Articles & Insights
Discover tutorials and insights on CDN performance, edge security, and web infrastructure.
Latest Articles
WordPress Security: BackupBuddy Plugin Vulnerability Active Exploit Attempts
Active exploit attempts targeting BackupBuddy (v8.5.8.0–8.7.4.1). Details on the LFI vector, real-world IOCs (admin-ajax.php/admin-post.php, wp-config.php, /etc/passwd), observed attack timelines, and mitigation tips.
Navigating 81 Layers of Encoding to Reveal the C&C
We decode a heavily obfuscated payload used in a SERP hijacking campaign and follow it to the attacker’s C&C.
Hijacking a Website’s SERP Results with SEO SPAM
How attackers hijack a site’s search results using large-scale SEO spam, sitemaps, and persistence mechanisms.
What Hackers Do with WordPress in 2022 - Post Hack Analysis
This article explains what hackers do with WordPress once they successfully hack a website.
Automated Attacks Against WordPress Target Old Vulnerabilities
Evidence from a fresh deployment shows bots quickly probing for years-old plugin flaws and blindly attempting wp-config.php grabs.
How WordPress Gets Hacked in 2022 - Initial Reconnaissance
This article shows the techniques used to hack a WordPress site in 2022.
How the JSON API and XMLRPC are used for Brute Force Attacks Against WordPress
How attackers enumerate users via WP-JSON and brute force credentials through XMLRPC (including system.multicall), plus practical hardening tips.
Get
Started