Rodrigo Escobar

18 posts

Rodrigo Escobar is Sucuri's Sr. Malware Research Manager who joined the company in 2012. Rodrigo's main responsibilities include the coordination of malware analysts and research groups, and deployment of effective remediation solutions. His professional experience covers more than eight years in website remediation and malware analysis. When Rodrigo isn't investigating cyber threats and looking for solutions to prevent them, you might find him at the computer, reading assembly and learning new skills. Connect with him on LinkedIn.

WordPress Vulnerability & Patch Roundup December 2022

Rodrigo Escobar
December 28, 2022

Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes…

WordPress Vulnerability & Patch Roundup October 2022

Rodrigo Escobar
October 28, 2022

Critical Vulnerabilities in 123contactform-for-wordpress WordPress Plugin

Rodrigo Escobar
January 19, 2021

In mass infection scenarios, our Malware Research team often looks for attack vectors to find patterns and other similarities among compromised websites. The identification of…

Decoding Complex Malware – Step-by-Step

Rodrigo Escobar
August 15, 2017

When cleaning websites, one of the most complicated parts of our job is ensuring we find all backdoors. Most of the time, attackers inject code…

WordPress Security – Fake TrafficAnalytics Website Infection

Rodrigo Escobar
February 17, 2017

Several months ago, our research team identified a fake analytics infection, known as RealStatistics. The malicious Javascript injection looks a lot like tracking code for…

RealStatistics Goes TrafficAnalytics

Rodrigo Escobar
February 2, 2017

In the last few months, our Incident Response Team detected an interesting malicious code that affected a high number of websites. This malware is a…

WordPress Security

Exploited Script in WordPress Theme Sends Spam

Rodrigo Escobar
December 1, 2016

Update 11/03/2017: If you want to learn how to secure WordPress, you can read all about it in our new guide. As WordPress continues to…

Sucuri Labs

WordPress Theme Mailing Script being exploited in the wild

Rodrigo Escobar
October 31, 2016

A few weeks ago, we posted a lab notes describing a good theme file being exploited by attackers to send mass-mailing SPAM (http://labs.sucuri.net/?note=2016/08/15 0:00). Upon…

Sucuri Labs

Mass Mailing SPAM From a Good File

Rodrigo Escobar
August 15, 2016

We often find code that is developed with good intent but the security aspects of it are not always taken into consideration. During a routine…

Secure Coding: How to Account for Input Sanitization

Rodrigo Escobar
May 16, 2016

On average, a website leverages around 18-20 different plugins in its structure. These plugins enhance the website’s functionality and in some instances extend the applications…

Sucuri Labs

Helpscout Blacklisted by Norton

Rodrigo Escobar
November 11, 2015

Early this morning we got complaints from our clients mentioning that Norton was flagging Helpscout, a Help Desk System. Some of the pages were triggering…