menu

SCP-173 PHP Malware + WordPress

2020-10-12 :: Luke
#scp-173  #backdoor  #wordpress  #code comments  #website malware  SCP-173 PHP Malware + WordPress
An interesting code comment, scp-173, with meme origins has been found in various PHP malware targeting WordPress websites throughout 2020.
Read more →

Magento PHP Injection Loads JS Skimmer

2020-10-01 :: Luke
#underscorefw  #JavaScript  #skimmer  #magento  #ecommerce  #website malware  Magento PHP Injection Loads JS Skimmer
A JavaScript skimmer that conditionally loads from malicious PHP code injected into a Magento file.
Read more →

AT&T Global Employee MFA Phishing

2020-09-17 :: Luke
#MFA  #2FA  #PHP  #phishing  #fraud  #website malware  AT&T Global Employee MFA Phishing
A phishing page targeting AT&T employee login credentials including various forms of multifactor authentication like MTIPS®, which was created for the US federal government.
Read more →

Plugin Killer: WordPress Malware Disables Security Plugins

2020-09-11 :: Luke
#admin user creator  #backdoor  #seo spam  #plugin killer  #wordpress  #PHP  #website malware  Plugin Killer: WordPress Malware Disables Security Plugins
A malicious PHP file that was disabling common WordPress security plugins before injecting SEO spam onto the infected website.
Read more →

Golang Stealthworker

2020-09-03 :: Luke
#golang  #stealthworker  #exploit scanner  #ecommerce  #binary malware 
A golang binary that is a stealthworker variant and being dropped onto web servers running vulnerable applications (CMS).
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.