Welcome to Stratusclear

Show me more

Latest Blog Posts

  • Understanding Zero-Day Vulnerabilities & Attacks

    In computer science, a vulnerability is considered to be a zero-day vulnerability if it’s unknown to all parties interested in patching it, such as: The team maintaining the project The users of the project Vulnerability researchers Vulnerability researchers are the good guys – people who won’t take advantage of the vulnerability for their own gain More Info »

    Read More

  • Wikipedia Page Review Reveals Minr Malware

    Since December, we’ve seen a number of websites with this funny looking obfuscated script injected at the very top of the HTML code (before the tag). This code is generated by the well-known JJEncode obfuscator, which was once quite popular for encrypting malicious code. Since its popularity dwindled a few years ago, we’ve hardly seen More Info »

    Read More

  • Unwanted Pop-ups Caused by Injectbody/Injectscr Plugins

    On February 8th, 2018, we noticed a new wave of WordPress infections involving two malicious plugins: injectbody and injectscr. These plugins inject obfuscated scripts, creating unwanted pop-up/pop-unders. Whenever a visitor clicks anywhere on an infected web page, they are served questionable ads. Plugin Location The malicious plugins possess a very similar file structure: Injectbody wp-content/plugins/injectbody/ More Info »

    Read More

NEED WORDPRESS HELP?

We will get the job done! Finding innovative solutions to your obstacles is our specialty.