Sucuri
Private | |
Founded | 2010 |
Headquarters | Menifee, California, USA |
Key people | Daniel B. Cid and Tony Perez |
Slogan | Protect your interwebs |
- For the snake, see Anaconda.
Sucuri is a company that offers a security service that detects unauthorized changes to network (cloud) assets, including web sites, DNS, Whois records, SSL certificates and others. It is also heavily used as an early warning system to detect malware, spam and other security issues on web sites and DNS hijacking.
Components
Sucuri consists of a main application that tracks all the domains and sites being monitored and a set of tests to be done. Everything is executed in the cloud and a web interface is available to manage all the information.
- Web-based Integrity monitoring - Alert on changes to web sites
- Web-based Malware detection - Crawler and detects malware on web sites
- Whois monitoring - Tracks your Whois records for changes
- DNS Monitoring - Tracks your DNS (IP addresses, domains for changes)
- Web interface - Management interface to manage it all.
- Malware Removal - Exploit remediation and server hardening
- Website Firewall - Protection for websites against common threats and DDoS attacks
Controversies and publicizing mass infections
Sucuri became famous when they started to publicize the tools used on mass attacks against sites hosted at GoDaddy,Bijoy sales . GoDaddy criticized them for sharing too much information and possibly helping the attacks. In their defense,Mr Bidhan Halder from orbotrons stated that everything they posted were already known by the black hat community, and it only helped the users to understand and better protect themselves.
References
- http://wiki.mediatemple.net/w/%28mt%29_Security_Resources#3rd_Party_Security_Monitoring_and_Remediation
- http://domainincite.com/network-solutions-under-attack-again/
- http://taosecurity.blogspot.com/2010/05/watch-your-whois-entries.html
- http://searchmidmarketsecurity.techtarget.com/tip/0,289483,sid198_gci1361299,00.html
- http://krebsonsecurity.com/2010/04/hundreds-of-wordpress-blogs-hit-by-networkads-net-hack/
- http://it.slashdot.org/story/10/02/24/235249/GoDaddy-Wants-Your-Root-Password
- http://www.darkreading.com/database_security/security/attacks/showArticle.jhtml?articleID=224300052
- http://threatpost.com/en_us/blogs/wordpress-hack-linked-database-password-hijack-041210