The Latest in IT Security

Blackhole: Faster than the speed of patch


Before Java can release a patch for the recent zero-day exploit blogged by Sean earlier, Blackhole waltzes into the scene with an update. So the exploit kit users can now avail of the latest BH with the new zero-day exploit (CVE-2012-4681).

I wonder if this will actually put a spike on Blackhole sales.

The authors seem to be in such a hurry that they can’t think of new names anymore:

code_comp (164k image)

code_comp2 (15k image)

There being no latest patch against this, the only solution is to totally disable Java. Since this is the most successful exploit kit + zero-day… que horror. Please, for the love of your computer disable Java on your browser.

Jar is detected as Exploit:W32/CVE-2012-4681.A (sha1: 15fde2d50fc5436aa73f3fd6b065f490259a30fd).

Post by:
Karmina and Timo

Leave a reply


FRIDAY, JUNE 22, 2018



Latest Comments

Social Networks