How Does Sucuri Clean Hacked Websites? 

Great post of how the security company ‘Sucuri’ approach infected websites and handle the huge scale of cleanups they perform within a single day (>400).

  1. Establish a Baseline of the Environment
  2. Identify Known Compromised Files
  3. Identify Anomalies and Signs of Compromise
  4. Check for Integrity Issues with Known Goods
  5. Remove from Blacklists

Source: How Does Sucuri Clean Hacked Websites? – Sucuri Blog

Continue Reading

Transparency Report on HTTPS – Google

Google has added some new sections to their Transparency Reporting site. The most interesting is the new ‘HTTPS on top sites‘ page which shows some interesting details for a list of sites which make up around 25% of all website traffic world wide.

Some heavy hitters in the list which aren’t even trying to serve website content over HTTPS:

2016-03-16 08_22_38-Transparency Report – Google

Some of the ‘good’ sites which have best practice configuration:

2016-03-16 08_23_02-Transparency Report – Google

Source: Transparency Report – Google

Continue Reading