool for business communications. Unfortunately, it is also one of the weakest links in an organization’s security strategy. 94 percent of all cybersecurity incidents originate from ...
ManageEngine Blog
Pay2Key

Pay2Key Ransomware Joins the Threat Landscape

| | extortion, Iran, Malware, Operation Quicksand, Ransomware
As we approach the end of a year that has been trying for so many reasons, yet another ransomware has been seen in the wild targeting corporations—in particular, Israeli companies. A report ...
Security Boulevard
Hackers Love Expired Domains

Hackers Love Expired Domains

| | Black Hat Tactics, Labs Note, Malware, Sucuri Labs, Website Security, WordPress Plugins and Themes, wordpress security
Sometimes, website owners no longer want to own a domain name and they allow it to expire without attempting to renew it. This happens all the time and is totally normal, but ...
Sucuri Blog
Hidden SEO Spam Link Injections on WordPress Sites

Hidden SEO Spam Link Injections on WordPress Sites

| | Black Hat Tactics, Hacked Websites, Labs Note, Malware, SEO spam, Sucuri Labs, Website Security, wordpress security
Often when a website is injected with SEO spam, the owner is completely unaware of the issue until they begin to receive warnings from search engines or blacklists. This is by design ...
Sucuri Blog

Apple-Notarized Malware: What It Is and How It Affects Mac Users

| | Apple, Featured Articles, IT Security and Data Protection, macos, Malware, osx
Malicious actors are targeting Apple. Although Apple introduced a notarization mechanism to scan and prevent malicious code from running on Apple devices, attackers have found ways to circumvent this process. Such Apple-notarized ...
The State of Security
Load more