Threat Outbreak Alert: Fake Product Quote Request Email Messages on March 2, 2014

Medium Alert ID: 33153 First Published: 2014 March 4 15:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product quotation request for the recipient. The text in the email message attempts to convince the recipient t...

Threat Outbreak Alert: Fake Invoice Email Messages on February 13, 2014

Medium Alert ID: 32862 First Published: 2014 February 13 20:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an invoice for the recipient. The text in the email message attempts to convince the recipient to open the...

Cutwail-Like Wigon.PH_44 Trojan Sends Spam, Steals Data

A new spambot has been discovered that generates copious amounts of HTTP POST and GET requests in an attempt to disguise what it’s really up to and throw off the scent of detection capabilities. “In this case, it seems like it’s trying to hide impactful communication where there are actual payloa...

Threat Outbreak Alert: Fake Photo Attachment Email Messages on January 16, 2014

Medium Alert ID: 32472 First Published: 2014 January 16 20:33 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a photo for the recipient. The text in the email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Fake Transaction Processing Failure Notification Email Messages on January 9, 2014

Medium Alert ID: 32393 First Published: 2014 January 9 21:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a failed transaction notice for the recipient. The text in the email message attempts to convince the recipient...

Threat Outbreak Alert: Fake Company Complaint Email Messages on November 26, 2013

Medium Alert ID: 31905 First Published: 2013 November 26 18:16 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a notification regarding a company complaint for the recipient. The text in the email message attempts to...

Threat Outbreak Alert: Fake Payment Information Email Messages on November 21, 2013

Medium Alert ID: 31868 First Published: 2013 November 22 13:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain payment information for the recipient. The text in the email message attempts to convince the recipient to op...

Threat Outbreak Alert: Fake Accounting Form Email Messages on November 15, 2013

Medium Alert ID: 31791 First Published: 2013 November 16 03:30 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an accounting form for the recipient. The text in the email message attempts to convince the recipient to ope...

Threat Outbreak Alert: Fake Regulation Document Delivery Email Messages on November 6, 2013

Medium Alert ID: 31667 First Published: 2013 November 7 14:59 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a regulations document for the recipient. The text in the email message attempts to convince the recipient to...

Double Executable File Extension Arbitrary File Execution

Certain malicious executable files can be hidden using double extension filenames...

Threat Outbreak Alert: Fake Fax Delivery Notification Email Messages on October 30, 2013

Medium Alert ID: 31555 First Published: 2013 October 30 19:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a fax notification for the recipient. The text in the email message attempts to convince the recipient to open...

MS13-071 Microsoft Windows Theme File Handling Code Execution

This Metasploit module exploits a vulnerability mainly affecting Microsoft Windows XP and Windows 2003. The vulnerability exists in the handling of the Screen Saver path, in the boot section. An arbitrary path can be used as screen saver, including a remote SMB resource, which allows for remote...

Adobe Photo Loader Malware Posts Craigslist Spam

An attacker is going to a lot of trouble to post spam messages to Craigslist. Researchers at Solera Networks have come across an attack where malware is using compromised machines to post poorly worded ads for an Android application marketed at parents for the purposes of monitoring the activitie...

Threat Outbreak Alert: Fake Shipping Order Information Email Messages on August 26, 2013

Medium Alert ID: 30010 First Published: 2013 July 10 16:08 GMT Last Updated: 2013 August 26 18:40 GMT Version: 4 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain shipping order information for the recipient. The text in the email messag...

Threat Outbreak Alert: Fake Document Sharing Email Messages on July 2, 2013

Medium Alert ID: 29924 First Published: 2013 July 2 13:16 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain documents for the recipient. The text in the e-mail message attempts to convince the recipient to open the link to...

Threat Outbreak Alert: Fake Payment Form Attachment Email Messages on July 2, 2013

Medium Alert ID: 29803 First Published: 2013 June 26 17:25 GMT Last Updated: 2013 July 2 16:05 GMT Version: 2 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain a payment form notification for the recipient. The text in th...

Command and Control Used in Sanny APT Attacks Shut Down

Two message boards used by the Sanny malware as a command-and-control channel have been shut down by the Korea Information Security Agency in conjunction with security company FireEye. Sanny is a targeted attack, attributed to attackers in Korea, against individuals working in Russia’s aerospace,...

Microsoft Windows - Service Trusted Path Privilege Escalation (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'msf/core/post/common' require...

Windows Service Trusted Path Privilege Escalation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'msf/core/post/common' require...

Waves of Attacks Target Adobe Reader Bug From 2010

Thanks to the wonderful tendency of users not to update their applications, old vulnerabilities never die, they just get overtaken by newer and shinier ones. The attackers know this well, and every once in a while they serve up a nice reminder to the rest of us. The most recent one of these is a...