The Latest in IT Security

Posts Tagged ‘web page’

Miniduke: web based infection vector

11
Mar
2013

Together with our partner CrySyS Lab, we’ve discovered two new, previously-unknown infection mechanisms for Miniduke. These new infection vectors rely on Java and IE vulnerabilities to infect the victim’s PC. While inspecting one of the C&C servers of Miniduke, we have found files that were not related to the C&C code, but seemed to be […]

Category General Written by Securelist / Blog 0 Comments

Read more ...

Unpatched WordPress Instance on Yahoo Blog Leads to Cookie Theft

30
Jan
2013

A spam wave that has been circulating for roughly a month is stealing Yahoo login credentials by exploiting an old – yet unpatched – vulnerability in a component of the Yahoo Developers blog.

Category General Written by Bitdefender Labs 0 Comments

Read more ...

A Dive into the Water Hole

19
Jan
2013

Today, let’s get our hands dirty by analyzing an “interesting” sample that I found in-the-wild earlier today. There are multiple interesting parts of this sample; the first one is that they don’t really hide/obfuscate their stuff. They left it in plain text, and exposed the contents of their server. (By accident, I think.)Let’s move to […]

Category Security Written by Blue Coat 0 Comments

Read more ...

« Older Entries
Newer Entries »

Categories

SATURDAY, APRIL 20, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments