Sucuri
 | |
| Private | |
| Founded | 2010 |
| Headquarters | USA |
Key people | Daniel B. Cid and Tony Perez |
| Slogan | Real People. Real Security |
- For the snake, see Anaconda.
Sucuri is a globally distributed security company, focused on detecting and remediating compromised websites. Their technology is heavily used as an early warning system to detect malware, spam and other indicators of compromise on websites and DNS hijacking.
Sucuri offers a Website Antivirus and Firewall (WAF) (CloudProxy), to protect sites from web attacks and DDoS.
Components
Sucuri consists of a main application that tracks all the domains and sites being monitored and a set of tests to be done. Everything is executed in the cloud and a web interface is available to manage all the information.
- Web-based Integrity monitoring - Alert on changes to web sites
- Web-based Malware detection - Crawler and detects malware on web sites
- Whois monitoring - Tracks your Whois records for changes
- DNS Monitoring - Tracks your DNS (IP addresses, domains for changes)
- Web interface - Management interface to manage it all.
- Malware Removal - Exploit remediation and server hardening
- Website Firewall - Protection for websites against common threats and DDoS attacks
Publicizing mass infections
Sucuri became famous when they started to publicize the tools used on mass attacks against sites hosted at GoDaddy. GoDaddy criticized them for sharing too much information and possibly helping the attacks. In their defense, it was stated that everything they posted was already known by the black hat community, and it only helped the users to understand and better protect themselves.
Sucuri uses the principle of responsible disclosure to raise awareness about software vulnerabilities on their website security blog.
References
- http://wiki.mediatemple.net/w/%28mt%29_Security_Resources#3rd_Party_Security_Monitoring_and_Remediation
- http://domainincite.com/network-solutions-under-attack-again/
- http://taosecurity.blogspot.com/2010/05/watch-your-whois-entries.html
- http://searchmidmarketsecurity.techtarget.com/tip/0,289483,sid198_gci1361299,00.html
- http://krebsonsecurity.com/2010/04/hundreds-of-wordpress-blogs-hit-by-networkads-net-hack/
- http://it.slashdot.org/story/10/02/24/235249/GoDaddy-Wants-Your-Root-Password
- http://www.darkreading.com/database_security/security/attacks/showArticle.jhtml?articleID=224300052
- http://threatpost.com/en_us/blogs/wordpress-hack-linked-database-password-hijack-041210