Return-Path: Delivered-To: mail@dorianvasco.de Received: from localhost (localhost [127.0.0.1]) by v22014122474822114.stilfilm.com (Postfix) with ESMTP id 9A57AD2784 for ; Fri, 17 Feb 2017 20:06:55 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at v22014122474822114.yourvserver.net X-Spam-Flag: YES X-Spam-Score: 2.194 X-Spam-Level: ** X-Spam-Status: Yes, score=2.194 required=2 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_IMAGE_RATIO_06=0.001, HTML_MESSAGE=0.001, PYZOR_CHECK=1.392, RCVD_IN_DNSWL_BLOCKED=0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no Received: from v22014122474822114.stilfilm.com ([127.0.0.1]) by localhost (v22014122474822114.yourvserver.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2WHgm18z36WV for ; Fri, 17 Feb 2017 20:06:53 +0100 (CET) Received: from o2.mail2.shared.hubspot.com (o2.mail2.shared.hubspot.com [50.31.57.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by v22014122474822114.stilfilm.com (Postfix) with ESMTPS id 5485CD23C1 for ; Fri, 17 Feb 2017 20:06:53 +0100 (CET) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=mail2.shared.hubspot.com; h=from:reply-to:to:subject:mime-version:content-type:list-unsubscribe; s=smtpapi; bh=+jYRBOKCNXuV5YxA4We0HrDECdM=; b=jd3e/yOqqpvrMJFnGX OahD1KbyMMKqY/2n7H1H5ZX7t/+OmwB+/OyaJS9bJ6lq27Yo+1UFPgDnf4m+ivF7 fTCmKpcXqdgYHTpWc9o2z3XL3riKaeedfwbX4ZIES3Sr83zVGicQCkvRMqrUmuLT bn67p8DzgdPbumvBXtv0oHThA= From: Sucuri Blog Reply-To: info@sucuri.net To: mail@dorianvasco.de Message-ID: <1487358216921.5c594550-b0c1-4817-8e8e-742a3a746519@mail2.shared.hubspot.com> Subject: ***SPAM*** =?utf-8?Q?WordPress_Security_=E2=80=93_Fake_Traf?= =?utf-8?Q?ficAnalytics_Website_Infection?= MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_1260312_856133949.1487358401216" List-Unsubscribe: , X-Report-Abuse-To: abuse@hubspot.com (see https://www.hubspot.com/abuse-complaints) X-HubSpot-MID: CiQ1YzU5NDU1MC1iMGMxLTQ4MTctOGU4ZS03NDJhM2E3NDY1M TkQ4rMeGLqyASAAKO+0uRQw+vIVOhNtYWlsQGRvcmlhbnZhc2NvLmRlQ NmV1eukK0jkAlogNzg1YTllNWJjYTg5ZGY4OThhMWI1ZGQ3MjkwMjc5Y jNlAABUQnDz4cwYgAEAigEkNzlhYWUwMTYtMzA2MC0zNjBhLTgyYmUtZ jE4MDZkYmJlMjBkoAEAqAECsAEAyAEB0gEPaW5mb0BzdWN1cmkubmV04 gEOZG9yaWFudmFzY28uZGU= Date: Fri, 17 Feb 2017 19:06:41 +0000 (UTC) X-SG-EID: 7giigzkRv5byIVQi8QoJMf6K/3KfEkjMb81l2x8+gr8MMQ7rFt6wUS7tozaTbmDZBZ0yklg3Hjd1Ow Vj+4dSEdCpx6eE9/rI2yW5AnixEUrycdy4L4IQ1QAWbtfCnH9CLfZmiSjDYggyjyUqI6Mc/x9x7qgM 8iuHpVt7oeGKIK3A++zQ9wBehX8/MaR/M07NgSbDjcgO9jeWQAEahWVHBQ== X-SG-ID: BaKDar+VrkG/S9kwb9JXA7eZsEi0quZaX+iIPPThE0DizK3+3s7xRP5ODTNdAwPfZ+qw45r2GEMdre d7zEj4PREpEH6dfLmSa7EsIVUNXXrTmFmqLG3hAA7wxS9DmDSZnt0wXCngVjYNSdCn3pekUTmnFov6 bBcQhD1FwX9u13Pd7oV3KCDBmrA6sECrzJhbxbfLLb43mc+tJuWq8gqWn78ziSWBHrtzuTyzRnlrQn ksAwz7Cl3fNEOYMoAY1fKBXH3DqBuYYZIRFWKOeVemFP/4WadwDcouHdJmObuWGGjlN+ANgXCfUd5y IQPOtEsn8kk+HCPku3oCCgaVWoQfAv1I5vC2MHfM5jdKYVvuQfUb0kURdoAc/ye+DY1lVY4Qlw0GeA 6wLsqWtStCBH1v8CmEaRSVtIyBfnGG3tK2Ajc= ------=_Part_1260312_856133949.1487358401216 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable We have released a new article on our blog. Real People. Real Security. Real People. Real Security. (https://blog.sucuri.net/?utm_campaign=3DBlog+R= SS&utm_source=3Dhs_email&utm_medium=3Demail&utm_content=3D42883695&_hsenc= =3Dp2ANqtz-8V_eCNoa9T4v5WnIHTQuiYgTxJ6nGd-Xewd2-FPDn8V3KNRtg751YuSMIzVFOVOQ= Jk2NrD2462Am8oupiIGgu8joJCgw&_hsmi=3D42883695) WordPress Security =E2=80=93 Fake TrafficAnalytics Website Infection (https= ://blog.sucuri.net/2017/02/fake-trafficanalytics-website-infection.html?utm= _campaign=3DBlog+RSS&utm_source=3Dhs_email&utm_medium=3Demail&utm_content= =3D42883695&_hsenc=3Dp2ANqtz-8KKN33dOYJxCQU6ddUMyOxH3GxWgNDsj8lqFWfYFw-vBMl= Lhy_0QOLZzm2mR9gwGnNtSfmXm6-oRUkFoXZf3EhtJzlqQ&_hsmi=3D42883695) By Rodrigo Escobar, Friday, February 17, 2017 11:30 AM WordPress Security =E2=80=93 Fake TrafficAnalytics Website Infection (https= ://blog.sucuri.net/2017/02/fake-trafficanalytics-website-infection.html?utm= _campaign=3DBlog+RSS&utm_source=3Dhs_email&utm_medium=3Demail&utm_content= =3D42883695&_hsenc=3Dp2ANqtz-809DW_oZsg-jomP3XVtVKbB4WSS9hCeVV6pYx6DUeRLB5k= GxmhJyzqD-Mp_QkZKqw5YLgxz2c4uOgo-OBs3YbsBEic_w&_hsmi=3D42883695) Several months ago, our research team identified a fake analytics infection= , known as RealStatistics. The malicious Javascript injection looks a lot l= ike tracking code for a legitimate analytics service. RealStatistics even s= et up fake analytics websites designed to trick webmasters who took a few s= teps to investigate the unfamiliar script. Recently, a new variation of this type of infection has emerged. The new ca= mpaign uses trafficanalytics[.]online as the source for the injected script. Continue reading WordPress Security =E2=80=93 Fake TrafficAnalytics Website= Infection at Sucuri Blog. (https://blog.sucuri.net/2017/02/fake-trafficana= lytics-website-infection.html?utm_campaign=3DBlog+RSS&utm_source=3Dhs_email= &utm_medium=3Demail&utm_content=3D42883695&_hsenc=3Dp2ANqtz-_YnhHxsPVrNYXZN= deCMk1sntssM1pJ32SYr0MxayLMlTIbGObUQCN0V5H8H900Z2aC1eYoR9J9lwEaNsh9sA3SJBeA= gg&_hsmi=3D42883695) Visit Our Blog (https://cta-image-cms2.hubspot.com/ctas/v2/public/cs/ci/?pg= =3Db9176485-2b2e-4293-bb1d-3b7b9c75cb22&pid=3D498146&ecid=3DACsprvvemfXSRDp= cN6wVAtS9NP2QzlWTmOwhTywyE4WbYrRmrXgEqBpj3nWlZqO7fGL3_OLqHarf&utm_rewrite= =3DREWRITE_BARE&utm_campaign=3DBlog+RSS&utm_source=3Dhs_email&utm_medium=3D= email&utm_content=3D42883695&_hsenc=3Dp2ANqtz-9wEHyBf5QW2wiQ6vszy6vRshwHENU= y3VmX9wnWniSBmTy61xSCdrOJB5_6c9ejBIz6pK8fYeVwg7iE8o-947ErvcFsZA&_hsmi=3D428= 83695) Secured_Website.png (https://sucuri.net/lp/email/em-website-security?utm_ca= mpaign=3DBlog+RSS&utm_source=3Dhs_email&utm_medium=3Demail&utm_content=3D42= 883695&_hsenc=3Dp2ANqtz-9_iCjjEPlJoilLJB8hm08IXRWLKixJoLUAfkwr4hbST-MwwflNq= mbolxfO8FEiLT-rktbIoutTM9FJHlOKob8flfIaVw&_hsmi=3D42883695) Secure Your Web= site Today (https://sucuri.net/lp/email/em-website-security?utm_campaign=3D= Blog+RSS&utm_source=3Dhs_email&utm_medium=3Demail&utm_content=3D42883695&_h= senc=3Dp2ANqtz-8vkdfVrvbuJeS0Hn0EdehuIRZn_R2hHCIXNFnUurHlUGPr2RkVGU6T6FJruH= UGYiw7TTQlKJRiLUqsbMqDTHUd8lpDYA&_hsmi=3D42883695) Share on Facebook (http://www.facebook.com/share.php?u=3Dhttps%3A%2F%2Fblog= .sucuri.net%2F2017%2F02%2Ffake-trafficanalytics-website-infection.html%3Fut= m_medium%3Dsocial%26utm_source%3Dfacebook&utm_campaign=3DBlog+RSS&utm_sourc= e=3Dhs_email&utm_medium=3Demail&utm_content=3D42883695&_hsenc=3Dp2ANqtz-_dl= K6H9xKaRUVtguDZZuUZd5y6KYDznSLa9nWLZ1s-sGe6zH7BoTKgPHzDvHc0k-7M7rwY-jY5pGnk= mAeeXSRHZf90pg&_hsmi=3D42883695) Share on LinkedIn (http://www.linkedin.co= m/shareArticle?mini=3Dtrue&url=3Dhttps%3A%2F%2Fblog.sucuri.net%2F2017%2F02%= 2Ffake-trafficanalytics-website-infection.html%3Futm_medium%3Dsocial%26utm_= source%3Dlinkedin&utm_campaign=3DBlog+RSS&utm_source=3Dhs_email&utm_medium= =3Demail&utm_content=3D42883695&_hsenc=3Dp2ANqtz-8rojB_Rvtcs01aVa1gUfiRp_wh= pbM6Tz9oS8JClEBfV0uWNh50hnqxNr4OX26PC8sq9nIs3Nzgcy3XmH7oo7rhqarciA&_hsmi=3D= 42883695) Share on Twitter (https://twitter.com/intent/tweet?original_refe= rer=3Dhttps%3A%2F%2Fblog.sucuri.net%2F2017%2F02%2Ffake-trafficanalytics-web= site-infection.html%3Futm_medium%3Dsocial%26utm_source%3Dtwitter&url=3Dhttp= s%3A%2F%2Fblog.sucuri.net%2F2017%2F02%2Ffake-trafficanalytics-website-infec= tion.html%3Futm_medium%3Dsocial%26utm_source%3Dtwitter&source=3Dtweetbutton= &text=3DWordPress+Security+%26ndash%3B+Fake+TrafficAnalytics+Website+Infect= ion&utm_campaign=3DBlog+RSS&utm_source=3Dhs_email&utm_medium=3Demail&utm_co= ntent=3D42883695&_hsenc=3Dp2ANqtz-_SQHevfKW0in4-pUEh0IxVp8G6fj7RKDvSLPr9dz8= dlcylFBGMI-VPSvpH4N0IWEwsJvNEumaF0ZmHIzBJw1ERwvofqw&_hsmi=3D42883695) Shar= e on Email (mailto:?subject=3DCheck out https%3A%2F%2Fblog.sucuri.net%2F201= 7%2F02%2Ffake-trafficanalytics-website-infection.html%3Futm_medium%3Dsocial= %26utm_source%3Demail &body=3DCheck out https%3A%2F%2Fblog.sucuri.net%2F201= 7%2F02%2Ffake-trafficanalytics-website-infection.html%3Futm_medium%3Dsocial= %26utm_source%3Demail) Sucuri Security 30141 Antelope RD Menifee, CA 92584 You received this email because you are subscribed to Sucuri Information fr= om Sucuri Security. Update your email preferences (http://sucuri.hs-sites.com/hs/manage-prefere= nces/unsubscribe?v=3D1&d=3DeyJlYSI6Im1haWxAZG9yaWFudmFzY28uZGUiLCJlYyI6NDI4= ODM2OTUsInN1YnNjcmlwdGlvbklkIjozNTg3NzgsImV0IjoxNDg3MzU4MjE2OTIxLCJldSI6IjV= jNTk0NTUwLWIwYzEtNDgxNy04ZThlLTc0MmEzYTc0NjUxOSJ9&utm_campaign=3DBlog+RSS&u= tm_source=3Dhs_email&utm_medium=3Demail&utm_content=3D42883695&_hsenc=3Dp2A= Nqtz-8R744mc3s1UjEJaNkTYyiv5nkTipJqblXGLRw2dfgVm3G1GUHF6vOEbeUKCMBdtqQ3MEvs= XlElxR_gGM9U0vWzjTk7Rg&_hsmi=3D42883695) to choose the types of emails you = receive. Unsubscribe from all future emails (http://sucuri.hs-sites.com/hs/manage-pr= eferences/unsubscribe-all?v=3D1&d=3DeyJlYSI6Im1haWxAZG9yaWFudmFzY28uZGUiLCJ= lYyI6NDI4ODM2OTUsInN1YnNjcmlwdGlvbklkIjozNTg3NzgsImV0IjoxNDg3MzU4MjE2OTIxLC= JldSI6IjVjNTk0NTUwLWIwYzEtNDgxNy04ZThlLTc0MmEzYTc0NjUxOSJ9&utm_campaign=3DB= log+RSS&utm_source=3Dhs_email&utm_medium=3Demail&utm_content=3D42883695&_hs= enc=3Dp2ANqtz-9_r3dIRFqJMfdNW6xmxeo_arR2sLI-qRuBDHh-kJxv4XcdbQGDzcEgjplsXCC= ntrNuCH_q-w1IMgzIMQWHB-tcXzaLuA&_hsmi=3D42883695)= ------=_Part_1260312_856133949.1487358401216 Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: quoted-printable WordPress Security =E2=80=93 Fake TrafficAnalytics Website I= nfection =20=20=20=20=20=20=20=20
We have released a new article on our blog. Real People. Real S= ecurity.
=20=20
3D"Re=
=20 =20 =20 =20 =20
=20
=20

 

=20

W= ordPress Security =E2=80=93 Fake TrafficAnalytics Website Infection

=20

By Rodrigo Escobar, Friday, F= ebruary 17, 2017 11:30 AM

=20
=20 3D"WordPress=20

Several months ago, our research team identified a fak= e analytics infection, known as RealStatistics. The malicious Javascript in= jection looks a lot like tracking code for a legitimate analytics service. = RealStatistics even set up fake analytics websites designed to trick webmas= ters who took a few steps to investigate the unfamiliar script.

=20

Recently, a new variation of this type of infection ha= s emerged. The new campaign uses trafficanalytics[.]online= as the source for the injected script.

=20

Continue r= eading WordPress Security =E2=80=93 Fake TrafficAnalytics Website Infection= at Sucuri Blog.

=20
=20
 =20
=20
=20 3D"Visit =20
 
3D"Share 3D"Share 3D"Share 3D"=

Sucuri Security   30141 Antelope RD    Menifee,  CA   92584   

You received this email because you are subscribed to Sucuri Information fr= om Sucuri Security.

Update your email preferences= to choose the types of emails you receive.

 Unsubscribe from all fu= ture emails 

=20=20=20=20 3D""
= ------=_Part_1260312_856133949.1487358401216--