2015-12-21 - Exploit-Kit – Connect the dots

XXX is Angler EK

Blog - page 3 As I got many questions about an EK named XXX (that is said to be better than Angler ;) ) I decided to share some data here. Read More ›

2015-12-15 - Exploit-Kit – Exploit Integration

CVE-2015-8446 (Flash up to 19.0.0.245) And Exploit Kits

Blog - page 3 One week after patch Flash 19.0.0.245 is being exploited by Angler EK via CVE-2015-8446 Read More ›

2015-12-01 - Exploit-Kit – Exploit Integration

Nuclear Pack loads a fileless CVE-2014-4113 Exploit

Blog - page 3 CVE-2014-4113 ( Win32k.sys Elevation of Privilege Vulnerability ) spotted in Nuclear Pack Read More ›

2015-11-28 - Botnet – Spam

Inside Jahoo (Otlard.A ?) - A spam Botnet

Blog - page 3 Otlard.A (or let's say at least the malware triggering 2806902 || ETPRO TROJAN Win32.Otlard.A C&C Checkin response ) is a Spam Botnet Read More ›

2015-10-29 - Exploit-Kit – Exploit Integration

CVE-2015-7645 (Flash up to 19.0.0.207) and Exploit Kits

Blog - page 3 The CVE-2015-7645 has been fixed with Adobe Flash Player 19.0.0.226. Spotted in the wild (2015-10-13) in APT28's exploit kit by TrendMicro, this exploit was already reported 2 weeks before (2015-09-29) to Adobe by Natalie Silvanovich. Read More ›

2015-10-15 - Drive-By – Trick

A DoubleClick https open redirect used in some malvertising chain

Blog - page 3 VirtualDonna group abusing https open redirect to drive traffic to Exploit-Kit Read More ›

2015-09-24 - Botnet – Geo-Focus

Shifu <3 Great Britain

Blog - page 3 A shift in malware distribution in the UK. Read More ›

2015-08-31 - Exploit-Kit – Exploit Integration

CVE-2015-5560 (Flash up to 18.0.0.209) and Exploit Kits

Blog - page 3 Patched with flash version 18.0.0.232, CVE-2015-5560 is now being exploited by Angler EK. Read More ›

2015-08-11 - Exploit-Kit – Exploit Integration

CVE-2015-2419 (Internet Explorer) and Exploits Kits

Blog - page 3 As published by FireEye Angler EK is now exploiting CVE-2015-2419 fixed with MS15-065 Read More ›

2015-07-21 - Exploit-Kit – Exploit Integration

CVE-2015-1671 (silverlight up to 5.1.30514.0) and Exploit Kits

Blog - page 3 Patched with ms15-044 CVE-2015-1671 is described as TrueType Font Parsing Vulnerability. Silverlight up to 5.1.30514.0 are affected Read More ›