Welcome to the August Edition of Our Sucuri Newsletter!
This month, we revealed a massive WordPress infection targeting vulnerable themes and plugins. We also released a new ecommerce email course, described how a cookie consent script was used to distribute malware, and explained how caching best practices can reduce the impact of a DDoS attack.
Massive WordPress Redirect Campaign Targets Vulnerable Themes and Plugins
Our senior malware researcher describes a new WordPress infection that’s targeting vulnerable tagDiv themes and Ultimate Member plugins.
After the rush to become GDPR compliant, many website owners hired third-party services to create a cookie consent. We explain how an unverified cookie consent script was used to distribute malware.
Ecommerce website owners are required to follow the PCI-DSS requirements to securely handle cardholder information – even if you don’t process the payments yourself.
Sign up for our free email course to learn about how you can secure your online store and maintain PCI compliance.
I am a security analyst as well as supervisor/team lead at Sucuri. Most of my time is spent helping other analysts and working on compromised websites.
Krasimir’s Fun Fact
I don’t have a TV subscription, I rarely watch mainstream media, and I hate commercials. Most days I am out riding my sports bike or shooting guns.
Krasimir’s Security Tip
Keep your software updated and always have a backup. It’s better to be safe than sorry.