PHP Webshell Loads From Cookie

PHP Webshell Loads From Cookie
How to load/execute malicious PHP code stored in HTTP cookie values.
Read more →

Real-time Phishing Kit Targets Banco Itau Business Accounts

Real-time Phishing Kit Targets Banco Itau Business Accounts
A phishing kit targeting Banco Itau users that has real-time capabilities and QR codes to gain unauthorized access to victim accounts.
Read more →

Magento 2 PHP Skimmer 0x3C Captures Customer Data To Image File

Magento 2 PHP Skimmer 0x3C Captures Customer Data To Image File
A PHP skimmer injected into a Magento 2 core file that captures POST data on the cart checkout page and saves the stolen data to an image file on the hosting server.
Read more →

AT&T Global Employee MFA Phishing

AT&T Global Employee MFA Phishing
A phishing page targeting AT&T employee login credentials including various forms of multifactor authentication like MTIPS®, which was created for the US federal government.
Read more →

Plugin Killer: WordPress Malware Disables Security Plugins

Plugin Killer: WordPress Malware Disables Security Plugins
A malicious PHP file that was disabling common WordPress security plugins before injecting SEO spam onto the infected website.
Read more →
Disclaimer: The research posted on this website is for information purposes only. Do not use it for illegal purposes.