Categories
Security

Core Integrity Verifications

Core Integrity Verifications

In order to clean a malware infection, the first thing we need to know is which files have been compromised. At Sucuri, we use several techniques including whitelists, blacklists, and anomaly checks. In this blog post, we’re going to be focusing on how core integrity checks are a key component of the whitelisting model and how this is aids in effectively detecting malware.

Cryptographic Hash Functions and Checksums

When a website compromise happens, attackers add, modify, or delete files from the server.

Continue reading Core Integrity Verifications at Sucuri Blog.

Categories
Security

Malicious WordPress Subdirectory Installs For SEO Spam

Malicious WordPress Subdirectory Installs For SEO Spam

Remediating over 500 infected sites per day, we see attacks executed at varying levels of complexity. The tactics attackers use to compromise a site provide insight into their motives.

Some write elegant code and cover their trails carefully, while others create simple attacks that can be applied broadly but aren’t well concealed.

Spammers never cease in their quest to make use of resources of hacked sites, especially in black hat SEO schemes.

Continue reading Malicious WordPress Subdirectory Installs For SEO Spam at Sucuri Blog.

Categories
Security

Hacking WordPress Sites on Shared Servers

A website is only as safe as the weakest link on its shared server. Once a hacker gains access to one site on the server, they can easily infect other sites that share the same server permissions. This is called cross-site contamination. When it comes to WordPress websites, the core structure is well known by…

The post Hacking WordPress Sites on Shared Servers appeared first on Sucuri Blog.

Categories
Security

Server Security: Import WordPress Events to OSSEC

We leverage OSSEC extensively to help monitor and protect our servers. If you are not familiar with OSSEC, it is an open source Intrusion Detection System (HIDS); it has a powerful correlation and analysis engine that integrates log analysis, file integrity monitoring, centralized policy enforcement, rootkit detection, real-time alerting, and active response. It provides complete coverage
Read More

The post Server Security: Import WordPress Events to OSSEC appeared first on Sucuri Blog.