Profile

Cover photo
Denis Sinegubko
Works at Unmask Parasites
488 followers|86,264 views
AboutPostsPhotosVideos
People
Have him in circles
488 people
珠妹小's profile photo
Idiginis Reggae's profile photo
Sarah M. Lasry's profile photo
Helix Hong's profile photo
Arm Ruz's profile photo
Petr Deruga's profile photo
Natalia Shustrova's profile photo
David Dede's profile photo
Beqar Shvelidze's profile photo
Basic Information
Gender
Male
Work
Occupation
security researcher
Employment
  • Unmask Parasites
    Founder, 2008 - present
  • Sucuri, Inc.
    security researcher, 2013 - present
Links

Stream

Denis Sinegubko

Shared publicly  - 
 
If you didn't upgrade to WordPress 4.1.2 two days ago then upgrade to WordPress 4.2 today.
https://wordpress.org/news/2015/04/powell/
https://wordpress.org/news/2015/04/wordpress-4-1-2/
Version 4.2 of WordPress, named "Powell" in honor of jazz pianist Bud Powell, is available for download or update in your WordPress dashboard. New features in 4.2 help you communicate and share, gl...
1
Add a comment...

Denis Sinegubko

Shared publicly  - 
 
A major coordinated security release.

Multiple highly popular WordPress plugins have just fixed a common XSS vulnerability.  Update plugins ASAP!!!

When I say "highly popular", I really mean it:
Jetpack
https://jetpack.me/2015/04/20/jetpack-3-4-3-coordinated-security-update/
WordPress SEO and  Google Analytics by Yoast
https://yoast.com/coordinated-security-release/
All In one SEO
Gravity Forms
WP-E-Commerce
WPTouch
and many more

Details here:
https://blog.sucuri.net/2015/04/security-advisory-xss-vulnerability-affecting-multiple-wordpress-plugins.html
Multiple WordPress Plugins are vulnerable to Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are
2
2
Ralf Bachmann's profile photoBronwyn Vourtis's profile photo
Add a comment...

Denis Sinegubko

Shared publicly  - 
 
Hacked e-commerce sites may leak customer credit card information,  or steal funds from their owners...

My article on the +Sucuri Inc. blog
Creative Commons by Sean MacEntee Recently we wrote about the impacts of a hacked website and how it is important to give website visitors a safe online
4
1
Art Zemon's profile photo
Add a comment...
 
Is your computer a Simda Bot? Find out if your IP address is listed in the database of the tens of thousands of computers that make up the Simda botnet. If your computer has been infected with Simda, it may contain malware, spyware and adware.
Find out if your IP address is listed in the database of the tens of thousands of computers that make up the Simda botnet.
2
Add a comment...
 
 
Security Advisory: Persistent XSS in WP Super Cache WordPress Plugin http://hubs.ly/y0GVb50 via @MarcS0h
View original post
1
Add a comment...

Denis Sinegubko

Shared publicly  - 
 
 
New Post: "Website Malware – The SWF iFrame Injector Evolves" http://hubs.ly/y0GkkX0 by @petergramantik w/ @sucurilabs 
Last year, we released a post about a malware injector found in an Adobe Flash (.SWF) file. In that post, we showed how a .SWF file is used to inject an invisib
View original post
3
1
Pavel Bohmat's profile photoChuck Croll's profile photo
 
Flash must die :)
 ·  Translate
Add a comment...
Have him in circles
488 people
珠妹小's profile photo
Idiginis Reggae's profile photo
Sarah M. Lasry's profile photo
Helix Hong's profile photo
Arm Ruz's profile photo
Petr Deruga's profile photo
Natalia Shustrova's profile photo
David Dede's profile photo
Beqar Shvelidze's profile photo

Denis Sinegubko

Shared publicly  - 
 
Yesterday we asked to update WordPress plugins, today you should upgrade WordPress itself.

This is a critical security release for all previous versions. It fixes multiple security issues.
WordPress 4.1.2 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.1.1 and earlier ...
4
Add a comment...

Denis Sinegubko

Shared publicly  - 
 
 
Critical #Magento Shoplift Vulnerability (SUPEE-5344) – Patch Immediately! http://hubs.ly/y0JPH20 #security
The Magento team released a critical security patch (SUPEE-5344) to address a remote command execution (RCE) vulnerability back in February. It's been more
View original post
2
1
Nikolas Branis's profile photo
Add a comment...

Denis Sinegubko

Shared publicly  - 
 
If you have a Windows web server (IIS) - update it ASAP. There's a critical vulnerability that allows hackers to execute arbitrary code on server.

If you have a site on a Windows server, make sure the server is patched (details in the article). If it is not, contact the server admin and let them know about this issue.

This security update is rated Critical for all supported editions of Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows 8.1, and Windows Server 2012 R2. You can read more details about the versions affected  Microsoft Security Bulletin

More information:
https://technet.microsoft.com/library/security/MS15-034
https://isc.sans.edu/diary/MS15-034%3A+HTTP.sys+%28IIS%29+DoS+And+Possible+Remote+Code+Execution.+PATCH+NOW/19583
 
"Website Firewall – Critical Microsoft IIS vulnerability (MS15-034)" http://hubs.ly/y0Jl-00 by @sucuri_security via @rmcapovilla 
Microsoft just disclosed a serious vulnerability (MS15-034) on their Web Server IIS that allows for remote and unauthenticated Denial of Service (DoS)
View original post
1
Add a comment...
 
Upgrade notifications you can't ignore!

... On one hand, this infection makes blogs unusable since it redirects visitors to WordPress plugin repository before they can read anything. On the other hand, it is very hard to ignore such a warning — if site owners want people to visit their sites they have to upgrade (or remove) the vulnerable version of the plugin ASAP
Today I began to notice quite a massive and very unusual attack that leverages vulnerabilities in older versions of the FancyBox for WordPress plugin. As
1
Add a comment...

Denis Sinegubko

Shared publicly  - 
 
 
"The browsers in the screenshots above have been infected with ‘ad injectors’. Ad injectors are programs that insert new ads, or replace existing ones, into the pages you visit while browsing the web. We’ve received more than 100,000 complaints from Chrome users about ad injection since the beginning of 2015—more than network errors, performance problems, or any other issue. "
View original post
1
Add a comment...