Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2022-08-16SUCURIDenis Sinegubko
@online{sinegubko:20220816:socgholish:2e4f75e, author = {Denis Sinegubko}, title = {{SocGholish: 5+ Years of Massive Website Infections}}, date = {2022-08-16}, organization = {SUCURI}, url = {https://blog.sucuri.net/2022/08/socgholish-5-years-of-massive-website-infections.html}, language = {English}, urldate = {2022-08-19} } SocGholish: 5+ Years of Massive Website Infections
FAKEUPDATES
2022-08-09SUCURILuke Leal
@online{leal:20220809:fake:2046fc6, author = {Luke Leal}, title = {{Fake Instagram Verification & Twitter Badge Phishing}}, date = {2022-08-09}, organization = {SUCURI}, url = {https://blog.sucuri.net/2022/08/fake-instagram-verification-twitter-badge-phishing.html}, language = {English}, urldate = {2022-08-17} } Fake Instagram Verification & Twitter Badge Phishing
2022-07-19SUCURIMatt Morrow
@online{morrow:20220719:prestashop:55554b0, author = {Matt Morrow}, title = {{PrestaShop Skimmer Concealed in One Page Checkout Module}}, date = {2022-07-19}, organization = {SUCURI}, url = {https://blog.sucuri.net/2022/07/prestashop-skimmer-concealed-in-one-page-checkout-module.html}, language = {English}, urldate = {2022-07-25} } PrestaShop Skimmer Concealed in One Page Checkout Module
2022-05-17SUCURIDenis Sinegubko
@online{sinegubko:20220517:xcart:c6d5fb6, author = {Denis Sinegubko}, title = {{X-Cart Skimmer with DOM-based Obfuscation}}, date = {2022-05-17}, organization = {SUCURI}, url = {https://blog.sucuri.net/2022/05/x-cart-skimmer-with-dom-based-obfuscation.html}, language = {English}, urldate = {2022-05-20} } X-Cart Skimmer with DOM-based Obfuscation
2022-04-22SUCURISucuri
@techreport{sucuri:20220422:2021:e28e63b, author = {Sucuri}, title = {{2021 Website Threat Research Report}}, date = {2022-04-22}, institution = {SUCURI}, url = {https://sucuri.net/wp-content/uploads/2022/04/22-sucuri-2021-hacked-report.pdf}, language = {English}, urldate = {2022-05-04} } 2021 Website Threat Research Report
2021-11-15SUCURIBen Martin
@online{martin:20211115:fake:2be64ec, author = {Ben Martin}, title = {{Fake Ransomware Infection Spooks Website Owners}}, date = {2021-11-15}, organization = {SUCURI}, url = {https://blog.sucuri.net/2021/11/fake-ransomware-infection-spooks-website-owners.html}, language = {English}, urldate = {2021-11-18} } Fake Ransomware Infection Spooks Website Owners
2021-09-01SUCURIBen Martin
@online{martin:20210901:analysis:9bb20fb, author = {Ben Martin}, title = {{Analysis of a Phishing Kit (that targets Chase Bank)}}, date = {2021-09-01}, organization = {SUCURI}, url = {https://blog.sucuri.net/2021/09/analysis-of-a-phishing-kit-that-targets-chase-bank.html}, language = {English}, urldate = {2021-09-06} } Analysis of a Phishing Kit (that targets Chase Bank)
2021-07-28SUCURIBen Martin
@online{martin:20210728:stylish:741bbed, author = {Ben Martin}, title = {{Stylish Magento Card Stealer loads Without Script Tags}}, date = {2021-07-28}, organization = {SUCURI}, url = {https://blog.sucuri.net/2021/07/stylish-magento-card-stealer-loads-without-script-tags.html}, language = {English}, urldate = {2021-07-29} } Stylish Magento Card Stealer loads Without Script Tags
2021-07-07SUCURIBen Martin
@online{martin:20210707:magecart:936a43d, author = {Ben Martin}, title = {{Magecart Swiper Uses Unorthodox Concatenation}}, date = {2021-07-07}, organization = {SUCURI}, url = {https://blog.sucuri.net/2021/07/magecart-swiper-uses-unorthodox-concatenation.html}, language = {English}, urldate = {2021-07-20} } Magecart Swiper Uses Unorthodox Concatenation
magecart
2021-05-28SUCURIBen Martin
@online{martin:20210528:woocommerce:838c718, author = {Ben Martin}, title = {{WooCommerce Credit Card Skimmer Hides in Plain Sight}}, date = {2021-05-28}, organization = {SUCURI}, url = {https://blog.sucuri.net/2021/05/woocommerce-credit-card-skimmer.html}, language = {English}, urldate = {2021-06-16} } WooCommerce Credit Card Skimmer Hides in Plain Sight
2021-03-18SUCURICesar Anjos
@online{anjos:20210318:server:10b99ea, author = {Cesar Anjos}, title = {{Server Side Data Exfiltration via Telegram API}}, date = {2021-03-18}, organization = {SUCURI}, url = {https://blog.sucuri.net/2021/03/server-side-data-exfiltration-via-telegram-api.html}, language = {English}, urldate = {2021-03-19} } Server Side Data Exfiltration via Telegram API
2021-02-02SUCURIDenis Sinegubko
@online{sinegubko:20210202:whitespace:a93d242, author = {Denis Sinegubko}, title = {{Whitespace Steganography Conceals Web Shell in PHP Malware}}, date = {2021-02-02}, organization = {SUCURI}, url = {https://blog.sucuri.net/2021/02/whitespace-steganography-conceals-web-shell-in-php-malware.html}, language = {English}, urldate = {2021-02-04} } Whitespace Steganography Conceals Web Shell in PHP Malware
2021-01-14SUCURILuke Leal
@online{leal:20210114:realtime:8580298, author = {Luke Leal}, title = {{Real-Time Phishing Kit Targets Brazilian Central Bank}}, date = {2021-01-14}, organization = {SUCURI}, url = {https://blog.sucuri.net/2021/01/real-time-phishing-kit-targets-brazilian-central-bank.html}, language = {English}, urldate = {2021-01-18} } Real-Time Phishing Kit Targets Brazilian Central Bank
2020-12-17SUCURIKrasimir Konov
@online{konov:20201217:dangers:7af8ed3, author = {Krasimir Konov}, title = {{The Dangers of Using Abandoned Plugins & Themes}}, date = {2020-12-17}, organization = {SUCURI}, url = {https://blog.sucuri.net/2020/12/the-dangers-of-using-abandoned-plugins-themes.html}, language = {English}, urldate = {2020-12-19} } The Dangers of Using Abandoned Plugins & Themes
2020-12-04SUCURILuke Leal
@online{leal:20201204:obfuscation:89d85ee, author = {Luke Leal}, title = {{Obfuscation Techniques in MARIJUANA Shell “Bypass”}}, date = {2020-12-04}, organization = {SUCURI}, url = {https://blog.sucuri.net/2020/12/obfuscation-techniques-in-marijuana-shell-bypass.html}, language = {English}, urldate = {2020-12-10} } Obfuscation Techniques in MARIJUANA Shell “Bypass”
2020-12-01SUCURILuke Leal
@online{leal:20201201:free:68dac25, author = {Luke Leal}, title = {{“Free” Symchanger Malware Tricks Users Into Installing Backdoor}}, date = {2020-12-01}, organization = {SUCURI}, url = {https://blog.sucuri.net/2020/12/free-symchanger-malware-tricks-users-into-installing-backdoor.html}, language = {English}, urldate = {2020-12-08} } “Free” Symchanger Malware Tricks Users Into Installing Backdoor
2020-11-26SUCURILuke Leal
@online{leal:20201126:hackers:7ab5846, author = {Luke Leal}, title = {{Hackers Love Expired Domains}}, date = {2020-11-26}, organization = {SUCURI}, url = {https://blog.sucuri.net/2020/11/hackers-love-expired-domains.html}, language = {English}, urldate = {2020-12-01} } Hackers Love Expired Domains
2020-11-05SUCURILuke Leal
@online{leal:20201105:alfa:a79687b, author = {Luke Leal}, title = {{ALFA TEaM Shell ~ v4.1-Tesla: A Feature Update Analysis}}, date = {2020-11-05}, organization = {SUCURI}, url = {https://blog.sucuri.net/2020/11/alfa-team-shell-v4-1-tesla-a-feature-update-analysis.html}, language = {English}, urldate = {2020-11-09} } ALFA TEaM Shell ~ v4.1-Tesla: A Feature Update Analysis
2020-11-02SUCURIDenis Sinegubko
@online{sinegubko:20201102:cssjs:e800099, author = {Denis Sinegubko}, title = {{CSS-JS Steganography in Fake Flash Player Update Malware}}, date = {2020-11-02}, organization = {SUCURI}, url = {https://blog.sucuri.net/2020/11/css-js-steganography-in-fake-flash-player-update-malware.html}, language = {English}, urldate = {2020-11-04} } CSS-JS Steganography in Fake Flash Player Update Malware
magecart NetSupportManager RAT
2020-09-25SUCURIKrasimir Konov
@online{konov:20200925:magento:21a7de0, author = {Krasimir Konov}, title = {{Magento Credit Card Stealing Malware: gstaticapi}}, date = {2020-09-25}, organization = {SUCURI}, url = {https://blog.sucuri.net/2020/09/magento-credit-card-stealing-malware-gstaticapi.html}, language = {English}, urldate = {2020-10-05} } Magento Credit Card Stealing Malware: gstaticapi