by | 14 Sep 2015

French websites: a prime target for malware dissemination

The French sites are the main target of hackers for malware dissemination. If a malware is installed on your server (even without your consent), your responsibility is exposed and the consequences can be dramatic. Discover in this article how to identify, remove and prevent all forms of malware on your website, once and for all!

Top attacking countries by number of hits

39.5% of attacks are targeting French websites, followed at some distance by the United States for 18.60% of attacks through a malicious program. This study focuses on a 30-day in-depth analysis on 17 000 recorded attacks. The recorded attacks were made of different types of payloads and Trojans, aiming a total takeover of the server targeted.


Image source and study:

Most of the affected websites were private blogs based on WordPress or Joomla. This is hardly surprising because the popularity of CMS translates the strong interest from hackers. If a vulnerability is identified in a popular CMS or plugin, there are thousands of potential targets. (Read “The CMS, a prime target for hackers”).

Malware’s impact on eCommerce sites

The Incapsula study is mainly about a backdoor entrance door. It is quite common for hackers to place a backdoor on a site they have hacked. A backdoor can give a hacker continued access to the site even if the site owners changes account passwords. Backdoor scripts will vary from 100s of lines of code to 1 or 2 lines of code.

Identifying a backdoor (or Shell php) on its website is a challenge, it’s like finding a needle in a haystack. Malicious software can be installed in any directory and subdirectory of the website and under any innocent name. This is even more difficult to detect because the malicious program may be directly coupled to a native file of you CMS.

The purpose of these malicious programs is to take control of the server to retrieve sensitive data (financial and customer data). An infected eCommerce platform is also a good vector for malware distribution. Your responsibility is exposed and the financial consequences can be dramatic.

Malware can also have a negative impact on your Search Engine Optimization (SEO). If a Google bot identifies a malicious program on your site (Google bots crawl your site regularly), there is a chance to be blacklisted.

Protect your eCommerce’s site from malware

Do not wait until your company’s website or eCommerce site has been the target of a cyber-attack to adopt security measures. A compromised website with a malicious program or a website defacement can dramatically impact your sales and your notoriety.

As it is never too late to protect your website,  OZON allows you to assess your site risk level for free by detecting vulnerabilities and malware on your website.

OZON is an all-in-one cyber security solution designed to protect any type of website and CMS (WordPress, Joomla, Magento, PrestaShop …). OZON detects vulnerabilities and malwares, protects against cyber-attacks and identifies fraudulent transactions. All these functions are performed in real time.