Collaborate Disseminate
Introduction Working primarily with point of sale malware, we regularly see the telltale signs of scraping memory for Card Holder Data (CHD). Open up the process, walk through the memory using VirtualQuery, check for numbers between 3 and 6… You… Continue reading New Memory Scraping Technique in Cherry Picker PoS Malware
Introduction For the last five years Trustwave has been monitoring a threat across a number of forensic cases that we have dubbed “Cherry Picker”. This targeted Point of Sale (PoS) memory scraper has enjoyed a very low detection rate in…
Continue reading Shining the Spotlight on Cherry Picker PoS Malware
Spammers try all sorts of tricks to obfuscate, including trying to obfuscate URLs so they cannot be recognized by various URL blacklisting or other scanning services. We recently came across a trick we hadn’t seen before. Here is the original…
Continue reading BOM Obfuscation in Spam
November’s Patch Tuesday marks a return to business as usual. Where October was a rather light month for bulletins, November brings back to the same patch levels we saw in September and August. This month there are a total of…
Continue reading Microsoft Patch Tuesday, November 2015
This month’s update for our AppDetectivePRO and DbProtect Knowledgebase is now available. Knowledgebase version 4.55 includes new checks for Oracle, MySQL and MS SQL, updated checks for IBM DB2 for Linux, UNIX and Windows, MySQL and SAP (Sybase) Adapti… Continue reading AppDetectivePRO and DbProtect Knowledgebase Update 4.55
In this week’s episode: Carder Scams Zerodium and iOS 9 jailbreak So Long, and Thanks for All the Fish! This episode marks the last SpiderLabs Radio podcast so I can focus on other Trustwave projects like our popular SpiderLabs blog….
Continue reading SpiderLabs Radio for the Week of November 2, 2015 – Final Episode
The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Enjoy! New Vulnerability Test Highlights Some of the more intere… Continue reading TrustKeeper Scan Engine Update for November 04, 2015
In the October 2015 ‘Critical Patch Update’ Oracle fixed a flaw in XML index support code: namely SQL injection which allows privilege escalation to DBA by unprivileged users. I reported this issue to Oracle back in April 2015 and 6…
Continue reading Oracle Database 11.2 SQLi in XML index statistics processing (CVE-2015-4900)
Over the past seven months, a number of vulnerabilities in Lenovo System Update software have come to light. Lenovo patched the first of a batch of these vulnerabilities in spring of this year. I decided to take a deeper look…
Continue reading About Lenovo System Update Vulnerabilities and CVE-2015-6971
Two separate SpiderLabs vulnerabilities released: Assi Barak Discovers Magmi Zero Day Asaf Orpani Discovers Critical Joomla SQL injection Also A New IoT Vulnerability In Your Connected Tea Kettle Links mentioned in the show: Assi Barak – Zero-day in Ma… Continue reading SpiderLabs Radio for the Week of October 19, 2015