Category Archives WordPress Security

Cryptomining Hack Websites

What is Crypto Mining Malware (CoinHive Javascript)? How are you affected? CoinHive is an online service which provides cryptocurrency miners (crypto mining malware) that can be installed on websites using JavaScript. The JavaScript miner runs in the browser of the website visitors and mines coins on the Monero blockchain. It is promoted as an alternative to placing advertising on the website.…

Are you experiencing multiple bruteforce attempts on your WordPress admin area? If yes, then it’s a high time to do something about it. In this tutorial, we exploit how your can change the URL of WordPress admin, add an additional layer of security to your login area and how to restrict WordPress admin area by IP. By protecting your admin…

WordPress Code Injection

Wordpress sites have always been targets for internet fraudsters owing to its large user base and a wide range of functionalities. Using vulnerable Plugins, not timely updating to the latest versions, not applying patches regularly, and carelessness in security measures are the major reasons for a large number of attacks on Wordpress Sites. Unfinished Wordpress installations have rendered the world's…

How Does the WordPress DoS Exploit Work?

Wordpress, one of the most popular content management systems in the world is rendered vulnerable to yet another vulnerability capable of bringing down an entire WordPress powered system. Statistically powering nearly 29% of the web, an unattended Wordpress vulnerability breeds serious consequences for businesses and websites. The Wordpress DoS Vulnerability The vulnerability (CVE-2018-6389) was discovered by Israeli researcher Barak Tawily. According to Tawily, the flaw…

How to fix WordPress admin dashboard (wp-admin) hack

One of the worst feelings you can experience as a website owner is finding out that your website has been hacked. If proactive security measures are not taken - a hacker may be able to launch Pharma attacks, Phishing pages, Japanese SEO spam, Redirection Malware etc. through WordPress Admin panel hack. A new type of wp-admin hack has surfaced which adds an…

Removing Pub2srv malware from Opencart & WordPress

We’ve been watching a specific malware infection targeting OpenCart & WordPress websites for several months. It's commonly referred to as the pub2srv malware infection which redirects your website visitors to other malicious domains like go.pub2srv[.]com go.mobisla[.]com go.oclaserver[.com] deloton.com/afu.php?zoneid= site Dolohen.com   Screenshot of WordPress user request help in the forum What is pub2srv malware? What are its symptoms? It is a…

Close