The Balada Injector is a well-known family of malware that primarily targets WordPress sites. It mass-injects malicious JavaScript into websites, often taking advantage of vulnerabilities...
Analysis of a newly found Malicious JavaScript on WordPress Sites
The MoeSec security team recently discovered a piece of malicious JavaScript on a WordPress website. This script was injected using the Simple Custom CSS and...
Credit Card Skimmer Targeting eCommerce Websites using Magento, WooCommerce and OpenCart: Analysis and Mitigation
This article analyzes a specific skimmer affecting Magento, WooCommerce, and OpenCart based websites, deciphers its malicious code, discusses how it operates, and provides steps for...
New wave of SocGholish JavaScript malware injection Found on many WordPress Websites
New wave of SocGholish JavaScript malware injection Found on many WordPress Websites loading malicious code from MEMORYLOADER[.]COM
Uncovering Encoded JavaScript Malware: Analysis of a new Malware Campaign
MoeSec security researchers recently discovered a new strain of javascript malware that utilizes advanced encoding techniques to evade detection. This malware leverages a combination of...
New encodediagnosisrelish javascript malware injection utilizing WP Rocket to delay execution
New encodediagnosisrelish javascript malware injection utilizing WP Rocket to delay execution.
A new malware wave redirecting visitors to spam and phishing sites
A new Mal.Metrica wave redirecting visitors to spam and phishing sites by exploiting vulnerable Responsive wordpress theme