When a site gets hacked, it seldom happens that the hacker has not left behind a malware to get access of the website again, in the future. This deliberate plantation of malicious codes in a website with an intention of further exploitation is known as "website backdoor". Backdoors basically serve as an entry gate for an attacker to exploit it again and again.
OpenCart has helped millions of users around the globe to indulge in e-commerce activities. However, maintenance of OpenCart installations is necessary to protect the critical resources from cyber threats. Thus, it is important to ensure that proper OpenCart File Permissions is set such that users can access resources only intended for them. This article will give an overview of File…
Drupal is an open source PHP written content management system. In other words, the source codes in Drupal are rewritable by everyone. If the Drupal file permissions aren’t set properly, it becomes really convenient for hackers to gain access to these files and then manipulate them. Setting your file permissions right does not guarantee to shield you from all the…
Is your WordPress website redirecting users to unknown and unsecured sites? If yes, then your website might be hacked. Such WordPress hacked redirect attacks are quite common where the malware redirects the visitors of a particular website to either spammy websites, phishing pages or hacker controlled domains. Recently we noticed that wp-admin is getting redirected to spammy ads & fake CAPTCHA…
Among the major CMSs used extensively by businesses worldwide, WordPress is notorious for being the most targeted by hackers, who constantly search for ways to circumvent security patches and precautions taken by users. A majority of websites run on Wordpress, rendering it an excellent hackable target for malpractices and data theft. One such hack witnessed by Wordpress users lately is…
WordPress and Drupal are probably the most popular CMS used. Besides that, their popularity makes them good targets for SEO spammers. Multiple vulnerabilities in Drupal have been uncovered in the past few weeks. As a result SEO spammers target websites on these platforms. This is a Black Hat SEO technique also dubbed as 'WordPress Pharma hack or SEO Spam'. This…
WordPress File or Folder Permissions- Something that is easily forgotten When we talk about securing our WordPress account, we tend to discuss security plugins and extensions mostly which, no doubt is an important aspect of it. But, ignoring file permissions altogether can prove to be immensely dangerous for your WordPress website. To begin with, let us know what WordPress file…
Here is how you can add an admin account to your Opencart 2.X store using phpMyAdmin/MySQL database. This guide would come handy if you are unable to add the administrator account from the OpenCart panel, or have forgotten your password. Also helpful if you're an agency/developer and the customer hasn't given you administrator access. If you feel your store has…
What is WordPress wp-vcd Malware? We recently saw a new type of malware infecting WordPress websites by leveraging loopholes in outdated plugins and themes. The wp-vcd malware creates backdoors in your website by adding hidden WordPress admin users. Further, some variants of the malicious codes have been seen to modify core WordPress files and also add new files in the…
What is Cloki Malware? A new kind of malware has surfaced, dubbed as "Cloki" which has been slowing down (& also crashing) vulnerable Joomla & WordPress websites. The malware is able to execute core system commands without having access to cPanel or SSH. It is able to add a cron job so that the malware code is executed repeatedly in…
