drive-by attack – WindowsTechs.com

Incident response analyst report 2020

Posted on September 13, 2021 by Kaspersky Security Services, Kaspersky GERT

We deliver a range of services: incident response, digital forensics and malware analysis. Data in the report comes from our daily practices with organizations seeking assistance with full-blown incident response or complementary expert activities for their internal incident response teams. Continue reading Incident response analyst report 2020→

Holy water: ongoing targeted water-holing attack in Asia

Posted on March 31, 2020 by GReAT

On December 4, 2019, we discovered watering hole websites that were compromised to selectively trigger a drive-by download attack with fake Adobe Flash update warnings. Continue reading Holy water: ongoing targeted water-holing attack in Asia→

WordPress XSS Bug Allows Drive-By Code Execution

Posted on September 13, 2019 by Tara Seals

Sites that use the Gutenberg (found in WordPress 5.0 to 5.2.2) are open to complete takeover. Continue reading WordPress XSS Bug Allows Drive-By Code Execution→

‘Hidden Bee’ miner delivered via improved drive-by download toolkit

Posted on July 26, 2018 by Malwarebytes Labs

Threat actors switch to the Hidden Bee miner as a payload for this unusual and complex drive-by download campaign.
Categories:

Exploits
Threat analysis

Tags: bootkitcryptominerdrive-by attackexploithidden beehidden bee minerMBR

Avzhan DDoS bot dropped by Chinese drive-by attack

Posted on February 23, 2018 by hasherezade

The Avzhan DDoS bot is back in the wild again, this time being dropped by a Chinese drive-by attack. In this post, we’ll take a deep dive into its functionality and compare the sample we captured with the one described in the past.
Categories:

M… Continue reading Avzhan DDoS bot dropped by Chinese drive-by attack→

Avzhan DDoS bot dropped by Chinese drive-by attack

Posted on February 23, 2018 by hasherezade

M… Continue reading Avzhan DDoS bot dropped by Chinese drive-by attack→

Attackers Inject Persistent Cryptomining in Browsers

Posted on November 30, 2017 by Lucian Constantin

Attackers have found a new technique to make cryptocurrency mining, or cryptomining, inside browsers persistent, or at least survive normal attempts of closing the browser window. Drive-by cryptomining has become widespread in recent months with websit… Continue reading Attackers Inject Persistent Cryptomining in Browsers→

Attackers Inject Persistent Cryptomining in Browsers

Posted on November 30, 2017 by Lucian Constantin

Bad Rabbit ransomware

Posted on October 24, 2017 by Orkhan Mamedov

On October 24th we observed notifications of mass attacks with ransomware called Bad Rabbit. It has been targeting organizations and consumers, mostly in Russia but there have also been reports of victims in Ukraine. Continue reading Bad Rabbit ransomware→

Certified Ethical Hacker website caught spreading crypto ransomware

Posted on March 24, 2016 by Dan Goodin

Major security certification group ignored private warnings for more than 3 days. Continue reading Certified Ethical Hacker website caught spreading crypto ransomware→