Hacker News
- Wordpress vulnerability leads to defacement of hundreds of thousands of sites https://blog.sucuri.net/2017/02/wordpress-rest-api-vulnerability-abused-in-defacement-campaigns.html 7 comments
- Google Blocks Millions of .co.cc Domains, attackers now using .co.tv http://blog.sucuri.net/2011/07/google-blocks-co-cc-attackers-are-now-using-co-tv.html 2 comments
- SEO SPAM network - Details of a mass attack (many .gov, .com and .edus hacked) http://blog.sucuri.net/2010/05/seo-spam-network-details-of-wp-includes.html 16 comments
- Details on the Network Solutions / Wordpress mass hack - How it happened http://blog.sucuri.net/2010/04/details-on-network-solutions-wordpress.html 6 comments
- Honeypot analysis - Looking closer at SSH scans (user and passwords used) http://blog.sucuri.net/2010/01/honeypot-analysis-looking-at-ssh-scans.html 8 comments
- Password security without a password manager http://blog.sucuri.net/2009/10/password-security-without-password.html 5 comments
- Multiple top-security sites hacked (zf05) http://blog.sucuri.net/2009/07/multiple-top-security-sites-hacked-zf05.html 4 comments
Lobsters
- Malware Hidden Inside JPG EXIF Headers http://blog.sucuri.net/2013/07/malware-hidden-inside-jpg-exif-headers.html 4 comments security
- Simple online tools to provide a fast SSL report https://blog.sucuri.net/2020/02/ssl-testing-methods.html 3 comments netsec
- Mining Adminers - Hackers Scan the Internet For DB Scripts https://blog.sucuri.net/2017/08/mining-adminers-hackers-scan-the-internet-for-db-scripts.html 3 comments netsec
- PHP, Python and Google Go Fail To Detect Revoked TLS Certificates https://blog.sucuri.net/2016/03/beware-unverified-tls-certificates-php-python.html 10 comments golang
- Server Security: OSSEC Integrates Slack and PagerDuty https://blog.sucuri.net/2016/01/server-security-integrating-ossec-with-slack-and-pagerduty.html 9 comments netsec
- Critical 0-day Remote Command Execution Vulnerability in Joomla! https://blog.sucuri.net/2015/12/remote-command-execution-vulnerability-in-joomla.html 87 comments netsec
- Brute Force Amplification Attacks Against WordPress XMLRPC. https://blog.sucuri.net/2015/10/brute-force-amplification-attacks-against-wordpress-xmlrpc.html 5 comments netsec
- WordPress 4.2.2 Released - Supposedly Fixes XSS Vulnerability [Discussion] https://blog.sucuri.net/2015/04/security-advisory-xss-vulnerability-affecting-multiple-wordpress-plugins.html 5 comments webdev
- SoakSoak Malware Compromises 100,000+ WordPress Websites http://blog.sucuri.net/2014/12/soaksoak-malware-compromises-100000-wordpress-websites.html 10 comments webdev
- Deep Dive into the HikaShop Vulnerability http://blog.sucuri.net/2014/11/deep-dive-into-the-hikashop-vulnerability.html 4 comments netsec
- Bash Vulnerability – Shell Shock – Thousands of cPanel Sites are High Risk http://blog.sucuri.net/2014/09/bash-vulnerability-shell-shock-thousands-of-cpanel-sites-are-high-risk.html 6 comments linux
- Update Revolution Slider NOW! http://blog.sucuri.net/2014/09/slider-revolution-plugin-critical-vulnerability-being-exploited.html 24 comments webdev
- Remote File Upload Vulnerability in WordPress MailPoet Plugin (wysija-newsletters) http://blog.sucuri.net/2014/07/remote-file-upload-vulnerability-on-mailpoet-wysija-newsletters.html 3 comments netsec
- Disclosure: Remote Code Execution Vuln in Disqus http://blog.sucuri.net/2014/06/anatomy-of-a-remote-code-execution-bug-on-disqus.html 3 comments netsec
- Serious Cross Site Scripting Vulnerability in TweetDeck http://blog.sucuri.net/2014/06/serious-cross-site-scripting-vulnerability-in-tweetdeck-twitter.html 40 comments netsec
- New iFrame Injections Leverage PNG Image Metadata http://blog.sucuri.net/2014/02/new-iframe-injections-leverage-png-image-metadata.html 14 comments netsec
- Non-alphanumeric Backdoor PHP Backdoor http://blog.sucuri.net/2013/09/ask-sucuri-non-alphanumeric-backdoors.html 13 comments netsec
- Open Source Backdoor - Copyrighted Under GNU GPL http://blog.sucuri.net/2013/08/open-source-backdoor-copyrighted-under-gnu-gpl.html 8 comments netsec
- Malware Hidden Inside JPG EXIF Headers http://blog.sucuri.net/2013/07/malware-hidden-inside-jpg-exif-headers.html 4 comments technology
- Update WP Super Cache and W3TC Immediately - Remote Code Execution Vulnerability Disclosed http://blog.sucuri.net/2013/04/update-wp-super-cache-and-w3tc-immediately-remote-code-execution-vulnerability-disclosed.html 49 comments netsec
- GoDaddy shared servers compromised http://blog.sucuri.net/2011/09/godaddy-shared-servers-compromised-htaccess-redirection-to-sokoloperkovuskeci-com.html 9 comments webdev
- MySQL.com compromised via (guess what?) SQL injection http://blog.sucuri.net/2011/03/mysql-com-compromised.html 8 comments webdev
- Continuing attacks against osCommerce sites http://blog.sucuri.net/2010/11/continuing-attacks-against-oscommerce-sites.html 3 comments netsec
- Bluehost CEO blog hacked (and many other sites at Bluehost) http://blog.sucuri.net/2010/06/bluehost-ceo-blog-and-others-exploites-by-domainameat-cc.html 4 comments netsec
- Wordpress user: Be careful where you get your theme from (irewordpressexperts.com hiding tracking code) http://blog.sucuri.net/2010/06/wordpress-user-be-careful-where-you-get.html 8 comments netsec
- Here we go again - Problem at GoDaddy continues (or if you are at GoDaddy you are screwed) http://blog.sucuri.net/2010/05/here-we-go-again-problem-at-godaddy.html 7 comments netsec
- GoDaddy hit again by the same issue - Lots of sites hacked http://blog.sucuri.net/2010/05/continuing-attacks-at-godaddy.html 6 comments netsec
- Leaking private IP addresses via DNS (Cisco, Facebook, etc) http://blog.sucuri.net/2010/05/leaking-private-ip-addresses-via-dns.html 11 comments netsec
- Second round of GoDaddy sites hacked (lots of them again) http://blog.sucuri.net/2010/05/second-round-of-godaddy-sites-hacked.html 5 comments netsec
- Details on the Network Solutions / Wordpress mass hack - How it happened http://blog.sucuri.net/2010/04/details-on-network-solutions-wordpress.html 4 comments netsec
- Mass infection of Wordpress blogs at Network Solutions http://blog.sucuri.net/2010/04/mass-infection-of-wordpress-blogs-at.html 16 comments netsec
- Apache.org defaced - Security archive case study http://blog.sucuri.net/2010/03/apacheorg-defaced-security-archive-case.html? 5 comments linux
- Godaddy stores your passwords in the clear - and tries to SSH your VPS! http://blog.sucuri.net/2010/02/godaddy-store-your-passwords-in-clear.html 63 comments netsec