Astra Web Security Blog - Website & CMS Security News

astra, web, security, blog, website, cms, security, news

Explore easily with these CMS filters

Drupal Vulnerability: Highly Critical Remote Code Execution Vulnerability Found

Occupying a significant market share in Content Management Systems (CMS) used to develop websites, after Wordpress and Joomla, Drupal is a highly sought after CMS by major businesses and government organizations including the White House. Drupal is arguably the most secure CMS as it strictly adheres to online software standards (OWASP). While Drupal has gained prominence with the developers, it embodies an active…

Is your website showing any of the following symptoms all of a sudden: A lot of malicious pop-ups redirecting to unsolicited websites Showing spam URLs Getting slowed down due to high CPU usage (someone might be stealing your resources) Website suspended by the host Then there is a high chance that you are infected with WP-VCD malware. The WP VCD malware…

Hacked WordPress, Joomla & CodeIgniter Website? This ionCube Malware Could be the Cause

Over 700 WordPress and Joomla Websites have been infected with the ionCube malware that disguises as legitimate ionCube-encoded files. IonCube is an old and powerful PHP Encoder which is used for to encrypt and protect files with PHP encoding, encryption, obfuscation and licensing capabilities. Owing to licensing costs, ionCube isn’t generally a contender for malicious uses. However, attackers found a way to…

Cryptomining Hack Websites

What is Crypto Mining Malware (CoinHive Javascript)? How are you affected? CoinHive is an online service which provides cryptocurrency miners (crypto mining malware) that can be installed on websites using JavaScript. The JavaScript miner runs in the browser of the website visitors and mines coins on the Monero blockchain. It is promoted as an alternative to placing advertising on the website.…

2017 was the year of hackers. From content management systems, e-commerce portals, data breaches to hacked websites of financial institutions, cybercrime is on the rise with every passing year. 2017 witnessed staggering cyber attacks like the massive financial data theft in the Equifax Data Breach,  the WannaCry Cyber Attack which was 2017's deadliest ransomware attack, the Petya Ransomware attack, and the notorious yahoo…

WordPress Code Injection

Wordpress sites have always been targets for internet fraudsters owing to its large user base and a wide range of functionalities. Using vulnerable Plugins, not timely updating to the latest versions, not applying patches regularly, and carelessness in security measures are the major reasons for a large number of attacks on Wordpress Sites. Unfinished Wordpress installations have rendered the world's…

Free Website Security Scanner

Close