stopthehacker.com

Experts Explain: Cross Site Scripting

This is the second part in a series of posts here at StopTheHacker where we describe the various methods that malicious hackers use to infect benign and legitimate websites with web-malware. This time, we will discuss one of the most prolific techniques used to compromise millions of websites: Cross Site Scripting. Cross Site Scripting attacks [...]

Experts Explain: SQL Injection

Website security is an arms race. Malicious hackers modify their methods constantly to infect benign and legitimate websites with web-malware. One of the most common techniques used to compromise millions of websites is called SQL Injection. SQL injection attacks have been making headlines increasingly in the past few months. This highlights the sorry state of [...]

Chickenkiller Infections

Malicious hackers are continuously evolving the strategies they use to infect thousands of innocent and benign websites with malicious computer code, i.e. web malware. Web malware is a relatively recent phenomenon and is quite different from the “standard” viruses and trojans that are known to infect PCs and servers. How do I identify the malicious [...]

RokBox.js Infections

Today’s websites make use of many third party plugins to add new functionality with the least amount of effort. The inclusion of these third party plugins brings significant additional risk, namely the introduction of vulnerabilities to one’s website through vulnerabilities in the plugin itself. A prime example of this is the Timthumb malware outbreak that [...]

DragosImport, Domboware Attacks

In the recent weeks, two websites have been used increasingly to mount attacks on unsuspecting visitors of legitimate, benign, sites compromised by malicious hackers. We will discuss the details of these distribution sites in our post. Is my site infected? First, to determine if your site has been compromised by the infections mentioned here, search [...]

Willysy Injection Attacks

Code injection attacks are now affecting millions of websites on the Internet. It is no longer an option to leave your website unprotected. We will be discussing the major outbreak of the “willysy.com” injection attacks in this article that at one time affected more than 100,000 websites. What is the Willysy attack? This particular code [...]

Redirection Attacks

Malicious hackers are continuously changing the tactics they use to compromise websites. Over 6,600 new websites are hacked and blacklisted every day and begin distributing malware to potential customers and visitors, destroying their owner’s online reputation. One of the primary mechanisms used to infect visitors to a website is insertion of malicious code into a [...]

Google Groups Hacked?

As of November 21, 2011, a large number of posts on Google groups seem to have been replicated to some adult chat rooms on Google Groups. This seems to be an attempt to game the search engine algorithm that Google uses and gain high search rankings for adult, spammy and potentially malicious websites. We have [...]

Simple Machines Malware

Simple Machines is a forum software used by thousands of website owners around the world to build online communities into their websites. Unfortunately, it is a perfect target for malicious hackers too. Finding a way to compromise the Simple Machines installation to inject malware into a legitimate website thereby infecting its visitors is an attractive [...]

nl.ai p,a,c,k,e,d Malware

Malicious hackers are continuing to find new ways to infect benign websites. A recent spate of attacks on WordPress powered sites proves this more strongly than ever. One popular method for infecting WordPress powered websites is to infect a file called “wp-settings.php”. The malware is then spread from this file to all subsequent requests for [...]

Protect your website and your visitors now

Category: Report