
What is Cross Site Request Forgery (CSRF)?
Learn what a CSRF attack is, how cross site request forgery works, examples, impacts, and the difference between CSRF and XSS. We also provide steps on how to prevent attacks to your environment.
Learn what a CSRF attack is, how cross site request forgery works, examples, impacts, and the difference between CSRF and XSS. We also provide steps on how to prevent attacks to your environment.
Learn what MageCart is, how MageCart works to infect an ecommerce website, and the different types of attacks. We also provide steps to detect and cleanup MageCart malware infections from your site.
A guide for new Sucuri customers illustrating how to activate the website firewall, server side monitoring, backups, and features of the Sucuri dashboard.
The AnonymousFox hack comes in many forms, using a suite of hacker tools to take advantage of website vulnerabilitites.
The OWASP Top Ten List has been updated this year! We outline the changes and what this means for website security best practices
Learn about the 2020 OWASP Top 10 vulnerabilities for website security and protect your site from security risks.
Is your website blocklisted? Learn how to remove website blocklist warnings from McAfee SiteAdvisor. Restore your website and reclaim visitors, revenue, and SEO rankings.
Learn how to identify security issues and take steps to recover your traffic & conversions. Follow our guidance to eensure your Magento site is PCI compliant.
Learn how to manage a Drupal security incident including steps to scan your site, fix malicious code, and harden your site with recommended tools and actions.
Understand how to keep your Joomla website safe from hackers and use best practices to protect your visitors and content from compromise.
Learn basic Drupal security techniques and actionable steps to reduce the risk of a compromise.
Join our program and earn commission for referring Sucuri customers. Perfect for webmasters, developers, hosts, marketers, agencies, and freelancers.
Learn how to quickly fix, clean & secure a hacked Joomla! site by removing malware and protect against future attacks with this easy step-by-step guide.
A guide for new Sucuri customers illustrating how to activate the website firewall, server side monitoring, backups, and features of the Sucuri dashboard.
Learn about the PCI DSS compliance requirements, risks and impacts of non-compliance, and ecommerce security with our PCI DSS compliance checklist.
Learn basic security techniques and actionable steps that will help to improve your security posture and reduce the risk of a compromise.
Website security is a top priority for any website owner or webmaster. Learn how to secure and protect your site from hackers with our in-depth guide.
Spam posts and comments are not complicated malware infections, but they can severely damage a website’s reputation. Learn what they are and how to remove the infection from WordPress.
The Sucuri team maintains a free WordPress security plugin. This guide will explain how to install, activate, and configure advanced settings in the plugin.
Learn how to identify and clean a hacked website, including backdoors, server files and database entries. This guide covers detection, removal, and ongoing protection.
Learn about brute force attacks and how you can prevent brute force and protect your website.
A guide to website security warnings and specific steps to fully restore your website before requesting a review from Google or any other blocklist authority.
Learn what SQL injection is and how it works. See the different types and examples of attacks, and find out how you can protect and clean your website from an SQL injection.
Web application firewalls (WAFs) are an important tool to keep your site safe. See how WAFs work & find the best solution.
WordPress is the most popular website platform, making it a target. Learn basic WordPress security techniques and actionable steps to reduce the risk of a compromise.
Website malware can come in many different types and from many places. Learn what website malware is.
DDoS attacks disrupt a website’s availability, causing downtime for hours or days. Learn what happens in various types of DDoS attacks and how to protect against them.
Cross-site scripting (XSS) occurs when hackers execute malicious JavaScript within a victim’s browser.
Learn how to activate SSL/HTTPS on your site. A tutorial on using Certbot and Let’s Encrypt to enable a free SSL certificate on your self-hosted website.
WordPress is the most popular website platform, making it a target. Learn basic WordPress security techniques and actionable steps to reduce the risk of a compromise.
Welcome to our guide on identifying and avoiding every type of imaginable scam from social engineering to pharmaceuticals to parcel fraud.