WHAT ARE THE SIGNS OF A HACKED WEBSITE?

The hacked website is a big problem becoming for business owners. Getting your site blacklisted, loss of traffic, complaints from client and hosting companies and all of the hard work you have put in into the promotion of your business is in danger. When the Giants Go DownEvery website is vulnerable to outage, even larger, well-known companies occasionally suffer website downtime. Every so often a client will contact us after the “death” of his website. Knowing the first symptoms of a...


10,000 hacked WordPress sites have caused thousands of PC infections

10,000 hacked WordPress sites have caused thousands of PC infections Specialists from Check Point found a group of hackers who organized malicious computer infestation campaigns through ads on websites, where cybercriminals distributed, cryptomayers, extortionists and bank Trojans. Experts said that they recorded more than 40 000 attempts of infection per week. Currently, the campaign is still active. Mostly, infection occurs through malicious advertisements. Experts believe that cybercriminals...


New Malicious PHP-script “Brain Food” infected 2400 website during one a week

Malicious PHP-script called Brain Food, is able to add a headache to web developers: it promotes questionable pharmaceutical products through pages hosted on legitimate sites. The new spam campaign is still quite successful, as it uses a PHP-script, implemented on the sites, well protected from detection. Over the past four months, Proofpoint specialists found 5,000 compromised sites infected by Malicious PHP-script "Brain Food". In a blog posted on Friday, the Proofpoint company said that over...


Server's of LimeSurvey service was attacked by hackers

Server's of LimeSurvey service was attacked by hackers Specialists from the company RIPS Technologies found a dangerous vulnerability in the popular service for organizing online surveys LimeSurvey. vulnerability allow you to run arbitrary code on web servers. LimeSurvey is a free open source Internet application. According to Securityweek, it is downloaded about 10 thousand times a month. Users install the client on their server and interact with the system through the web interface. Two...


Thousands of hacked sites infect visitors' computers with malicious software

Thousands of sites hacked and infect visitors’ computers with malware The other day it became known that a Hackers hacked several thousands of different sites by downloading malware to servers. It was done in order to infect the user PCs when they visited their compromised website. The hack campaign was carefully disguised, and was held at least a few months ago. Most hacked sites are built on open seorse CMS as WordPress, Joomla and SquareSpace . Information about the incident was...


For the first quarter of 2018, Consumer Cryptomining malware up 4,000%

For the first quarter of 2018, Consumer Cryptomining malware up 4,000 Specialists Malwarebytes published a report according to which the number of incidents of crypto-jacking for the first quarter of 2018 increased by 4000% compared to the same period last year. But the attacks of extortion programs on the contrary went to decline, their number decreased by 35%. The company presented an interesting infographics. For example, in the graph below you can estimate the number of malicious mining...


New Critical Vulnerabilities in Drupal

A critical vulnerability has been fixed in Drupal A week ago on March 28, Drupal Security Team announced patches that close the critical bug in security, relevant for all versions of Drupal 6.x, 7.x and 8.x. The vulnerability allows an attacker to gain access to the hosting server with the rights of the web server. Hacker don't have exploit that exploits this vulnerability, but it is likely to appear in the very near future, therefore it is strongly recommended that all site owners on Drupal or...


Hackers hide a miner malware installer on Github

Be careful the miner malware installer is on Github Analysts of Avast Software reported a new method of a hidden distribution of crypto-currency miners. They found a malicious installer, hidden in IT projects on Github. The detected malicious program is spread exclusively through phishing advertising. It is mostly hosted on adult websites or resources dedicated to computer games. In addition to the banners that are tied to the server with a redirector on Github, the researchers found a portal...


New malware masks for IonCube files

New malware masks for IonCube files Security researchers from SiteLock warned administrators of WordPress and Joomla sites about new malware that masqueraded as legitimate ionCube files. Malware, called ionCube Malware, is used by cybercriminals to create backdoors on vulnerable websites, allowing them to steal data or install additional malware. According to researchers, malware was detected on more than 800 sites belonging to small companies operating on the platforms of CMS WordPress, Joomla...


Phishing clone of Reddit site detected

Phishing clone of Reddit site detected A malicious clone of the popular Reddit site was found, it is located at reddit [.] Co A malicious clone of the popular Reddit site was found, it is located at reddit [.] Co. Apparently, the author of this clone expects that users will not be able to distinguish a fake. The site itself is phishing, designed to collect user names and passwords. The main page of the fake site is very similar to Reddit, but when clicking messages that are not photos or videos...


Keylogger injection campaign covered 2000 WordPress-sites

Keylogger injection campaign covered 2000 WordPress-sites The experts found that after the closure of the malicious website cloudflare [.] Solutions, with which hackers downloaded the cryptomayer Coinhive and later Keylogger on hacked WordPress sites, hackers registered three new domain names. According to PublicWWW, at the moment, as a result of the new malicious attack, hackers infected more than 2000 WordPress sites. Recall that hacking WordPress and inserting malicious JavaScript has been...


The Firefox browser will mark websites that were previously hacked

The Firefox browser will mark sites that were previously hacked Firefox will get a useful feature The developers of Firefox are working on a new feature that will warn you if you visit a site that has been attacked by hackers. Information for notifications web browser will be taken from the database "Have I Been Pwned", which spies on hacking web resources, writes Engadget. Author of the site Have I Been Pwned Troy Hunt has already confirmed that he is working with Mozilla on his Twitter page....


Announced new security features of Chrome, the engine ESET among them

Announced new security features of Chrome, the engine ESET among them Yesterday, Googleinfo-icon announced three new security features of the Chrome browser The features which will help to detect and combat malicious extensions and programs. First of all, Chrome will detect the addition of changes to the user's default settings. These include the settings of the search engine, the home page and the proxy server. If Chrome noticed this activity, a warning will be displayed (see the figure...


Security of Java applications at a low level

Security of Java applications at a low level Veracode has released a report on the state of application security for the period from April 1, 2016 to March 31, 2017. The new statistics are based on the analysis of about 250 billion lines of code obtained during 400 thousand checks in 1,400 client companies. According to the new statistics, 77% of applications used in the corporate environment suffer from at least one vulnerability, which can be detected at the first scan. For Java applications,...


Google Play again found the malware that integrated infected devices into an advertising botnet

Google Play again found the malware that integrated infected devices into an advertising botnet Experts at Symantec found in the applications from Google Play malware Sockbot Experts at Symantec found in the applications from Google Play malware Sockbot, which combined infected devices into a botnet. As a result, in early October 2017, eight programs from the developer FunBaster, downloaded from 600,000 to 2.6 million times, were removed from the official application catalog. It is worth noting...