Douglas Santos

About Douglas Santos

Douglas is a Security Analyst at Sucuri with 17 years experience on security. He enjoys information security and malware analysis. During the free time he studies photography and information security. Follow Douglas on Twitter and Instagram at @dogasantos or read his website security blog.

June 24, 2019Douglas Santos

Why is Your Website a Target? The SEO Value of a Website

Website security is what we eat, sleep, and breathe. It’s what we do best because we deal with hacked websites every single day, thousands of them. Among the various types and evolution in attack scenarios, one has remained the same for all these years—spam infections….

May 3, 2018Douglas Santos

A Puzzling Backdoor Upload

After a successful compromise, backdoors are frequently left behind and function as a point of re-entry into the website environment. These malicious pieces of code are a valuable tool for…

December 14, 2017Douglas Santos

Javascript Injection Creates Rogue WordPress Admin User

Earlier this year, we faced a growing volume of infections related to a vulnerability in outdated versions of the Newspaper and Newsmag themes. The infection type was always the same:…

June 29, 2016Douglas Santos

200k+ Parked/Expired Domains Used to Distribute Malicious Ads

Recently we wrote about domain renewal scams that used real paper letters to tricks site owners into transferring their domains and renewing them for 3-4x the normal price. However, this…

June 2, 2016Douglas Santos

WP Mobile Detector Vulnerability Being Exploited in the Wild

***Update: The WP Mobile Detector plugin has been patched to address the vulnerability. Please update as soon as possible. Note that the latest version don’t fully address the issue and…