There are many variations to the Counter.php malware floating around the interwebs. This is a malicious redirect that sends your readers to a known bad site, that site houses a payload that responds based on the incoming user-agent. Malicious Site: natbushing.com Payload: counter.php Check out Sucuri Labs for more variations of Counter.php If you use [...]
Sucuri Brand Reputation Badges Updated
June 28, 2012 by
For a better part of the last year we have been offering our clients a badge that can be proudly displayed on their websites. The idea has always been to offer a certain level of reassurance, to their clients and readers alike, that the site they are visiting is (1) actively being monitored and (2) [...]
Understanding Conditional Malware – IP Centric Variation
June 21, 2012 by
In today’s web malware landscape you can’t help but take a minute to familiarize yourself with a concept known as conditional malware. As implied in the name, it’s malware that only works when specific rules are met. Those rules can range from specific IP ranges to time of day. They are very tricky and as [...]
How To: Stop The Hacker By Hardening WordPress
June 19, 2012 by
Every day we service 100′s of clients and the question is always asked: How do you stop these hackers!!!” Unfortunately, it’s perhaps the hardest to explain and understand for most. That being said, this post will be one of a series that talks to what end-users can do to help reduce their threat landscape. This [...]
How To: Remove McAfee SiteAdvisor Blacklisting
June 14, 2012 by
As more and more blacklisting authorities come online it becomes important to understand how to go about submitting your site for a review. The most recent challenge has been figuring out how to go about getting a site off the McAfee SiteAdvisor solution. You can read more about what SiteAdvisor is here: http://www.siteadvisor.com/howitworks/index.html What’s really [...]
3 Easy Steps to Make WordPress Updates Safer
June 13, 2012 by 5 Comments
With the release of WordPress 3.4 inching closer (could be minutes), we wanted to put together a quick post to help you towards a successful update. Here are a few areas to help you prepare for an easy update to the latest and greatest version of WordPress: 1. Backup your website Updates in WordPress these [...]
Partnerships: Sucuri & ClickHOST.com
June 12, 2012 by
Since April 2012, ClickHOST.com and Sucuri have been enjoying a symbiotic relationship. The two partnered in an attempt to offer cost-effective services to their clients. The family team at ClickHOST.com has recognized the need to get ahead of the web malware problem and understands that its not ok to simply shut down a site or [...]
Understanding Opportunistic Attacks
June 7, 2012 by
In many of the presentations we give each year we often talk about the concept of an opportunistic attack and for some it might be hard to grasp. With yesterday’s compromises at LinkedIn and eHarmony there is really no better time than now to take a minute an explain it. Recent Events Here is a [...]
Partnerships: Sucuri & WP Engine
May 30, 2012 by
In November 2011, Sucuri and WP Engine partnered to offer web-malware monitoring, alerting and remediation services to WP Engine customers. The partnership did not hold back on services, and that was intentional. Both of us share the similar opinions that the biggest vulnerability within the WordPress platform comes from lack of awareness and poor administration [...]
How To… Submit Infected Site for Review with Bing Blacklisting Authority
May 24, 2012 by
Many are not aware that there are many different blacklisting authorities out there, some are more prevalent than others, but each have their own method of submitting for review. In this post I want to focus on Bing as a blacklisting authority specifically. Like all the other Blacklisting authorities, Bing uses its own proprietary method [...]
