all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Magbo Spam Injection Encoded with hex2bin

Add to bookmarks
March 3, 2023, 4:35 p.m. | Ben Martin

Sucuri Blog blog.sucuri.net

We recently had a new client come to us with a rather peculiar issue on their WordPress website: They were receiving unwanted popup advertisements but only when the website was accessed through links posted on FaceBook. Initially we thought that this must be a rogue ad coming through an otherwise legitimate advertising network but it turned out to be a very well crafted and hidden spam injection.


In this post we will review this infection, outline the steps we took …

advertisements advertising black hat tactics client coming facebook hacked websites hidden injection issue links network popup review rogue spam thought website website malware infections website security wordpress wordpress plugins and themes wordpress security

Visit resource

More from blog.sucuri.net / Sucuri Blog

Hundreds of Websites Targeted by Fake Google Chrome Update Pop-Ups 4 days, 4 hours ago | blog.sucuri.net
browser campaigns chrome chrome update +30
From Privacy to Exfiltration: Telegram’s Role in Website Malware 1 week, 3 days ago | blog.sucuri.net
abuse black hat tactics creators cybercriminals +21
WordPress Vulnerability & Patch Roundup May 2024 1 week, 5 days ago | blog.sucuri.net
attacks automated awareness disclosures +32
How to Fix the NET::ERR_CERT_DATE_INVALID Error 2 weeks, 2 days ago | blog.sucuri.net
address can certificate connection +14
Server Side Credit Card Skimmer Lodged in Obscure Plugin 2 weeks, 4 days ago | blog.sucuri.net
attackers card credit credit card +22
What is HTTP 504 Gateway Timeout & How to Fix It 3 weeks, 5 days ago | blog.sucuri.net
best practices can error errors +14
What is HTTP Error 502 Bad Gateway & How to Troubleshoot It 4 weeks, 2 days ago | blog.sucuri.net
bad best practices can error +21
What is HTTP Error 429: Too Many Requests 1 month ago | blog.sucuri.net
access can code error +15
Mal.Metrica Redirects Users to Scam Sites 1 month ago | blog.sucuri.net
analysts black hat tactics click compromised +11

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com