Home | News | Sucuri Security News (page 20)

Sucuri Security News

Fake WordPrssAPI Stealing Cookies and Hijacking Sessions

Cookies are stored in the user’s browser to track behavior on a specific website. They also keep a user logged in during the active browsing session. Without cookies a user would need to log in, in order to authenticate every action they take. Essentially, cookies keep a user logged in until they either log out or the cookie expires. Cookie ...

Read More »

Introducing the New Sucuri Customer Dashboard

Over the course of the last year, our teams have been getting creative and making a collaborative effort to improve the experience of our customer dashboard. Website security is multifaceted and we understand the logistical complexities of managing multiple sites. That’s why we are continually brainstorming ways to make the management of your website security tools more streamlined. As always, ...

Read More »

Labs Notes Recap – Apr/2017

This month, our Malware Research and Incident Response teams wrote about several malware techniques that attempt to evade detection by focusing on small changes that website owners might miss. Examples include typos in domain names, unused top-level domains (i.e. .com, .solutions), and delayed banner ads. Sucuri Labs provides website malware research updates directly from our teams on the front line. ...

Read More »

Sucuri Firewall Dashboard Update

If you are a customer of ours, you may have noticed the recent updates we’ve made to our dashboard. These changes enhance your ability to manage the Sucuri Firewall and view detailed reports on the attacks being blocked from accessing your site. The dashboard has a new layout that improves both navigation and clarity, as well as bringing the design ...

Read More »

How to Use Splunk with Sucuri Audit Trails

The Sucuri Firewall dashboard provides a rich set of API functions that can be used to control your firewall settings remotely. In addition, there is an API function to download your Audit Trails in JSON format. The audit trail is a list of blocked requests that the firewall performed on your behalf to keep your site safe. While it’s possible ...

Read More »

The Principle of Least Privilege

If you own a website and collaborate with others, the principle of least privilege should never be questioned. It is a computer science principle which has applications and benefits to strengthen your website security posture. This principle is about: Using the minimal set of privileges on a system in order to perform an action. Granting those privileges only for the ...

Read More »

Website Malware: Unwanted Exit to YourBrexit

Some website hacks aim to make some political statements. Defacements are well known for this. Some infections redirect visitors to scam sites that push (usually counterfeit) goods or (often illegal) services. But what would you feel if your site redirected visitors to a political news site? This time we are talking about an attack that mainly targets UK sites and ...

Read More »

Sucuri Monitoring Dashboard Update

We are happy to share some big changes to the monitoring dashboard. The Sucuri Platform features a monitoring dashboard that provides information regarding the security of your website. If you’re not familiar with the monitoring piece of our platform, it’s a cloud-based Intrusion Detection System (IDS) built on the concept of a Network-Based Integrity Monitoring System (NBIMS). The monitoring platform ...

Read More »