Fake AmeriCommerce Shopping Cart

Fake AmeriCommerce Shopping Cart

Our malware analyst Liam Smith recently found malware on a client’s site that targets ecommerce sites powered by AmeriCommerce software. A popular ecommerce software solution that allows users to run multiple carts ...
Zen Cart “PayPal” Skimmer

Zen Cart “PayPal” Skimmer

While we mostly see skimmers on Magento based websites, this does not mean that less-popular ecommerce platforms are safe from infections with similar payment information stealing malware. We recently found a case ...

Top 10 Sucuri Research Articles in 2019

As we settle into 2020, it’s a good time to look back at what was learned in the previous year. After all, the past provides valuable lessons for the future. With that ...
How Passwords Get Hacked - Sucuri Security

What is Cross-Site Contamination?

How many websites do you currently have on your server? If the answer is something along the lines of, “One that I really care about, some older ones that I don’t really ...
5 Year Anniversary of the SoakSoak Malware Tsunami

5 Year Anniversary of the SoakSoak Malware Tsunami

This is a story about the SoakSoak malware campaign that proved that you can’t underestimate impact of security issues in popular premium software. These days, the majority of popular content management systems ...
How Websites Are Used to Spread Emotet Malware

How Websites Are Used to Spread Emotet Malware

In past posts, we’ve discussed the more popular reasons why hackers target smaller websites. Today, we’ll focus instead on how hackers use compromised websites to spread dangerous malware like Emotet to end ...
Why Hackers Create Phishing Campaigns

Why Hackers Create Phishing Campaigns

Phishing is a malicious attempt to obtain personally identifiable information of a victim. The first thing to keep in mind about phishing is the goal of the attackers. In the first post ...
Black Friday/Cyber Monday Ecommerce Security Threats

Black Friday/Cyber Monday Ecommerce Security Threats

With the end of November comes the height of the holiday shopping season — specifically Black Friday and Cyber Monday sales, which typically span the last calendar days of November into the ...
Malicious Android Application Used in Phishing Scam

Malicious Android Application Used in Phishing Scam

While we deal with a lot of phishing cases, we rarely see mobile applications used as part of a phishing campaign—these apps add a layer of complexity to the process which deters ...
How Passwords Get Hacked - Sucuri Security

Why Reinfections Happen with a WAF

A web application firewall (WAF) is a great way to detect and filter incoming malicious requests before they can exploit website vulnerabilities and security flaws. While a WAF helps protect against threats ...