Krasimir Konov

66 posts

Krasimir Konov is Sucuri's Malware Analyst who joined the company in 2014. Krasimir's main responsibilities include analyzing malicious code, signature creation and documentation of malware. His professional experience covers more than 10 years in the IT field, with nine years involved in IT/cyber security. When he’s not analyzing malware or writing Labs notes, you might find Krasimir riding his motorcycle and traveling the world. Connect with him on Twitter or LinkedIn.

From Privacy to Exfiltration: Telegram’s Role in Website Malware

Krasimir Konov
May 30, 2024

Telegram, a name synonymous with secure messaging, has paradoxically become a tool for cybercriminals who abuse the strengths of the platform to target unsuspecting websites.…

Read the Post

Detecting and Mitigating a Phishing Threat Greatness

Detecting & Mitigating an Office 365 Phishing Threat: “Greatness”

Krasimir Konov
February 1, 2024

Emerging in 2022, a phishing tool known as Greatness has caught the attention of our research team due to its coordinated efforts to breach Microsoft…

Read the Post

Malware hidden in non-executable .txt and .log files

Shifting Malware Tactics & Use of Non-Executable .txt & .log Files

Krasimir Konov
October 17, 2023

The malware landscape is constantly evolving — and bad actors are always devising new techniques to evade detection. Our analysts most commonly find website malware…

Read the Post

Backdoor Targets FreePBX Asterisk Management Portal

Krasimir Konov
December 15, 2022

Written in PHP and JavaScript, FreePBX is a web-based open-source GUI that manages Asterisk, a voice over IP and telephony server. This open-source software allows…

Read the Post

How to Securely Shop With Your Credit Card: Use a Virtual Card & Check for Skimmers

Krasimir Konov
December 8, 2022

The convenience and ease of online transactions has drawn a tremendous number of users to online ecommerce storefronts. And during the pandemic, many consumers switched…

Read the Post

The importance of website logs for security and accountability

The Importance of Website & Server Logs

Krasimir Konov
August 11, 2022

Have you ever looked at your server or website logs and realized that they make absolutely no sense to you? Or thought that logs just…

Read the Post

DHL Phishing Uses Telegram Bot for Exfiltration

DHL Phishing Page Uses Telegram Bot for Exfiltration

Krasimir Konov
July 26, 2022

One of the quickest ways for an attacker to harvest financial data, credentials, and sensitive personal information is through phishing. These social engineering attacks can…

Read the Post

Malicious C&C Script Used to Manage Botnet

Infected WordPress Site Reveals Malicious C&C Script

Krasimir Konov
July 12, 2022

Bitcoin prices are down 60% year to date, trading far from the all-time highs of $69,000 seen last November. Some altcoins have plummeted even farther…

Read the Post

Massive JavaScript Injection Campaign Redirects to Ads

Massive WordPress JavaScript Injection Campaign Redirects to Ads

Krasimir Konov
May 11, 2022

Our remediation and research teams regularly find malicious redirects on client sites. These infections automatically redirect site visitors to third-party websites with malicious resources, scam…

Read the Post

The Dangers of Using Abandoned Plugins & Themes

Krasimir Konov
December 17, 2020

It’s not very often that we see abandoned components being used on a website — but when we do, it’s most often because the website…

Read the Post

Malware Dropper Takes Advantage of COVID-19 Pandemic

Krasimir Konov
December 10, 2020

Since April, our team has been tracking the spread of a PHP malware dropper. It’s impacting unsuspecting victims who thought they were downloading a mapping…

Read the Post