Posts Tagged ‘pk’

Phishing Threat Uses UTF-8 BOM in ZIP Signature to Evade Detection

Apr

2013

Last week, we noticed thousands of malware files in the wild that employ a simple phishing attack by modifying the hosts file on Windows systems. What’s interesting, however, is the technique chosen by the malware authors to distribute their payload. The samples in question (Example MD5: 34d9b42bfd64c6f752fe27eef8d80c5f) are packaged in a ZIP file along with […]

Category General Written by Blog Central > McAfee Labs 0 Comments

The “Nitro” Campaign and Java Zero-Day

Aug

2012

The security community has been focused on the new Java zero-day exploits that appear to have been taken from a Chinese exploit pack (known as Gondad or KaiXin) used in targeted attacks by the “Nitro” cyber-espionage campaign and then incorporated into criminal operations using the BlackHole Exploit Kit. While the connections between these developments are […]

Category General Written by TrendLabs 0 Comments

New Java Zero-Day Vulnerability (CVE-2012-4681)

Aug

2012

Yesterday, FireEye documented a Java zero-day vulnerability (CVE-2012-4681) in the wild that is thought to have been used initially in targeted attacks. Symantec is aware that attackers have been using this zero-day vulnerability for at least five days, since August 22. We have located two compromised websites serving up the malware: ok.XXXX.net/meeting/applet.jar 62.152.104.XXX/public/meeting/applet.jar One sample […]

Category General Written by Symantec Security Response Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘pk’

Phishing Threat Uses UTF-8 BOM in ZIP Signature to Evade Detection

The “Nitro” Campaign and Java Zero-Day

New Java Zero-Day Vulnerability (CVE-2012-4681)

Categories

Featured

Archives

Latest Comments

About Us

Contact Us