Daniel Cid

213 posts

Daniel B. Cid is Founder of Sucuri and the VP of Engineering for the GoDaddy Security Products group. He is also the founder of OSSEC and CleanBrowsing. You can find more about Daniel on his site dcid.me or on Twitter: @danielcid

Plesk Vulnerability Leading to Malware

Daniel Cid
June 26, 2012

Our friends over at Unmask Parasites posted two very good reports about a mix of Plesk vulnerabilities being used to mass-compromise websites, and redirecting them…

Read the Post

Sucuri Labs Weekly Review – June 22nd – 2012

Daniel Cid
June 23, 2012

Have you checked out Sucuri Labs? We have been adding a daily feed of the top web-based malware samples that we find every day, and…

Read the Post

Sucuri SiteCheck – Web Malware Distribution – May 2012

Daniel Cid
June 8, 2012

Last month ( May 2012), we were able to identify 94,866 compromised (hacked) websites using our free SiteCheck scanner. These were the top infections per…

Read the Post

List of Domains Hosting Webshells for Timthumb Attacks

Daniel Cid
May 31, 2012

We have been tracking TimThumb related attacks for a while and they are still at full force (yes, some people are still using the outdated…

Read the Post

Websites Compromised with Fake AV Campaign (Windows Web Secure Kit)

Daniel Cid
May 15, 2012

“To help protect your computer, Windows Web Secure Kit have detected trojans and is ready to remove them”. We are seeing many WordPress sites compromised with a malware…

Read the Post

Blog Comments – Analysing 100,000 Comments and Spammers

Daniel Cid
May 11, 2012

“Nice blog, thanks for the info” “Awesome site. Great job” “You should take part in a contest for one of the best blogs on the…

Read the Post

Wpstats. org Spam and a Fake Advanced Search Plugin

Daniel Cid
May 9, 2012

If you are seeing hidden links in your WordPress site, it could be coming from wpstats.org. On some blackhat spam cases we are analysing, the…

Read the Post

PHP-CGI Vulnerability Exploited in the Wild

Daniel Cid
May 8, 2012

When the PHP-CGI vulnerability was disclosed, we knew it would be just a matter of days before it started to be exploited in the wild.…

Read the Post

Sucuri SiteCheck – Web Malware Distribution – April 2012

Daniel Cid
May 1, 2012

When we see a compromised site distributing malware, it is often done via 4 methods: Iframe, Javascript, Spam or internal redirections. Those are not the…

Read the Post

Malware campaign against WordPress sites (recovery-hdd dot eu)

Daniel Cid
April 25, 2012

We have been tracking a new malware campaign that has been compromising thousands of WordPress sites over the last 3 days. They are not doing…

Read the Post

Nikjju SQL injection update (now hgbyju. com/r.php)

Daniel Cid
April 22, 2012

We posted a few days ago about a Mass SQL injection campaign that has been compromising thousands of sites. Our latest numbers show more than…

Read the Post