Krasimir Konov

About Krasimir Konov

Krasimir is a Remediation Team Lead at Sucuri. He enjoys researching malware and helping customers secure their websites. He spends most of his time reading and educating himself about security and new vulnerabilities. He was born in Bulgaria but currently lives in the US. Follow him on Twitter at @KrasimirSec

June 21, 2018Krasimir Konov

Why You Should Care about Website Security on Your Small Site

Most people assume that if their website has been compromised, there must have been an attacker evaluating their site and looking for a specific vulnerability to hack. Under most circumstances however, bad actors don’t manually hand-pick websites to attack since it’s a tedious and time…

April 26, 2018Krasimir Konov

Analysis of a Malicious Blackhat SEO Script

An enormous number of SEO spam infections are handled by us here at Sucuri. In our most recent hacked website trend report, we analyzed over 34,000+ websites and identified that…

October 18, 2017Krasimir Konov

Malware Serving SEO Spam from External Sites

We handle an enormous number of SEO spam infections here at Sucuri. In Q3 of 2016, approximately 37% of all website infection cases were related to SEO spam campaigns through…

October 10, 2017Krasimir Konov

Credit Card Stealer Investigation Uncovers Malware Ring

During a recent investigation, I found a new piece of malicious code being used to steal credit card information from compromised Magento sites. What I didn’t know was how many…

August 24, 2017Krasimir Konov

Expired Domain Leads to WordPress Plugin Redirects

A malicious redirect is a snippet of code used by attackers with the intention of redirecting visitors to another site; a very common tactic seen in compromised websites. These redirects…

February 9, 2017Krasimir Konov

JavaScript Injections Leads to Tech Support Scam

During a recent malware investigation, we found some interesting obfuscated Javascript code. This code pretends to appear as part of the popular AddThis social sharing plugin, using it in URL…

August 3, 2016Krasimir Konov

A Plugin’s Expired Domain Poses a Security Threat to Websites

Do you keep all of your website software (including third-party themes, plugins, and components) up to date? You should! We always recommend this to our clients and readers. Applying updates…

July 16, 2015Krasimir Konov

Webutation Distributing Malware Through Safety Badge

If you are using the Webutation badge on your site, remove it now. It appears they got hacked and are distributing malware to mobile devices through redirects hidden within the…

June 23, 2015Krasimir Konov

Websites Hacked Via Website Backups

The past few months we’ve been spending a good deal of time talking about backups. This is for good reason, they are often your safety net e nen things go…