Tony Perez

121 posts

Tony is the Head of Security Products at GoDaddy and Sucuri Co-Founder. His passion lies in educating and bringing awareness about online threats to business owners. His passions revolve around understanding the psychology of bad actors, the impacts and havoc hacks have on website owners, and thinking through the evolution of attacks. You can find his personal thoughts on security at perezbox.com and you can follow him on Twitter at @perezbox.

Creating a Basic Website Security Framework

Tony Perez
September 8, 2017

When you build or remodel a house, construction workers create a strong framework that can withstand the elements to keep your home and possessions secure.…

Google Warnings For Form Input Over HTTP Coming in October

Tony Perez
August 28, 2017

For years, Google has been actively seeking ways to encourage website owners to implement SSL certificates. SSL allows websites to be accessed over HTTPS, which…

What is Cross-Site Contamination and How to Prevent it

Tony Perez
July 18, 2017

If you suffer multiple reinfections and your site is one of many in an account, the odds are high that you’re suffering from cross-site contamination.…

Security Education

Ask Sucuri: Common WAF Questions and Concerns

Tony Perez
February 22, 2017

There is no more frustrating experience than knowing you need something, but not knowing which questions to ask. This resonates with website owners when they…

Website Application Firewalls (WAF) – Practical Approach to Website Security

Tony Perez
February 3, 2017

In 2016, I shared some thoughts about firewalls in general; their history and purpose in the information security domain. The point of the article was…

Accounting for Defense in Depth in Website Security

Tony Perez
October 19, 2016

In the field of Information Security (InfoSec) we like to use the phrase defense in depth. Like many things, it is a borrowed term with…

Security Education

Ask Sucuri: Is My Website Hacked?

Tony Perez
October 11, 2016

Having your website hacked can be a devastating experience for any website owner. Unfortunately, many website owners rarely know they are infected until days, if…

pharma hack wordpress spam search results

WordPress Security

Cleaning the Wp-Page Pharma Hack in WordPress

Tony Perez
September 6, 2016

Pharma hacks are common website infections categorized under SEO spam. With pharma hacks, the attacker exploits vulnerable websites to distribute pharmaceutical content to search engines…

In this post, we cover the Payment Card Industry Data Security Standard (PCI DSS) Requirement 5 & 6: Maintain a Vulnerability Management Program.

PCI Compliance for eCommerce – Choosing Between SAQ A and A-EP

Tony Perez
June 23, 2016

Update: Read our new PCI Compliance guide. The Payment Card Industry Data Security Standards (PCI DSS) is a set of security standards established in a…

The Growing DDoS Threat to Website Owners

Tony Perez
June 14, 2016

As website attacks continue to evolve, we see growing levels of sophistication in the way attackers are expanding the economics of their industry. The monetization…

Security Education

How to Find & Fix Mixed Content Issues with SSL / HTTPS

Tony Perez
April 26, 2016

Update: If you need help transitioning your website from HTTP to HTTPS, check out our guide on how to install an SSL certificate. What is Mixed…