https://thehackernews.com/2023/02/massive-adsense-fraud-campaign.html https://blog.sucuri.net/2023/02/bogus-url-shorteners-redirect-thousands-of-hacked-sites-in-adsense-fraud-campaign.html A recent report from Sucuri revealed a major AdSense fraud campaign that has affected over 10,000 WordPress sites. The campaign redirects traffic to fake websites to generate revenue through AdSense ads. Additionally, Sucuri's report outlines several best practices…
Latest articles
Sites hacked with fake CloudFlare DDoS alerts infected with RATs
Dan Knauss
NotesSecurity
Remote Access Trojans (RATs) are new to me — apparently, you can get one on a Windows machine as a malware payload from fake CloudFlare DDoS alert pages on hacked WordPress sites. Ben Martin at Sucuri explains "a recent surge…
The Decline of Speed Booster Pack
Barış Ünver
BusinessFeatures
We all enjoy reading success stories, right? A website reached a million visitors in just 10 days, a SaaS tool valued at $1 billion in less than a year, an author and her book translated into 100 languages worldwide. But…
Sucuri has found some malware that…
Dan Knauss
Security
Sucuri has found some malware that can disable security plugins to avoid detection. 😨 This is really devious! Luke Leal explains: "If a user tries to reactivate one of the disabled security plugins, [the Malware] will momentarily appear to activate…
Add this to the list of…
Dan Knauss
Add this to the list of crappy things in 2020: Ben Martin at Sucuri shares another newly discovered variation of a credit card swiper he found on a WordPress WooCommerce site. 💳 Ben says, "2020 appears to be the year…
Marc-Alexandre Montpas at posted an excellent…
Dan Knauss
Security
Marc-Alexandre Montpas at posted an excellent and detailed dissection of the WordPress 5.2.3 security release on the Sucuri blog. 🔒
If you use the Give plugin,…
Dan Knauss
If you use the Give plugin, make sure you upgrade to the latest version (2.4.7+) due to a recently discovered vulnerability noted at the Sucuri blog by Antony Garand. 🔓 I enjoy how Sucuri breaks down the timeline from the…
Denis Sinegubko from Sucuri notes a…
Dan Knauss
Denis Sinegubko from Sucuri notes a recent malware redirect campaign that targets vulnerable tagDiv themes and the Ultimate Member Plugin which was recently updated. This is a good reminder to keep your themes and plugins updated, but another good piece of…
SiteLock has been acquired by private equity firm ABRY Partners
Brian Krogsgard
Security
SiteLock has been acquired by a private equity firm in for an undisclosed amount. Following the Sucuri acquisition by GoDaddy, now the two most prominent website security businesses in the space have been gobbled up. SiteLock has more than twelve…
Matt Medeiros sits down with JR…
Brian Krogsgard
Hosting
Matt Medeiros
I reported on GoDaddy’s likely acquisition…
Brian Krogsgard
I reported on GoDaddy's likely acquisition of Host Europe Group last year, and touched more on GoDaddy's positions in general in my post about their Sucuri acquisition. They have just finalized the acquisition of HEG. These deals takes months to…
What you should know about the Sucuri acquisition deal by GoDaddy
Brian Krogsgard
BusinessHosting
In fewer than six years, Sucuri went from a team trying to decide when the founders should go full time, to a team of more than one hundred people, and an acquisition deal in their hands from one of the…
Lilyana Yakimova shares that SiteGround’s site…
Brian Krogsgard
Security
Lilyana Yakimova shares that SiteGround's site security scanner is now powered by Sucuri. I've long gotten SiteGround's "all clear" emails from HackAlert, but I trust Sucuri far more, so I'm happy to see the change.
The ROI of WordCamp sponsorship
Brian Krogsgard
Business
Tony Perez guest posted on WP Tavern about the ROI of WordCamp sponsorships. He provides great insight into the thinking behind sponsoring events, which is highly valuable for WordCamp organizers, business owners, and the broader WordPress community as well. Even as event…
Denis Sinegubko from Sucuri demonstrates what…
Dan Knauss
Notes
Denis Sinegubko from Sucuri demonstrates what lessons we can learn from WordPress WP-Login malware in a recent post. If your site is ever hacked, always remember that hackers can take over existing legit admin accounts - so Denis recommends not…
Makers of WP Rocket are getting into WordPress security
Brian Krogsgard
BusinessSecurity
WP Media -- the team behind WP Rocket (a commercial caching product) -- are getting into the WordPress security sector. SecuPress hasn't yet launched, but they are starting early access trials for people that sign up through their home page.…