Tony Perez

121 posts

Tony is the Head of Security Products at GoDaddy and Sucuri Co-Founder. His passion lies in educating and bringing awareness about online threats to business owners. His passions revolve around understanding the psychology of bad actors, the impacts and havoc hacks have on website owners, and thinking through the evolution of attacks. You can find his personal thoughts on security at perezbox.com and you can follow him on Twitter at @perezbox.

Update WP Super Cache and W3TC Immediately – Remote Code Execution Vulnerability Disclosed

Tony Perez
April 23, 2013

Shame on us for not catching this a month ago when it was first reported, but it seems that two of the biggest caching plugins…

Read the Post

Cyber Criminals Take Advantage of Recent Boston Attack with SPAM

Tony Perez
April 17, 2013

It pains me to write about this at all, but as despicable as this might appear, cyber criminals have started to take advantage of those…

Read the Post

WordPress Malicious Plugin – WPPPM – Abusing 404 Redirects with SEO Poisoning

Tony Perez
April 13, 2013

Bruno Borges, of our security team, came across an interesting case this week, in which a WordPress plugin was abusing the 404 rewrite rules and…

Read the Post

Brute Force Attacks and Their Consequences

Tony Perez
April 12, 2013

There is a lot of interesting discussion across the interwebs on the intention of the latest string of brute force attacks. While I can’t repudiate…

Read the Post

Protecting Against WordPress Brute-Force Attacks

Tony Perez
April 11, 2013

It was not long ago that I was sitting on a call with other members of the WordPress community in which we were talking abou…

Read the Post

WordPress Security Presentation by Tony Perez

Tony Perez
April 4, 2013

Tomorrow I will be flying to my hometown (Miami) to give a Website Security presentation to a bunch of enthusiastic online professionals at an event…

Read the Post

Drupal Core Vulnerability Released – Denial of Service – Advisory SA-CORE-2013-002

Tony Perez
February 22, 2013

As if the week wasn’t exciting enough, Drupal has released a core vulnerability that leaves it susceptible to Denial of Service attacks. Metadata for this…

Read the Post

Linux Based SSHD Rootkit Floating The Interwebs

Tony Perez
February 22, 2013

For the past couple of days we have been a lot of discussion on a number of forums about a potential kernel rootkit making its…

Read the Post

cPanel Inc. Server Compromised

Tony Perez
February 22, 2013

It’s unclear on the specifics, but it appears the following letter is going out to cPanel users that have submitted a ticket in the last…

Read the Post

Website Malware – Fixing Joomla SPAM Hacks – Conditional Payloads

Tony Perez
February 22, 2013

Our Senior Malware Engineer, Fioravante Cavallari, is at it again. I think he has made it his personal mission in life to expel all Joomla…

Read the Post

NBC Website HACKED – Be Careful Surfing

Tony Perez
February 21, 2013

Breaking, the NBC site is currently compromised and blacklisted by Google. Anyone that visits the site (which includes any sub page) will have malicious iframes…

Read the Post