An alarm or monitoring system is a great tool that can be used to improve the security of a home…
The administrative dashboard in WordPress is a pretty safe place: Only elevated users can access it. Exploiting a plugin’s admin…
Initially released December 2015, PHP 7 introduced a multitude of performance and security improvements. Approximately 43.7% of websites across the…
Our team recently stumbled across an interesting example of malicious code used to add an arbitrary user inside WordPress. The…
The Magento 1 EOL date has already passed, however it’s evident that a large number of websites will continue to…
A recent SiteCheck scan of an organization’s website showed an interesting pharmacy spam injection targeting COVID-19-related pages of websites. The…
During a website remediation, we recently discovered a new version of a Magento credit card stealer which sends all compromised…
This is a simple script that allows hackers to block specific crawlers based upon website requests from specific user-agents. This…
“Smoker Backdoor” is a PHP webshell backdoor that uses hexadecimal and decimal obfuscation in conjunction with the PHP function goto…
While string concatenation has many valuable applications in development — such as making code more efficient or functions more effective…