AntiSpyStorm: Fake Microsoft AntiSpyware Center pushing Adware !
Another blog which highlights the new-age social engineering techniques to spoof a user into installing adwares and spywares.
More here:
http://www.avertlabs.com/research/blog/index.php/2007/10/11/
SharK2: Trojan Creation Made Easy!
This blog talks about Shark2 DIY kit and how the remote access trojans has evolved from infamous Back Orifice to the recent RATS with stealth and virtual machine detection features along with the advancement in user-friendly GUI’s.
More here:
http://www.avertlabs.com/research/blog/index.php/2007/08/21/shark2-trojan-creation-made-easy/
The Nduja Job: Into The World Of XSS Worms
In this blog i talk about the history of XSS worms, how they evolved to spread through multiple webmail providers and the client-server model involved in a XSS botnet.
More here:
-
Recent
- ClubHack 2007: Analysis of Adversarial Code – The Role of Malware Kits
- AntiSpyStorm: Fake Microsoft AntiSpyware Center pushing Adware !
- SharK2: Trojan Creation Made Easy!
- The Nduja Job: Into The World Of XSS Worms
- Hacking the Malware– A reverse-engineer’s analysis
- RockLiffe MailSite wconsole.dll Denial of Service/Script Injection Vulnerability
- myBloggie SQL Injection/Privilege Escalation Vulnerability
- Hesk Session ID Validation Vulnerability
- ePing Arbitrary File CreationCommand Execution Vulnerability
- My Blog
-
Links
News from the Lab 