Denis Sinegubko

194 posts

Denis Sinegubko is Sucuri’s Senior Malware Researcher who joined the company in 2013. Denis' main responsibilities include researching emerging threats and creating signatures for SiteCheck. The founder of UnmaskParasites, his professional experience covers over 20 years of programming and information security. When Denis isn’t analyzing malware, you might not find him online at all. Connect with him on Twitter.

SoakSoak Campaign Evolves – New Wave of Attacks

Denis Sinegubko

December 22, 2014

Since Sunday, we have seen a new wave of SoakSoak reinfections. The Javascript continues to evolve and load other scripts in order to infect additional…

Read the Post

SoakSoak: Payload Analysis – Evolution of Compromised Sites – IE 11

Denis Sinegubko

December 16, 2014

Thousands of WordPress sites have been hit by the SoakSoak attack lately. At this moment we know quite a lot about it; it uses the…

Read the Post

IIS, Compromised GoDaddy Servers, and Cyber Monday Spam

Denis Sinegubko

December 8, 2014

While doing an analysis of one black-hat SEO doorway on a hacked site, I noticed that it linked to many similar doorways on other websites,…

Read the Post

RSS Reveals Malware Injections

Denis Sinegubko

November 19, 2014

There are multiple different ways to detect invisible malware on a website: You can scrutinize the HTML code of web pages. Use external scanners like…

Read the Post

The Dangers of Hosted Scripts – Hacked jQuery Timers

Denis Sinegubko

November 10, 2014

Google blacklisted a client’s website claiming that malicious content was being displayed from “forogozoropoto(dot)2waky (dot)com”. A scan didn’t reveal anything suspicious. The next step was…

Read the Post

Spotting Malicious Injections in Otherwise Benign Code

Denis Sinegubko

October 31, 2014

Being able to spot suspicious code, and then determine whether it is benign or malicious is a very important skill for a security researcher. Every…

Read the Post

Threat Introduced via Browser Extensions

Denis Sinegubko

October 29, 2014

We love investigating unusual hacks. There are so many ways to compromise a website, but often it’s the same thing. When we see malicious code…

Read the Post

Sucuri Labs

Chinese Doorway Spam – P2

Denis Sinegubko

October 21, 2014

We are seeing an increasing number of hacked sited with Chinese doorways promoting various fake merchandises (from Louis Vuitton handbags to NFL jerseys and Canada…

Read the Post

Sucuri Labs

Chinese Doorway Spam

Denis Sinegubko

May 27, 2014

We are seeing an increasing number of hacked sited with Chinese doorways promoting various fake merchandises (from Louis Vuitton handbags to NFL jerseys and Canada…

Read the Post

Joomla Plugin Constructor Backdoor

Denis Sinegubko

April 23, 2014

We recently wrote about backdoors in pirated commercial WordPress plugins. This time it will be a short post about an interesting backdoor we found in…

Read the Post

Sucuri Labs

Double hidden style – Hiding spam

Denis Sinegubko

April 17, 2014

We see many tricks that hackers use to make search engine bots think that the injected spam is not hidden. One of the common approaches…

Read the Post