Learn what Remote File Inclusion Vulnerability is and how Quttera WAF can protect you from it.

Read more →

We recently uncovered a skimmer that infects websites using Magneto. A speedy response is important, and we work to remove threats and get your site back online as fast as possible.

Read more →

If an intruder can get unrestricted files onto the server and then run them or make users download them, that site has what is called a local file inclusion vulnerability.

Read more →

Learn more about HTML injection attacks and how Quttera WAF as a part of ThreatSign platform protects you from it.

Read more →

Learn more about CRLF injection attacks and how Quttera WAF as a part of ThreatSign platform protects you from it.

Read more →

Learn how a Cross Site Request Forgery or CSRF attack works and how Quttera WAF as a part of ThreatSign platform protects you from it.

Read more →

Defending against DNS attacks is difficult, but there are ways to reduce the harm they cause. Here are some tips to recognize the problem.

Read more →

Phishing schemes fool even careful people. Deceptive messages lead their victims to a website that looks like a legitimate login page for a well-known website

Read more →

In July 2018 we launched our next-generation Quttera Web Application Firewall (WAF). In the period from July through December, it handled 48,180,062 requests and blocked 617,074 attacks.

Read more →

If your website is presenting you with problems, it may not be malware. Recent cases have shown that when switching over to the latest PHP 7.2, there have been compatibility issues causing the site to crash.

Read more →

Malvertising often rides on a legitimate application, allowing it to take actions that the user hasn’t authorized - or worse.

Read more →

Google Chrome’s built-in developer tools give you everything you need to undo obfuscated JavaScript. If you run into some JavaScript which you think may be malicious, they can help you decipher it.

Read more →

While some users may be able to look for backdoor malware on their own, the hackers are using methods that are much trickier to detect. With ThreatSign, you can avoid backdoor malware, or even catch it before it’s too late.

Read more →

While running a malware cleanup on an infected WordPress site, we discovered a simple but deadly backdoor function in the active theme. When it’s in place, it lets an attacker run arbitrary PHP code using ordinary browser access.

Read more →

Harmless-looking files on your website aren’t always harmless. They can be malware in disguise. By using a file extension that shouldn’t be able to execute, they avoid getting caught by anti-malware software.

Read more →

Once your website is free of malware, it’s time to perform proactive steps to harden the website configuration and set up periodic checks to make sure the site stays clean.

Read more →

Once you have completed the Website Malware Removal Guide, Part 1: Preparation, it’s time to begin part 2, the cleanup process

Read more →

At Quttera, our goal is to provide the best level of services to our customers during the malware remediation process. In this series, we will provide instructions to help anyone with moderate computer skills to fix a hacked website.

Read more →

Release 3.2.1.0 of the Quttera WordPress Malware Scanner adds several valuable enhancements to an already powerful tool. Users who have the plugin installed can update it from the WordPress administrative dashboard

Read more →

Massive Wordpress hacking campaign using wp-crawler.php to redirect website visitors to geolocation-aware advertising websites.

Read more →