|
Home > News > Tags > exploit kit
|
|
30
Stories about: exploit kit |
|
|
Emails apparently originating from American Express have been landing in inboxes, asking recipients to verify their user IDs and reset their passwords. In reality, the notifications are part of a scheme designed to trick users into visiting a website on which the Blackhole exploit kit is hosted.
Usually when we thin... |
21 May 2012
09:35 GMT |
 |
|
It’s not uncommon for us to find shady websites that replicate the ones of the BBC, or Channel 5 News in an attempt to advertise fake work-from-home jobs. However, it’s somewhat unusual to find such sites that bring something extra, such as the Blackhole exploit kit and a nasty Trojan. The domain in ques... |
21 May 2012
07:45 GMT |
|
|
The old “uniform traffic ticket” scams are back and experts found that their numbers increased in an attempt to drive as many users as possible towards compromised websites that host the Phoenix Exploit Kit.
Researchers from Trustwave SpiderLabs determined that the links from the phony email lead to hija... |
24 April 2012
14:01 GMT |
|
|
Internet users may stumble upon an email in their inbox that notifies them about pizzas and drinks worth $86 (65 EUR) heading their way. Before rushing to click on Cancel Order Now, they should take a moment to think about it, because the innocent-looking link actually points to a malicious site.
GFI experts have co... |
17 April 2012
07:56 GMT |
|
|
Experts from Trustwave’s SpiderLabs found a new version of an exploit kit that was first launched in 2009. It’s called Nuclear Pack 2.0 and it comes with some interesting features, but initial analysis shows that it brings nothing new to the exploit kit market.
First of all, the developers of Nuclear Pac... |
2 April 2012
10:46 GMT |
|
|
Emails that purport to originate from the Better Business Bureau (BBB) or LinkedIn urge users to click on links that point to compromised WordPress sites which serve the infamous BlackHole Exploit Kit.
Trend Micro experts revealed that the BBB emails notify the recipient that a complaint has been filed against them... |
22 March 2012
08:47 GMT |
|
|
The sum of $1,435 (1,076 EUR) is offered for the programmer who can develop a fully operational exploit for the recently patched up Windows Remote Desktop Protocol (RDP) vulnerability.
At the time the patch was released, Microsoft admitted that it was aware of the fact that an exploit might be released in the follo... |
15 March 2012
04:07 GMT |
|
|
Cybercriminals are coming up with new techniques to make sure webmaster don’t spot their malicious codes too easily. Researchers found a piece of code cleverly masqueraded to look like a legitimate Google Analytics piece of code on compromised websites.
Websense experts found that the ill-intended code is desi... |
8 February 2012
06:00 GMT |
|
|
The latest malicious campaign begins at the point where cybercriminals compromise a few hundred websites based on WordPress 3.2.1 and alter them to redirect visitors to a domain that serves the malicious Phoenix Exploit Kit. M86 Security Labs researchers came across around four hundred of these sites. Using a cleve... |
31 January 2012
09:49 GMT |
|
|
The malicious technique in which cybercriminals send emails pretending to come from a scanner inside an office building is seen again, targeting the email accounts of company staff members.
This time, an email bearing the subject “Re: Scan from a Xerox W. Pro #XXXXXXX,” informs the recipient that a docum... |
19 January 2012
05:31 GMT |
|
|
Security experts came across a large number of websites infected with Trojans, exploit kits and other malicious elements that redirect users to well-known malware distribution points.
Avast Virus Lab identified 60 different websites in the past 30 days, all of them being heavily infected. This is especially dangerou... |
13 January 2012
07:09 GMT |
|
|
Security researcher Brian Krebs stumbled upon a new exploit kit that relies on a recently patched security flaw present in Java, being packaged with the infamous BlackHole.
It seems as all the versions of Oracle’s Java are susceptible to the attack, except for the latest variants, but considering the fact that... |
28 November 2011
07:20 GMT |
|
|
Users who've visited the Web Directories site on the 4th of September might have been redirected to a third party page leveraging the Incognito exploit kit.One of the largest directories on the internet, the site was compromised after a program line, representing a redirect to a malicious address containing expl... |
6 September 2011
04:55 GMT |
|
|
A new wave of rogue emails posing as LinkedIn invitations is directing recipients to a page hosting an exploit pack that drops malware on their computers.The messages bear subjects of the form "[Name] at [Company] wants to connect on LinkedIn" and have forged headers to appear as if they originate from a @linkedin.co... |
6 June 2011
08:23 GMT |
|
|
Security researchers from Armorize have detected drive-by download attacks launched from two of the most heavily trafficked adult video websites in the world.The malicious code was being loaded by rogue advertisements, commonly referred to as malvertizements, which made their way onto the websites.One of the two affe... |
25 May 2011
08:23 GMT |
|
|
Security researchers have detected compromised pages on Lenovo India's warranty website which load exploits and attempt to infect visitors with malware.According to Umesh Wanve, a senior security research engineer at Zscaler who analyzed the attack, the infected lenovowarranty.co.in pages had a rogue iframe inje... |
7 May 2011
16:48 GMT |
|
|
Researchers from cloud security provider Zscaler warn of an increase in the number of drive-by download attacks executed with the help of the Blackholde exploit toolkit.Blackhole is a Russian Web attack hit similar to the more popular Eleonore or Phoenix kits. It features several different exploits that target Java, ... |
17 February 2011
02:20 GMT |
|
|
Security researchers warn that a new version of the Eleonore exploit kit has been released on the black market and targets a 0-day vulnerability.Eleonore is one of the most popular and sophisticated drive-by download attack kits used by cybercriminals to infect people with malware.Like most tools of this kind, the ki... |
8 February 2011
13:27 GMT |
|
|
Security researchers from Websense have come across an exploit kit which rendered itself inactive on January 1, 2011, as an unintended side affect of its obfuscation.The code on the kit's attack page, which makes use of a Java exploit, is highly obfuscated, however, it turns out that the obfuscation routine depe... |
3 January 2011
11:53 GMT |
|
|
Security researchers were able to tie a group of hacktivists known as the Iranian Cyber Army to a series of Web exploit attacks affecting popular websites.The Iranian Cyber Army rose to fame last year when it managed to hijack several high profile websites, including Twitter and Baidu, whose home pages it replaced wi... |
26 October 2010
03:39 GMT |
|
|
Security researchers warn that a new malware distribution campaign uses fake versions of the malicious site warnings commonly displayed by Firefox and Google Chrome.Both Chrome and Firefox tap into Google's Safe Browsing service in order to check if the accessed URLs are known attack sites.If such malicious page... |
20 October 2010
09:42 GMT |
|
|
Security researchers warn that hackers are compromising outdated OpenX servers in order to push malicious ads on other websites. The latest attack employs an exploit cocktail in an attempt to infect visitors with malware.OpenX is an open source advertising server, which users willing to publish ads can download, inst... |
1 July 2010
06:07 GMT |
|
|
The website of the U.S. Department of Treasury Bureau of Engraving and Printing (BEP) was compromised by unknown attackers, who rigged it to infect visitors with malware. A malicious IFrame loading exploits from a third-party domain was injected into the index page.The hack was discovered sometime on Sunday evening, ... |
4 May 2010
10:29 GMT |
|
|
Security researchers warn that a new injection attack has infected thousands of websites with malicious IFrames. In order to avoid detection, the rogue IFrames get their src attribute through an onload JavaScript event. The infection was first spotted by malware analysts from antivirus vendor Sophos on the website o... |
26 October 2009
10:40 GMT |
|
|
|
|
Find us on Google+
