Attackers continue to find easy victims by crawling websites using enumeration techniques and looking for configuration files that have had their file extension modified.

Variants of popular PHP web shells have been popping up and analysis reveals that they contain a hidden backdoor used to steal the unauthorized access.

There’s a good chance that Anonymous Fox has scanned your website for different vulnerabilities at least once during the last 12-16 months. The majority of hacked WordPress websites I’ve encountered over the last 14 months have evidence of Anonymous Fox activity. How do they do it?

Analysis of a PHP one-liner found injected on Magento ecommerce websites and learn how it is used by attackers.

A phishing kit targeting the German bank N26.com and exfiltrating the stolen data to a third party hosted phishing panel which in turn immediately sends a push notification to the attacker.