Lucene search
K

214 matches found

ThreatPost
ThreatPost
added 2017/04/20 12:15 p.m.201 views

Stuxnet LNK Exploits Still Widely Circulated

One of the alleged mandates around the development of the Stuxnet worm was that malware’s numerous components—which included a handful of zero days—should never escape the Natanz uranium enrichment facility in Iran. Eight years later, evidence continues to mount as to how that mandate was...

9.3CVSS0.5AI score0.99966EPSS
Exploits25References7
myhack58
myhack58
added 2017/04/17 12:0 a.m.278 views

Nebula exploit package CVE-2016-0189 exploit analysis-exploit warning-the black bar safety net

1. Introduction In recent years, exploit kitsEK/Exploit Kitmarket amidst the winds of change。 2016 early June, once rampant in the Angler EK disappeared, the Neutrino EK quickly filled the void. Then just less than 3 months time, the Neutrino EK and go for the underground, the RIG EK and then...

7.6CVSS7.6AI score0.93165EPSS
Exploits10
ThreatPost
ThreatPost
added 2017/04/14 6:0 a.m.44 views

Exploit Kit Activity Quiets, But is Far From Silent

Over the past six months, the roar of exploit kits has quieted to a whimper. But that doesn’t mean exploit kit threats are nonexistent. According to security experts, gangs behind them are regrouping, tweaking code and finding fresh software exploits to target. Here are the exploit kits and explo...

9.3CVSS9.2AI score0.67922EPSS
Exploits0References6
Qualys Blog
Qualys Blog
added 2017/04/11 4:48 p.m.6 views

Adobe Fixes Flash, PDF reader and Photoshop in April

Adobe released five security bulletins today following a pre-notification which was released on Thursday of last week. Highest priority goes to the Flash update APSB17-10 as flash has been the top choice for malware and exploit kits. If left un-patched, the vulnerabilities allow attackers to take...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2017/04/07 12:46 p.m.11 views

Apache Struts 2 Exploits Installing Cerber Ransomware

Attackers are attempting to exploit the recent Apache Struts vulnerability on Windows servers and the payload is a variant of the Cerber ransomware. The SANS Internet Storm Center on Thursday said it has seen numerous attempts during the past month to exploit the vulnerability in this way. The fl...

0.5AI score
Exploits0References7
FireEye
FireEye
added 2017/03/15 12:48 p.m.8 views

Still Getting Served: A Look at Recent Malvertising Campaigns Involving Exploit Kits

Malvertising occurs when an online advertising network knowingly or unknowingly serves up malicious advertisements on a website. Malvertisements are a type of “drive-by” threat that tend to result in users being infected with malware for simply visiting a website. The victims of this threat are...

6.6AI score
Exploits0References8
ThreatPost
ThreatPost
added 2017/03/15 9:30 a.m.13 views

Where Have All The Exploit Kits Gone?

The bloom is off exploit kits. Once a mainstay for cybercriminals, attacks tied to exploit kits have now dried up to just a trickle. For sure, they haven’t gone away. But researchers say Angler, Neutrino and Nuclear, kits that once dominated the threat landscape, are gone; usurped by new threats...

7.7AI score
Exploits0References12
FireEye
FireEye
added 2017/03/15 8:48 a.m.52 views

Still Getting Served: A Look at Recent Malvertising Campaigns Involving Exploit Kits

Malvertising occurs when an online advertising network knowingly or unknowingly serves up malicious advertisements on a website. Malvertisements are a type of “drive-by” threat that tend to result in users being infected with malware for simply visiting a website. The victims of this threat are...

6.6AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2017/02/14 9:56 p.m.21 views

Ransomware: A declining nuisance or an evolving menace?

Note: Read our latest comprehensive report on ransomware: Ransomware 1H 2017 review: Global outbreaks reinforce the value of security hygiene. The volume of ransomware encounters is on a downward trend. Are we seeing the beginning of the end of this vicious threat? Unfortunately, a look at the...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2017/02/09 11:6 a.m.10 views

CryptoShield Infections from RIG EK Picking Up

The RIG Exploit Kit remains fairly active despite an overall decline in such activity, and of late, it’s been spreading a fairly new variant of ransomware called CryptoShield. The main culprit is an attack group known for using EITest to deliver malware; it has been infecting victims’ machines vi...

7AI score
Exploits0References6
Microsoft Malware Protection
Microsoft Malware Protection
added 2017/01/23 10:37 p.m.657 views

Exploit kits remain a cybercrime staple against outdated software – 2016 threat landscape review series

Despite the disruption of Axpergle Angler, which dominated the landscape in early 2016, exploit kits as a whole continued to be a threat to PCs running unpatched software. Some of the most prominent threats, from malvertising to ransomware, used exploit kits to infect millions of computers...

10CVSS0.1AI score0.94996EPSS
Exploits55
ThreatPost
ThreatPost
added 2017/01/10 11:28 a.m.86 views

Two New Edge Exploits Integrated into Sundown Exploit Kit

Six months of relative quiet around exploit kits recently changed when a public proof-of-concept attack disclosed by a Texas startup was integrated into the Sundown Exploit Kit. The proof-of-concept exploit was developed by Theori, a research and development firm in Austin, which opened its doors...

7.6CVSS0.4AI score0.93165EPSS
Exploits18References7
ThreatPost
ThreatPost
added 2016/12/20 10:50 a.m.11 views

New Decryptor Unlocks CryptXXX v3 Files

Researchers have neutralized the threat of the latest strain of the CryptXXX v.3 ransomware, releasing a decryption tool for unlocking files, and have added it to the RannohDecryptor, a free utility hosted by Kaspersky Lab’s No Ransom Project. Previous decryption tools had been available for...

0.3AI score
Exploits0References5
myhack58
myhack58
added 2016/12/09 12:0 a.m.101 views

Security researchers found that attack kits favorite Flash Player security vulnerabilities-vulnerability warning-the black bar safety net

By RecordedFuture a new study suggests that, due to its vulnerability, Flash Player will continue to the global computer at risk, cybercriminals are still looking for the Adobe solutions among the security flaws to the invasion of the computer. This year the exploit kit used by the top 10...

9.3CVSS0.6AI score0.93165EPSS
Exploits10
ThreatPost
ThreatPost
added 2016/12/06 1:58 p.m.82 views

Flash Exploit Found in Seven Exploit Kits

A nasty Adobe Flash zero-day vulnerability that was remediated in an emergency update in October 2015 was thereafter co-opted by seven exploit kits, according to an analysis published today by researchers at Recorded Future. The Adobe vulnerability, CVE-2015-7645, was also used by the Russian APT...

10CVSS9.5AI score0.94354EPSS
Exploits16References8
Check Point Advisories
Check Point Advisories
added 2016/12/06 12:0 a.m.3 views

Malicious Embedded Flash Downloader

Several Exploit Kits landing pages embed malicious Flash files. A remote attacker could exploit this vulnerability to entice unsuspecting users to execute arbitrary files...

5.7AI score
Exploits0
ThreatPost
ThreatPost
added 2016/11/30 7:0 a.m.50 views

New Cerber Variant Leverages Tor2Web Proxies, Google Redirects

Criminals behind the latest Cerber ransomware variant are leveraging Google redirects and Tor2Web proxies in a new and novel way to evade detection. Researchers with Cisco Talos spotted the shifting tactic last week when it began tracking the latest Cerber 5.0.1 ransomware variant. The technique...

10CVSS1.9AI score0.22487EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2016/11/23 12:0 a.m.3 views

ShadowGate Redirector

ShadowGate is an initial redirection point for exploit kits. Exploit Kits operate by delivering a malicious payload to the victim's computer. Successful exploitation could result in remote code execution on the target system once the malicious page is loaded...

3.5AI score
Exploits0
ThreatPost
ThreatPost
added 2016/11/14 2:20 p.m.12 views

CrySis Ransomware Master Decryption Keys Released

The threat posed by a ransomware family known as CrySis was diminished considerably on Sunday when the master decryption keys were released to the public. Researchers at Kaspersky Lab said they have already folded the keys into the company’s Rakhni decryptor and victims of CrySis versions 2 and 3...

0.2AI score
Exploits0References10
ThreatPost
ThreatPost
added 2016/09/01 2:46 p.m.9 views

Malvertising Campaign Pushing Neutrino Exploit Kit Shut Down

A global malvertising campaign exposing potentially one million users to the risk of being infected with CrypMIC ransomware delivered via the Neutrino Exploit Kit has been shut down, according to researchers. Cisco’s Talos Security Intelligence and Research Group, which discovered the criminal...

0.1AI score
Exploits0References2
Rows per page
Query Builder