Krasimir Konov

66 posts

Krasimir Konov is Sucuri's Malware Analyst who joined the company in 2014. Krasimir's main responsibilities include analyzing malicious code, signature creation and documentation of malware. His professional experience covers more than 10 years in the IT field, with nine years involved in IT/cyber security. When he’s not analyzing malware or writing Labs notes, you might find Krasimir riding his motorcycle and traveling the world. Connect with him on Twitter or LinkedIn.

Website Security

Analysis of a Malicious Blackhat SEO Script

Krasimir Konov
April 26, 2018

An enormous number of SEO spam infections are handled by us here at Sucuri. In our most recent hacked website trend report, we analyzed over…

Read the Post

New wave of wp-vcd Malware

Krasimir Konov
November 13, 2017

Recently we saw a new wave of a known malware that injects malicious WordPress admin users to vulnerable or compromised sites.The malware, well analysed by…

Read the Post

Website Malware Infections

Malware Serving SEO Spam from External Sites

Krasimir Konov
October 18, 2017

We handle an enormous number of SEO spam infections here at Sucuri. In Q3 of 2016, approximately 37% of all website infection cases were related…

Read the Post

credit card stealer investigation malware ring script blog header

Credit Card Stealer Investigation Uncovers Malware Ring

Krasimir Konov
October 10, 2017

During a recent investigation, I found a new piece of malicious code being used to steal credit card information from compromised Magento sites. What I…

Read the Post

SEO spam loading from external site

Krasimir Konov
September 13, 2017

Many websites get compromised and used for SEO in order to drive traffic to other websites that would usually be ranked very low or completely…

Read the Post

Expired Domain Leads to WordPress Plugin Redirects

Krasimir Konov
August 24, 2017

A malicious redirect is a snippet of code used by attackers with the intention of redirecting visitors to another site; a very common tactic seen…

Read the Post

JavaScript Used to Generate Malicious Documents

Krasimir Konov
August 17, 2017

When talking about compromised environments, we often think that the website itself is the end goal but that’s not always true. In some cases, attackers…

Read the Post

Yet Another Expired Domain causes WP Plugin to Redirect Users

Krasimir Konov
June 20, 2017

Malicious redirects are very common in compromised websites. Attackers try to take advantage of the site resources to promote spam, distribute other malware/backdoors, and perform…

Read the Post

JavaScript Injections Leads to Tech Support Scam

Krasimir Konov
February 9, 2017

During a recent malware investigation, we found some interesting obfuscated Javascript code. This code pretends to appear as part of the popular AddThis social sharing…

Read the Post

Sucuri Labs

Magento Login and Credentials Stealer

Krasimir Konov
December 13, 2016

Lately we’ve been dealing with an increase in attacks against ecommerce platforms. Attackers usually choose this type of solution (like Magento & others) because of…

Read the Post

Sucuri Labs

Hidden iframe Injected into WordPress core file

Krasimir Konov
December 6, 2016

Injecting malware into core files of CMS installations is one of the techniques attackers use. From the user’s perspective, it is easier to detect and…

Read the Post