Abused Cloudflare Workers Service Used to Inject Korean SEO Spam

Abused Cloudflare Workers Service Used to Inject Korean SEO Spam

We were recently contacted by a website owner about some malicious injected spam links that were being indexed by Google’s search engine crawler Googlebot. What was especially frustrating for the website owner ...
Spamdexing: What is SEO Spam and How to Remove It

Spamdexing: What is SEO Spam and How to Remove It

If you’re wondering what is SEO spam, a good way to gain an understanding is finding this wily beast in the wild. In your favorite browser, search with the terms buy viagra ...
Hacked Website Threat Report – 2019

Hacked Website Threat Report – 2019

The threat landscape for website owners is constantly shifting on a regular basis — and it’s becoming increasingly more complex. As attackers continue to develop tools and find new vulnerabilities to massively ...
The Strange Case of the Malicious Favicon

The Strange Case of the Malicious Favicon

During the past year, our Remediation department has seen a large increase in the number of fully spammed sites. The common factors are strangely named and unusually located favicon.ico files, along with ...
Why It's Important to Update Your Website

Spam That Fits Your Website

Most of the time when we talk about spam, we think about mindless machines that create posts or comments to advertise a business related to drugs, accessories, or essays. But what if ...
Why is Your Website a Target? The SEO Value of a Website

Why is Your Website a Target? The SEO Value of a Website

Website security is what we eat, sleep, and breathe. It’s what we do best because we deal with hacked websites every single day, thousands of them. Among the various types and evolution ...
Korean Gambling and Call Girl Spam on Hacked and Non-hacked Sites

Korean Gambling and Call Girl Spam on Hacked and Non-hacked Sites

This blog post talks about how a web spam campaign that targets only one country may create problems for sites owners around the world — even if their site is not hacked ...
Replica Spam on Poorly Maintained ASP Site

Replica Spam on Poorly Maintained ASP Site

Although the majority of sites we work on are powered by PHP, we still have clients whose sites use other programming languages. The other day we cleaned an ASP site where we ...
Typo 3 Spam Infection

Typo 3 Spam Infection

Here at Sucuri most of the malware that we deal with is on CMS platforms like: WordPress, Joomla, Drupal, Magento, and others. But every now and then we come across something a ...
Spam Injector Disguised as License Key in WordPress Website

Spam Injector Disguised as License Key in WordPress Website

Here at Sucuri, we clean WordPress websites every day. There are various types of common malware, but when we stumble upon a different scenario, our research team likes to dig deeper and ...