• Skip to primary navigation
  • Skip to content
  • Skip to primary sidebar
  • Skip to footer

Sucuri Blog

Website Security News

  • Products
    • Website Security Platform
    • Website Firewall (WAF)
    • Enterprise Website Security
    • Multisite Solutions
  • Features
    • Detection
    • Protection
    • Performance
    • Response
    • Backups
  • Partners
    • Agency Solutions
    • Partners
    • Referral Program
    • Ecommerce
  • Resources
    • Guides
    • Webinars
    • Infographics
    • SiteCheck
    • Reports
    • Email Courses
  • Immediate Help
  • Login

Denis Sinegubko

About Denis Sinegubko

Denis Sinegubko is Sucuri’s Senior Malware Researcher who joined the company in 2013. Denis' main responsibilities include researching emerging threats and creating signatures for SiteCheck. The founder of UnmaskParasites, his professional experience covers over 20 years of programming and information security. When Denis isn’t analyzing malware, you might not find him online at all. Connect with him on Twitter.

Massive Campaign Uses Hacked WordPress Sites as Platform for Black Hat Ad Network

January 24, 2023Denis Sinegubko

Massive Campaign Uses Hacked WordPress Sites as Platform for Black Hat Ad Network

Every so often attackers register a new domain to host their malware. In many cases, these new domains are associated with specific malware campaigns, often related to redirecting legitimate website traffic to third party sites of their choosing — including tech support scams, adult dating,…

Read More about Massive Campaign Uses Hacked WordPress Sites as Platform for Black Hat Ad Network

Chinese Gambling Spam Leverages World Cup Keywords

December 2, 2022Denis Sinegubko

Chinese Gambling Spam Targets World Cup Keywords

Since 2018, our team has been tracking an interesting type of website infection where the <title> tag of a hacked website is changed to Chinese text — changes which are…

Read More about Chinese Gambling Spam Targets World Cup Keywords

New Wave of SocGholish cid=27x Injections

November 23, 2022Denis Sinegubko

New Wave of SocGholish cid=27x Injections

On November 15th, Ben Martin reported a new type of WordPress infection resulting in the injection of SocGholish scripts into web pages. The attack loads zipped malicious templates from WordPress…

Read More about New Wave of SocGholish cid=27x Injections

Gambling SEO Spam in Visual Composer Raw HTML Element: vc_raw_html

September 14, 2022Denis Sinegubko

Gambling Spam in Visual Composer Raw HTML Element: [vc_raw_html]

Bad actors often look for clever ways to boost the rankings and visibility of their spam pages in search. One of the many black hat SEO injections that we regularly…

Read More about Gambling Spam in Visual Composer Raw HTML Element: [vc_raw_html]

SocGholish and NDSW NDSX malware, FakeUpdates, SilverFish (SolarWind) and ransomware

August 16, 2022Denis Sinegubko

SocGholish: 5+ Years of Massive Website Infections

Earlier this June, we shared information about the ongoing NDSW/NDSX malware campaign which has been one of the most common website infections detected and cleaned by our remediation team in…

Read More about SocGholish: 5+ Years of Massive Website Infections

SiteCheck Q2 2022 Report

July 7, 2022Denis Sinegubko

SiteCheck Malware Trends Report – Q2 2022

For the latest malicious scripts, check out our SiteCheck Q3 Malware Trends report. Conducting an external website scan for indicators of compromise is one of the easiest ways to identify…

Read More about SiteCheck Malware Trends Report – Q2 2022

Analysis of the Massive NDSW/NDSX Malware Campaign

June 2, 2022Denis Sinegubko

Analysis of the Massive NDSW / NDSX Malware Campaign

Recently, Avast’s researchers Pavel Novák and Jan Rubín posted a detailed writeup about the “Parrot TDS” campaign involving more than 16,500 infected websites. Such massive infections don’t go unnoticed by…

Read More about Analysis of the Massive NDSW / NDSX Malware Campaign

X-Cart Skimmer with DOM Based Obfuscation

May 17, 2022Denis Sinegubko

X-Cart Skimmer with DOM-based Obfuscation

Our lead security analyst Liam Smith recently worked on an infected X-Cart website and found two interesting credit card stealers there — one skimmer located server-side, the other client-side. X-Cart’s…

Read More about X-Cart Skimmer with DOM-based Obfuscation

WordPress Redirect Hack via Test0.com/Default7.com

June 4, 2021Denis Sinegubko

WordPress Redirect Hack via Test0.com/Default7.com

Malicious redirect is a type of hack where website visitors are automatically redirected to some third-party website: usually it’s some malicious resource, scam site or a commercial site that buys…

Read More about WordPress Redirect Hack via Test0.com/Default7.com

Backdoors in Malicious Plugins

February 2, 2021Denis Sinegubko

Whitespace Steganography Conceals Web Shell in PHP Malware

Last November, we wrote about how attackers are using JavaScript injections to load malicious code from legitimate CSS files. At first glance, these injections didn’t appear to contain anything except…

Read More about Whitespace Steganography Conceals Web Shell in PHP Malware

Labs Note

November 11, 2020Denis Sinegubko

Another Credit Card Stealer That Pretends to Be Sucuri

During a routine investigation, we found yet another web skimmer that pretends to be related to Sucuri. One of our Remediation Analysts, Liam Smith, found the following code injected into…

Read More about Another Credit Card Stealer That Pretends to Be Sucuri

Primary Sidebar

Socialize With Sucuri

We're actively engaged across multiple platforms. Follow us and let's connect!

  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram
  • RSS Feed

Join Over 20,000 Subscribers!

Sucuri Sidebar Malware Removal to Signup Page

Footer

Products

  • Website Firewall
  • Website AntiVirus
  • Website Backups
  • WordPress Security
  • Enterprise Services

Solutions

  • DDos Protection
  • Malware Detection
  • Malware Removal
  • Malware Prevention
  • Blacklist Removal

Support

  • Blog
  • Knowledge Base
  • SiteCheck
  • Research Labs
  • FAQ

Company

  • About
  • Media
  • Events
  • Employment
  • Contact
  • Testimonials
  • Facebook
  • Twitter
  • LinkedIn
  • Instagram

Customer Login

Sucuri Home

  • Terms of Use
  • Privacy Policy
  • Frequently Asked Questions

© 2023 Sucuri Inc. All rights reserved

Sucuri Cookie Policy
See our policy>>

Our website uses cookies, which help us to improve our site and enables us to deliver the best possible service and customer experience.