2015-05-12 - Exploit-Kit – Study

Another look at Niteris : post exploitation WMI and Fiddler checks

Blog - page 5 In this post we'll see some of the improvements that have been brought to Niteris. Read More ›

2015-04-24 - Exploit-Kit – Exploit Integration

CVE-2015-0359 (Flash up to 17.0.0.134) and Exploit Kits

Blog - page 5 As spotted by FireEye on 2015-04-17, Angler EK is now taking advantage of a vulnerability patched with the last version of Flash Player ( 17.0.0.169 ) Read More ›

2015-03-20 - Exploit-Kit – Exploit Integration

CVE-2015-0336 (Flash up to 16.0.0.305) and Exploit Kits

Blog - page 5 As reported by Malwarebytes and FireEye, Nuclear Pack is now taking advantage of a vulnerability patched with the last version of Flash Player ( 17.0.0.134 ) Read More ›

2015-03-04 - Ransomware – Landscape

New crypto ransomware in town : CryptoFortress

Blog - page 5 Yet another crypto-ransomware appeared in the wild. Read More ›

2015-02-11 - Exploit-Kit – Exploit Integation

CVE-2015-0313 (Flash up to 16.0.0.296) and Exploit Kits

Blog - page 5 Reported by TrendMicro (2015-02-02), fixed with Adobe Flash Player 16.0.0.305, the code to exploit CVE-2015-0313 has been introduced in Hanjuan Exploit Kit at beginning of december 2014. Read More ›

2015-02-05 - Ransomware – Design Gathering

Reveton's design refreshed - Winter 2015

Blog - page 5 Those days Reveton is mainly pushed on adult traffic via “standalone” CVE-2015-0311 flash (posing as advert) calling an Xtea encoded stream. After not far from 2 years with the same design it's now showing some fresh clothes. Read More ›

2015-01-29 - Exploit-Kit – Exploit Integration

CVE-2015-0311 (Flash up to 16.0.0.287) integrating Exploit Kits

Blog - page 5 Patched with Flash 16.0.0.296 the CVE-2015-0311 has been first seen exploited by Angler EK ( 2015-01-20 ) , soon after used in "standalone" mode in huge malvert campaign Read More ›

2015-01-21 - Exploit-Kit – 0day

Unpatched Vulnerability (0day) in Flash Player is being exploited by Angler EK

Blog - page 5 Angler EK spotted exploit unpatched vulnerability in Flash Player Read More ›

2015-01-16 - Exploit-Kit – 0day

CVE-2015-0310 [Not ! CVE-2014-9162/CVE-2014-9163] (Flash 15.0.0.242 and below) integrating Exploit Kits

Blog - page 5 I couldn't write about it earlier but this is not CVE-2014-9162/9163. It's CVE-2015-0310 which was an unpatched bug in Flash Player but as coder were not aware it seems (not fired to Flash > 15.0.0.242) this post was leaved untouched. Read More ›

2015-01-13 - Ransomware – Landscape

Guess who's back again ? Cryptowall 3.0

Blog - page 5 And almost two months after last sample, Cryptowall is back. Read More ›