The Latest in IT Security

Blackhole: Faster than the speed of patch

28
Aug
2012

Before Java can release a patch for the recent zero-day exploit blogged by Sean earlier, Blackhole waltzes into the scene with an update. So the exploit kit users can now avail of the latest BH with the new zero-day exploit (CVE-2012-4681).

I wonder if this will actually put a spike on Blackhole sales.

The authors seem to be in such a hurry that they can’t think of new names anymore:

code_comp (164k image)

code_comp2 (15k image)

There being no latest patch against this, the only solution is to totally disable Java. Since this is the most successful exploit kit + zero-day… que horror. Please, for the love of your computer disable Java on your browser.

Jar is detected as Exploit:W32/CVE-2012-4681.A (sha1: 15fde2d50fc5436aa73f3fd6b065f490259a30fd).

Post by:
Karmina and Timo

Leave a reply


Categories

FRIDAY, MARCH 29, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments