exploit kit – WindowsTechs.com

Historical OSINT – International Institute For Counter-Terrorism Serving Malware – An Analysis

Posted on December 13, 2020 by Dancho Danchev

The International Institute For Counter-Terrorism is known to have served malicious software to its targeted user base back in 2013.In this post I’ll provide actionable intelligence behind the campaign and discuss in-depth the tactics technique and pro… Continue reading Historical OSINT – International Institute For Counter-Terrorism Serving Malware – An Analysis→

Exposing Modern Client-Side Exploits Serving Kits – An AV and Snort IDS MD5 List Compilation

Posted on December 12, 2020 by Dancho Danchev

Dear blog readers,It’s been a while since I’ve last posted a quality update and I’ve decided to share with everyone the results of a recent initiative where I aim to provide actionable threat intelligence on some of the key client-side exploits serving… Continue reading Exposing Modern Client-Side Exploits Serving Kits – An AV and Snort IDS MD5 List Compilation→

Xfinity, McAfee Brands Abused by Parked Domains in Active Campaigns

Posted on October 29, 2020 by Tara Seals

Malicious redirection websites are using typosquatting and impersonation to attack unwary visitors. Continue reading Xfinity, McAfee Brands Abused by Parked Domains in Active Campaigns→

Purple Fox EK Adds Microsoft Exploits to Arsenal

Posted on July 6, 2020 by Lindsey O'Donnell

Two exploits for Microsoft vulnerabilities have been added to the Purple Fox EK, showing ongoing development. Continue reading Purple Fox EK Adds Microsoft Exploits to Arsenal→

Hackers Created Thousands of Coronavirus (COVID-19) Related Sites As Bait

Posted on March 18, 2020 by Ravie Lakshmanan

As the world comes to grips with the coronavirus pandemic, the situation has proven to be a blessing in disguise for threat actors, who’ve taken advantage of the opportunity to target victims with scams or malware campaigns.

Now, according to a new re… Continue reading Hackers Created Thousands of Coronavirus (COVID-19) Related Sites As Bait→

Uncovering threat infrastructure via URL, domain and IP address advanced pivots a.k.a. Netloc Intelligence

Posted on February 26, 2020 by Emiliano Martinez

Quick links:https://support.virustotal.com/hc/en-us/articles/360001387057https://developers.virustotal.com/v3.0/reference#intelligence-searchhttps://github.com/VirusTotal/vt-pyTen years ago, VirusTotal launched VT Intelligence; a critical component of … Continue reading Uncovering threat infrastructure via URL, domain and IP address advanced pivots a.k.a. Netloc Intelligence→

Maze Ransomware Exploiting Exploit Kits

Posted on November 8, 2019 by Tomas Meskauskas

Cybercrime has never been one to hem in tactics with ideology or rules. Rather, malware operators are known to use what works and then modify code to continue to work. By “work,” we mean that the code does what it is supposed to; for information steal… Continue reading Maze Ransomware Exploiting Exploit Kits→

Brand-New SystemBC Proxy Malware Spotted Using SOCKS5 for Stealth

Posted on August 1, 2019 by Tara Seals

The proxy is being distributed by the RIG and Fallout exploit kits. Continue reading Brand-New SystemBC Proxy Malware Spotted Using SOCKS5 for Stealth→

Top Exploit Kit Activity Roundup – Winter 2019

Posted on January 20, 2019 by RHegde@zscaler.com

This is the ninth in a series of quarterly roundups by Zscaler ThreatLabZ researchers, in which the team collects and analyzes the recent activity of current exploit kits. Exploit kits (EKs) are rapidly deployable software packages designed to leverage… Continue reading Top Exploit Kit Activity Roundup – Winter 2019→

Fallout EK Retools for a Fresh New 2019 Look

Posted on January 18, 2019 by Tara Seals

The Fallout EK has added the latest Flash vulnerability to its bad of tricks, among other tune-ups. Continue reading Fallout EK Retools for a Fresh New 2019 Look→