Denis Sinegubko

194 posts

Denis Sinegubko is Sucuri’s Senior Malware Researcher who joined the company in 2013. Denis' main responsibilities include researching emerging threats and creating signatures for SiteCheck. The founder of UnmaskParasites, his professional experience covers over 20 years of programming and information security. When Denis isn’t analyzing malware, you might not find him online at all. Connect with him on Twitter.

SweetCAPTCHA Returns Hijacking Another Plugin

Denis Sinegubko
July 23, 2015

Yesterday we observed a strange short return of the SweetCaptcha plugin to WordPress.org repository. In June we reported that SweetCaptcha injected third-party ad code to…

Read the Post

SweetCAPTCHA Service Used to Distribute Adware

Denis Sinegubko
June 9, 2015

SweetCaptcha is a free CAPTCHA service that offers to match “sweet” images instead of making you recognize distorted digits and characters. It has integrations with…

Read the Post

WordPress Security

Fake jQuery Scripts in Nulled WordPress Plugins

Denis Sinegubko
May 21, 2015

We recently investigated some random redirects on a WordPress website that would only happen to certain visitors. Traffic analysis showed us that it was not…

Read the Post

Hacked Websites Redirect to Bitcoin

Denis Sinegubko
May 4, 2015

Recently, we began to notice that some hacked websites were redirecting traffic from certain browsers to the BitCoin site, bitcoin.org. What’s going on? Is Bitcoin using…

Read the Post

Impacts of a Hack on a Magento Ecommerce Website

Denis Sinegubko
April 15, 2015

Recently we wrote about the impacts of a hacked website and how it is important to give website visitors a safe online experience. In this…

Read the Post

WordPress Malware Causes Psuedo-Darkleech Infection

Denis Sinegubko
March 26, 2015

Darkleech is a nasty malware infection that infects web servers at the root level. It use malicious Apache modules to insert hidden iframes with certain…

Read the Post

Inverted WordPress Trojan

Denis Sinegubko
March 11, 2015

A trojan (or trojan horse) is software that does (or pretends to be doing) something useful but also contains a secret malicious payload that inconspicuously…

Read the Post

Analyzing Malicious Redirects in the IP.Board CMS

Denis Sinegubko
February 10, 2015

Although the majority of our posts describe WordPress and Joomla attacks (no wonder, given their market-share), there are still attacks that target smaller CMS’s and…

Read the Post

AdSense Abused with Malvertising Campaign

Denis Sinegubko
January 14, 2015

Last weekend we noticed a large number of requests to scan websites for malware because they randomly redirected to some “magazine” websites. Most of them…

Read the Post

Website Backdoors Leverage the Pastebin Service

Denis Sinegubko
January 6, 2015

We continue our series of posts about hacker attacks that exploit a vulnerability in older versions of the popular RevSlider plugin. In this post we’ll…

Read the Post

Analyzing The WordPress SoakSoak Favicon Backdoor

Denis Sinegubko
December 29, 2014

This post is a dissection of one of a few backdoor variations hackers are uploading via the RevSlider security hole. We also provide webmasters a…

Read the Post