Lucene search
K

99 matches found

Malwarebytes
Malwarebytes
added 2017/09/04 5:0 p.m.112 views

A week in security (August 28 – September 3)

Last week, we looked at what actions Kronos can perform in the final installment of a 2-part post. We also dived into Locky, again, a ransomware that just made a comeback, and found that its latest variant as of this writing has anti-sandboxing capabilities. This means that once Locky has...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/08/31 8:4 p.m.976 views

RIG exploit kit distributes Princess ransomware

We have identified a new drive-by download campaign that distributes the Princess ransomware AKA PrincessLocker, leveraging compromised websites and the RIG exploit kit. This is somewhat of a change for those tracking malvertising campaigns and their payloads. We had analyzed the PrincessLocker...

9.3CVSS8.9AI score0.94996EPSS
Exploits59
Malwarebytes
Malwarebytes
added 2017/07/06 7:6 p.m.56 views

Report: Second quarter dominated by ransomware outbreaks

The second quarter of 2017 brought ransomware to unprecedented levels with worldwide outbreaks that went almost out of control. In scenarios reminiscent of yesteryears worms, WannaCry created global panic as it used a critical vulnerability in the SMBv1 protocol to propagate like wildfire. Within...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2017/06/05 3:16 p.m.13 views

40,000 Subdomains Tied to RIG Exploit Kit Shut Down

Tens of thousands of illegally established subdomains used by criminals involved with the RIG Exploit Kit were recently taken down after an investigation revealed that hackers were phishing domain account credentials to set up these subdomains. Most of the subdomains used GoDaddy as the primary...

0.1AI score
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2017/06/01 12:0 a.m.3 views

RIG Exploit Kit Landing Page URL

RIG exploit kit is a web exploit kit that operates by delivering malicious payload to the victim's computer. Successful infection will allow the attacker to download additional malware to the target...

2.8AI score
Exploits0
ThreatPost
ThreatPost
added 2017/05/19 2:22 p.m.49 views

Terror Exploit Kit Evolves Into Larger Threat

The relatively new Terror exploit kit is bucking the downward trend in the EK market, and is steadily evolving into more of a threat. Researchers at Cisco Talos said Terror has abandoned an early strategy that included “carpet-bombing” a target’s browser to one that now uses exploits that precise...

9.3CVSS8.1AI score0.74096EPSS
Exploits9References4
Talos Blog
Talos Blog
added 2017/05/18 11:27 a.m.52 views

Terror Evolved: Exploit Kit Matures

This post is authored by Holger Unterbrink and Emmanuel Tacheau Executive SummaryTalos is monitoring the major Exploit KitsEK on an ongoing basis. While investigating the changes we recently observed in the RIG EK campaigns, we identified another well known candidate: Terror Exploit Kit.Terror EK...

7.8AI score
Exploits0
myhack58
myhack58
added 2017/04/17 12:0 a.m.278 views

Nebula exploit package CVE-2016-0189 exploit analysis-exploit warning-the black bar safety net

1. Introduction In recent years, exploit kitsEK/Exploit Kitmarket amidst the winds of change。 2016 early June, once rampant in the Angler EK disappeared, the Neutrino EK quickly filled the void. Then just less than 3 months time, the Neutrino EK and go for the underground, the RIG EK and then...

7.6CVSS7.6AI score0.93165EPSS
Exploits10
ThreatPost
ThreatPost
added 2017/04/14 6:0 a.m.44 views

Exploit Kit Activity Quiets, But is Far From Silent

Over the past six months, the roar of exploit kits has quieted to a whimper. But that doesn’t mean exploit kit threats are nonexistent. According to security experts, gangs behind them are regrouping, tweaking code and finding fresh software exploits to target. Here are the exploit kits and explo...

9.3CVSS9.2AI score0.67922EPSS
Exploits0References6
ThreatPost
ThreatPost
added 2017/02/09 11:6 a.m.10 views

CryptoShield Infections from RIG EK Picking Up

The RIG Exploit Kit remains fairly active despite an overall decline in such activity, and of late, it’s been spreading a fairly new variant of ransomware called CryptoShield. The main culprit is an attack group known for using EITest to deliver malware; it has been infecting victims’ machines vi...

7AI score
Exploits0References6
Microsoft Malware Protection
Microsoft Malware Protection
added 2016/12/22 4:6 a.m.385 views

No slowdown in Cerber ransomware activity as 2016 draws to a close

Note: Read our latest comprehensive report on ransomware: Ransomware 1H 2017 review: Global outbreaks reinforce the value of security hygiene. As everybody else winds down for the holidays, the cybercriminals behind Cerber are busy ramping up their operations. Following our discovery of a spam...

9.3CVSS10AI score0.67922EPSS
Exploits0
ThreatPost
ThreatPost
added 2016/12/07 3:26 p.m.14 views

Zeus Variant 'Floki Bot' Targets PoS Data

Researchers have observed an uptick in attacks using the banking malware Floki Bot against U.S., Canadian and Brazilian banks, and insurance firms. Floki Bot, which uses code from the once notorious Zeus banking Trojan, has evolved and unlike its predecessor, is targeting point-of-sale systems vi...

7.3AI score
Exploits0References5
ThreatPost
ThreatPost
added 2016/11/08 5:16 p.m.10 views

TrickBot Banking Trojan Adds New Browser Manipulation Tools

The TrickBot banking Trojan, a close relative to Dyre, has a growing target list and new browser manipulation techniques, experts at IBM X-Force said. “We expect to see it amplify infection campaigns and fraud attacks, sharpen its aim on business and corporate accounts,” wrote Limor Kessem,...

0.1AI score
Exploits0References5
ThreatPost
ThreatPost
added 2016/11/04 5:58 p.m.36 views

Inside the RIG Exploit Kit

Today’s most prolific exploit kit is RIG, which has filled a void left by the departure of Angler, Neutrino and Nuclear. That has made it public enemy No. 1 when it comes exploit kits. Now Cisco Talos researchers are hoping to shed new light into the ongoing development of the potent EK in hopes ...

9.3CVSS8.5AI score0.74096EPSS
Exploits9References3
ThreatPost
ThreatPost
added 2016/09/21 9:29 a.m.140 views

Picking Up Where Neutrino Left Off: RIG Pushing CrypMIC Ransomware

When an exploit kit fades away, it usually doesn’t take long for another to take its place in the limelight, especially when the kit is an integral part of the ransomware ecosystem. That’s exactly what’s happened over the past few weeks as researchers say they’ve seen an uptick in RIG Exploit Kit...

10CVSS0.3AI score0.94354EPSS
Exploits16References8
myhack58
myhack58
added 2016/09/13 12:0 a.m.20 views

Sundown EK: vulnerability to use the tool in copying the masters-vulnerability warning-the black bar safety net

! Description Sundown is currently on the market the latest exploit tool, and the Sundown of the author also successfully proved himself is actually a plagiarism masters. Don't know this“borrow chickens lay eggs”thing was after exposure, and the user will buy his single? Recently, due to the Angl...

0.4AI score
Exploits0
ThreatPost
ThreatPost
added 2016/06/22 3:30 p.m.10 views

Nuclear, Angler Exploit Kit Activity Has Disappeared

Criminal hackers are fickle about their attack vectors. You need to look no further for evidence of this than their constant migration from one exploit kit to another. And while there is an expansive menu of exploit kits, attackers do seem to congregate around a precious few. Researchers who stud...

6.8AI score
Exploits0References7
Openbugbounty
Openbugbounty
added 2016/05/22 3:29 a.m.11 views

mail.bigrigmedia.com XSS vulnerability

Vulnerable URL: http://mail.bigrigmedia.com/webmail/?color=%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculate...

6.3AI score
Exploits0
FireEye
FireEye
added 2015/11/13 1:32 p.m.473 views

Top-ranked Advertising Network Leads to Exploit Kit

Threat Overview The online advertisements that people see across a wide range of popular and lesser-known websites can lead to malware infections and other forms of compromise, sometimes without any user interaction whatsoever and without any indicators there is an issue. This emerging threat is...

10CVSS9.7AI score0.99344EPSS
Exploits6
ThreatPost
ThreatPost
added 2015/08/04 9:0 a.m.36 views

Rig Exploit Kit 3.0 Claims 1 Million Malvertising Victims

LAS VEGAS – A rampant malvertising campaign fueled by a new version of the Rig Exploit Kit has claimed at least 950,000 victims worldwide and is doing so with an unprecedented success rate. Researchers at Trustwave said in advance of this week’s Black Hat conference that they have been watching...

10CVSS0.93688EPSS
Exploits5References4
Rows per page
Query Builder