2015-07-05 - Botnet – Fileless Reco

A fileless Ursnif doing some POS focused reco

Blog - page 4 Malware doing some reco from memory Read More ›

2015-07-03 - Botnet – Behavioural

Kovter AdFraud is updating Flash Player (and Internet Explorer)

Blog - page 4 Kovter is updating flash player on infected computer since end of June 2015 Read More ›

2015-06-28 - Exploit-Kit – Exploit Integration

CVE-2015-3113 (Flash up to 18.0.0.160) and Exploit Kits

Blog - page 4 Patched four days ago (2015-06-23) with Flash 18.0.0.194, the CVE-2015-3113 has been spotted as a 0day by FireEye, exploited in limited targeted attacks. It's now making its path to Exploit Kits Read More ›

2015-06-16 - Exploit-Kit – Exploit Integration

CVE-2015-3104/3105 (Flash up to 17.0.0.188) and Exploit Kits

Blog - page 4 Spotted by TrendMicro, Magnitude is now exploiting CVE-2015-3105 patched with Flash 18.0.0.160 Read More ›

2015-06-08 - Exploit-Kit – Landscape

Fast look at Sundown EK

Blog - page 4 There is nothing worth a post there...except mentionning this EK is around. Read More ›

2015-05-27 - Exploit-Kit – Exploit Integration

CVE-2015-3090 (Flash up to 17.0.0.169) and Exploit Kits

Blog - page 4 As spotted by FireEye Angler EK is now exploiting CVE-2015-3090 patched with Flash 17.0.0.188 Read More ›

2015-05-25 - Ransomware – Affiliate

On the other side of CTB-Locker : the Affiliate server.

Blog - page 4 A look at the CTB panel from an affiliate point of view. Read More ›

2015-05-22 - Exploit-Kit – Landscape

An Exploit Kit dedicated to CSRF Pharming

Blog - page 4 A look at a Malvertising driving traffic to a "Router Exploit-Kit" Read More ›

2015-05-12 - Exploit-Kit – Study

Another look at Niteris : post exploitation WMI and Fiddler checks

Blog - page 4 In this post we'll see some of the improvements that have been brought to Niteris. Read More ›

2015-04-24 - Exploit-Kit – Exploit Integration

CVE-2015-0359 (Flash up to 17.0.0.134) and Exploit Kits

Blog - page 4 As spotted by FireEye on 2015-04-17, Angler EK is now taking advantage of a vulnerability patched with the last version of Flash Player ( 17.0.0.169 ) Read More ›