2013 has seen some significant changes in the way that attackers use the Blackhole exploit kit in spam attacks. To understand what these changes are, however, let us first go into what Blackhole did in late 2012.Last year, the majority of URLs found in Blackhole-related phishing messages had the following format: http://{compromised or abused site}/{eight-digit […]
Through a collaboration with Eric Romang (@eromang), independent security researcher we can confirm that the watering hole campaigns are still ongoing and are targeting multiple targets, including as an example a major Hong Kong political party website.This website is actually using the new version of the original Internet Explorer (CVE-2012-4792) vulnerability attack, but right now […]
Many folks are unfamiliar with the Drupal CMS, it doesn’t enjoy the popularity that some others do like WordPress and Joomla, but its a powerful CMS none the less. What it does have in common with its counterparts is that its susceptible to attacks and infections. We don’t often write about it, but we do […]
Latest Comments