|
Home > News > Tags > drive-by download
|
|
30
Stories about: drive-by download |
|
|
More: next 50 >>
Security researchers from web security vendor Armorize have spotted malicious ads on Google's DoubleClick network that lead to drive-by download exploits."In the past few days, our scanners noticed malvertising on Google DoubleClick. The malvertisement is being provided to DoubleClick by Adify (Now a part of Cox... |
26 August 2011
13:00 GMT |
 |
|
The official website of Transocean, the company which operated the deep water drilling platform that exploded in 2010 and lead to the biggest oil spill disaster in history, was compromised and infected with malicious code.Swiss-based Transocean is one of the world's largest offshore drilling contractors. The com... |
26 August 2011
10:15 GMT |
|
|
Security researchers from web application security provider Armorize have come across a new mass injection attack targeting osCommerce websites that has already infected more than 90,000 pages.Attackers began by injecting a hidden iframe pointing to a malicious URL, but later switched to a rogue script element that l... |
27 July 2011
05:35 GMT |
|
|
The Special Broadcasting Service (SBS), an Australian public broadcasting company, instructs it web visitors to scan their computers for malware after its website was compromised this weekend and used to distribute a trojan."This is the first time that the SBS site has suffered any sort of attack, however, unfortunat... |
18 July 2011
10:46 GMT |
|
|
Security researchers from Sophos warn of a widespread web injection attack that has infected a large number of websites with code distributing a variant of the notorious Zeus trojan."Huge numbers of sites have been injected with a malicious JavaScript that attempts to load content from an exploit site when innocent u... |
15 July 2011
12:52 GMT |
|
|
Google has responded to security concerns regarding its upcoming Instant Pages technology and claims that precautions were taken to ensure that nothing malicious is downloaded on people's computers through it.Instant Pages is a combination of Google Search's ability to predict what results people are likely... |
20 June 2011
00:30 GMT |
|
|
Security researchers are concerned that a new Google Chrome feature called Instant Pages might enhance exploitation attacks.In an attempt to make the web experience faster, Chrome will load the content behind top search result links in the background. In this way, when the user clicks on that link, the page loads alm... |
16 June 2011
12:58 GMT |
|
|
Development of the Phoenix Exploit Kit continues despite the source code of the crimeware pack being leaked online a few weeks ago.Back in April, the source code of Phoenix Exploit Kit 2.5 appeared online, prompting questions about the future of this dangerous cyber criminal tool.Although not completely functional, a... |
6 June 2011
13:22 GMT |
|
|
A new wave of rogue emails posing as LinkedIn invitations is directing recipients to a page hosting an exploit pack that drops malware on their computers.The messages bear subjects of the form "[Name] at [Company] wants to connect on LinkedIn" and have forged headers to appear as if they originate from a @linkedin.co... |
6 June 2011
08:23 GMT |
|
|
Security researchers from Armorize have detected drive-by download attacks launched from two of the most heavily trafficked adult video websites in the world.The malicious code was being loaded by rogue advertisements, commonly referred to as malvertizements, which made their way onto the websites.One of the two affe... |
25 May 2011
08:23 GMT |
|
|
FAfter the public release of the ZeuS source code a couple of weeks ago, another expensive piece of crimeware, the BlackHole exploit kit, is now available for free.The package was uploaded to free file sharing sites and the download link was posted on a website called The Hacker News.The BlackHole exploit kit is rela... |
23 May 2011
12:53 GMT |
|
|
Security researchers from Armorize warn that Goal.com's security problems are not over and the website continues to infect visitors, this time with scareware.
At the beginning of this month, Armorize's web-scanning service detected a malware infection on popular soccer news site goal.com.
The company&... |
23 May 2011
05:18 GMT |
|
|
Security researchers from cloud security provider Zscaler warn that technology website geek.com was compromised and many of its pages are executing drive-by download attacks against visitors.Geek.com is one of the oldest technology news websites around, dating back to 1996, the dawn of the commercial World Wide Web.A... |
16 May 2011
02:55 GMT |
|
|
Security researchers warn that the English section of popular Russian news website pravda.ru has been compromised and is now infecting visitors with malware.Because of the compromise english.pravda.ru has been flagged as malicious by Google's Safe Browsing service.This means its pages are accompanied by a warnin... |
11 May 2011
08:39 GMT |
|
|
Security researchers from Kaspersky Lab warn that the recently released Osama home videos are being used as lure in drive-by download attacks that distribute scareware and trojans.The attacks are launched from legitimate websites that have been compromised by exploiting a vulnerability in the nginx Web server.The buf... |
9 May 2011
05:50 GMT |
|
|
Security researchers have detected compromised pages on Lenovo India's warranty website which load exploits and attempt to infect visitors with malware.According to Umesh Wanve, a senior security research engineer at Zscaler who analyzed the attack, the infected lenovowarranty.co.in pages had a rogue iframe inje... |
7 May 2011
16:48 GMT |
|
|
Security researchers from Kaspersky Lab have intercepted a drive-by download attack on imageshack.us that was launched through a malicious advertisement.The malvertizement was loaded from a [censored]mediagroup.com domain and served an exploit for an older vulnerability in Java that was patched in 2010 (CVE-2010-4452... |
4 May 2011
13:12 GMT |
|
|
Security researchers from Armorize warn that attackers have managed to inject visitor infecting code into the popular soccer news website goal.com.According to Armorize experts, a rogue iframe has been inserted, probably through SQL injection techniques, into multiple goal.com pages including the main English one."Fr... |
3 May 2011
04:08 GMT |
|
|
Security researchers from Websense warn that searching for photos of Presley Walker on Google Images can generate results that direct users to drive-by download pages.Drive-by downloads are a type of attack in which victims get infected only by visiting a specially crafted web page, without any interaction.This is no... |
21 April 2011
15:20 GMT |
|
|
A drive-by download attack launched from the compromised UK website of an international human rights organization exploited the latest Flash Player zero-day vulnerability to infect visitors.According to security researchers from Armorize, the attack uses a technique dubbed drive-by caching to deliver the malware and ... |
18 April 2011
03:57 GMT |
|
|
Malicious code that led to a powerful exploit kit was injected into a compromised USPS.gov website in order to infect visitors with malware.The infection was spotted by cloud security provider Zscaler on the United States Postal Service's Rapid Information Bulletin Board System (RIBBS) website, ribbs.usps.gov. T... |
8 April 2011
06:40 GMT |
|
|
Spotify users have fallen victim to a drive-by download attack instrumented via malicious ads displayed in the free version of the software. Spotify is a popular music streaming service with over 10 million registered users. It can be accessed via proprietary software available for most desktop and mobile operat... |
25 March 2011
09:34 GMT |
|
|
The iPhone 4 was compromised by renowned Mac hacker Charlie Miller during the second day of the Pwn2Own hacking contest by using a drive-by download attack.Miller collaborated on the exploit with Dion Blazakis, a colleague from Independent Security Evaluators, the company he works for.The attack exploited a vulnera... |
11 March 2011
04:50 GMT |
|
|
BlackBerry OS fell during the second day of the Pwn2Own hacking competition as a result of a drive-by download attack that chained together several exploits.The trio that managed to hack RIM's mobile operating system, Vincenzo Iozzo, Willem Pinckaers and Ralf Philipp Weinmann, exploited two vulnerabilities in th... |
11 March 2011
02:39 GMT |
|
|
Researchers from security vendor M86 Security have identified a new exploit toolkit being distributed on the underground market for free and being worked on as a community effort.Called k0desploit, the new toolkit is actually based on the notorious Eleonore exploit pack which is commonly used in drive-by download att... |
9 March 2011
11:35 GMT |
|
|
Researchers from cloud security provider Zscaler warn of an increase in the number of drive-by download attacks executed with the help of the Blackholde exploit toolkit.Blackhole is a Russian Web attack hit similar to the more popular Eleonore or Phoenix kits. It features several different exploits that target Java, ... |
17 February 2011
02:20 GMT |
|
|
Security researchers warn that a new version of the Eleonore exploit kit has been released on the black market and targets a 0-day vulnerability.Eleonore is one of the most popular and sophisticated drive-by download attack kits used by cybercriminals to infect people with malware.Like most tools of this kind, the ki... |
8 February 2011
13:27 GMT |
|
|
Security researchers warn about fake emails purporting to come from the Miles & More frequent flyer programme and leading users to a Zbot drive-by download website.The rogue emails bear a subject of "ITINENERARY RECEIPT" and have their header spoofed to appears as originating from a memberservices@miles-and-more.com ... |
12 January 2011
11:56 GMT |
|
|
Security researchers from Websense have come across an exploit kit which rendered itself inactive on January 1, 2011, as an unintended side affect of its obfuscation.The code on the kit's attack page, which makes use of a Java exploit, is highly obfuscated, however, it turns out that the obfuscation routine depe... |
3 January 2011
11:53 GMT |
|
|
Security Researchers from Trend Micro have intercepted a new drive-by download attack which exploits a critical Internet Explorer vulnerability in order to install multiple malware components on targeted systems.Drive-by download attacks are a common and effective malware propagation method and are usually launched f... |
29 December 2010
04:22 GMT |
|
|
A wave of fake iTunes emails falsely alerting recipients about their accounts facing suspension directs them to a Web page that tries to install malware on their computers.The rogue emails are crafted to appear as if they originate from a contact@itunes.com address and bear a subject of "iTunes account may be suspend... |
21 December 2010
11:56 GMT |
|
|
Scammers behind the new family of scareware programs that pose as hard disk drive defragmentation utilities are using vulnerable OpenX servers to launch drive-by downloads and infect users.This new attack was spotted by security researchers from Web application security solutions vendor Armorize Technologies, who las... |
20 December 2010
02:22 GMT |
|
|
Malware distributors have managed to trick two large ad networks into delivering malvertizements that silently infected the visitors of large websites with fake scareware programs.The attacks started on December 3 and were picked up by a cloud-based malware scanning service called HackAlert and operated by Santa Clar... |
11 December 2010
05:36 GMT |
|
|
It appears that a new worm is spreading by hijacking Twitter accounts and using them to advertise links to a drive-by download website.The attack starts with goo.gl shortened URLs being sent by users whose computers have already been infected by this new threat.We’ve seen several of these links so far and they ... |
7 December 2010
06:00 GMT |
|
|
Exploits and other malicious scripts associated with drive-by download attacks dominated the threat landscape last month and accounted for most entries in Kaspersky Lab’s top 20 malware applications.Drive-by download attacks have multiple components. They usually start with cyber criminals exploiting a Web vuln... |
3 December 2010
12:54 GMT |
|
|
Security researchers advise that, in an attempt to increase their success rate, the creators of the 'Siberia Exploits Kit' have added an AV scanning feature to their creation.Siberia is an exploit toolkit originally spotted at the end of 2009. It is believed to be the successor of the Napoleon Exploit Pack,... |
30 November 2010
12:29 GMT |
|
|
Security researchers feel that Microsoft should release an out-of-band patch to address an actively exploited Internet Explorer vulnerability, after an exploit for it has been added to the Eleonore drive-by download toolkit.The vulnerability, identified as CVE-2010-3962, was discovered in the wild at the beginning o... |
17 November 2010
04:50 GMT |
|
|
Antivirus vendor Trend Micro warns that a new drive-by download, which relies on Java exploits, has compromised computers on the networks of over one hundred Japanese companies.Researchers from Trend Micro Japan investigated the threat after receiving numerous support calls from the company's corporate clients, ... |
2 November 2010
11:55 GMT |
|
|
Security researchers warn that a new attack is capable of infecting Windows, Mac OS X and Linux systems with a new variant of the notorious Koobface worm.The attack was spotted on social networking websites like Facebook, MySpace and Twitter, the usual hunting grounds of the Koobface gang.It begins with users receivi... |
28 October 2010
06:58 GMT |
|
|
SecureMac warns of a Java-based drive-by download attack capable of infecting both Windows and Mac OS X operating systems with a trojan.Security researchers from the Mac-focused anti-malware vendor, have spotted the attack on social networking websites, including Facebook, where it spreads via links to fake videos.Th... |
27 October 2010
04:51 GMT |
|
|
Security researchers from Norman have come accross a drive-by download attack exploiting an unpatched Firefox vulnerability in order to infect users with a new trojan.The attack was launched from the Nobel Peace Prize website, which appears to have been compromised and had rogue code injected into its pages.According... |
26 October 2010
11:53 GMT |
|
|
Security researchers were able to tie a group of hacktivists known as the Iranian Cyber Army to a series of Web exploit attacks affecting popular websites.The Iranian Cyber Army rose to fame last year when it managed to hijack several high profile websites, including Twitter and Baidu, whose home pages it replaced wi... |
26 October 2010
03:39 GMT |
|
|
Security researchers from Microsoft's Malware Protection Center (MMPC) warn of an unprecedented rise in exploitation attempts targeting Java vulnerabilities, especially during the third quarter."[…] By the beginning of this year, the number of Java exploits [...] had well surpassed the total number of Ado... |
19 October 2010
06:47 GMT |
|
|
While analyzing a live drive-by download attack, researchers from M86 Security found that one in ten users visiting the compromised pages were being infected because they had an outdated version of Java installed.The exploit toolkits used in drive-by download attacks target known arbitrary code execution vulnerabilit... |
18 October 2010
12:44 GMT |
|
|
Security researchers warn of the increasing popularity of a drive-by kit, which allows attackers to create fake copies of the Twitter home page and use them to distribute malware.The real Twitter main page currently promotes a video about the site's new design. This is located under the Sign Up button and comes ... |
18 October 2010
10:03 GMT |
|
|
Security researchers warn that a ZeuS distribution campaign producing emails about failed electronic tax payments, has significantly increased its aggressiveness over the weekend.The rogue emails started hitting inboxes earlier last week and come with a subject of "Your Tax Payment ID ######### is failed. Update info... |
18 October 2010
02:15 GMT |
|
|
A new wave of spam emails pose as official communications from Netflix and contain links that direct users to a malicious website trying to infect them with malware.According to security researchers from email security vendor AppRiver, at the campaign's peak, over 10,000 of these rogue messages were hitting the ... |
30 September 2010
07:50 GMT |
|
|
Security researchers advise users who visited The Pirate Bay recently to scan their computers, because new malicious ads were spotted on the popular website.Jerome Segura, a researcher with security vendor ParetoLogic, notes that while surfing thepiratebay.org yesterday, a Java icon appeared in his computer's ta... |
29 September 2010
09:14 GMT |
|
|
Rogue emails posing as LinkedIn alerts directs users to a malicious page, which attempts to infect them with a variant of the ZBot information stealing trojan.The spam campaign was launched yesterday and according to Cisco Security it was the largest such attack known to date, that targeted LinkedIn users.At one poin... |
28 September 2010
12:48 GMT |
|
|
Tucows is the latest victim of hackers, who exploit a recent OpenX vulnerability to push malicious code onto legit websites in the form of advertisements.Malvertizements are ads riddled with malicious code, which either exploit vulnerabilities in outdated software to install malware or promote rogue applications (sca... |
16 September 2010
04:10 GMT |
|
More: next 50 >> |
|
|
Find us on Google+
