Starbucks: RCE and Complete Server Takeover of http://www.█████.starbucks.com.sg/

This report from @spaceraccoon demonstrated a valid attack resulting in RCE and full compromise of the target. The detailed and thorough report was especially helpful throughout the triage process, and ultimately helped us reproduce and resolve the issue as quickly as possible. The vulnerable sit...

Amnesty International Website Compromised, Serving Up Gh0st RAT

Amnesty International’s United Kingdom website was compromised and hosting the potent Gh0st RAT Trojan earlier this week, according to research conducted by security firm Websense. According to the company’s Security Labs blog, visitors to the site over two days this week, May 8 and 9, may have h...

Mysql.com hacked, serving BlackHole exploit malware

Mysql.com hacked, serving BlackHole exploit malware MySQL.com website is currently hacked and compromised with a JavaScript malware and serving malware to anyone visiting it. The mysql.com website is injected with a script that generates an iFrame that redirects the visitors to...