A snippet of code on the Central Tibetan Administration website redirects CN speaking visitors to a Java exploit that drops an APT-related backdoor. For some context, the site claims the administration itself as “…the Central Tibetan Administration (CTA) of His Holiness the Dalai Lama, this is the continuation of the government of independent Tibet.” The […]
There’s currently a large and determined effort to infect computers with Ransomware, courtesy of the Stamp EK exploit kit (if you want to know about the other name the kit has, visit the Sophos blog via the bottom Tweet. The language deployed by the kit authors is possibly not safe for work, so if you’d […]
In my company, we began experiencing a problem when the users tried to access http://www.google.com.co though our Forefront TMG proxy. Every corporate user saw the following message: This really looked strange, specially coming from google. I captured some packets and queried about the http get operations and got the following: Got three operations: one […]
Latest Comments