Category Archives: Threat Research

It’s what we do.

A peek inside the Cythosia v2 DDoS Bot

January 9, 2012 – 12:34 pm

by Dancho Danchev With DDoS extortion and DDoS for hire attacks proliferating, next to the ever decreasing price for renting a botnet, it shouldn’t come as a surprise that cybercriminals are constantly experimenting with new DDoS tools. In this post, I’ll profile a newly released DDoS bot, namely v2 of the Cythosia DDoS bot.

By ddanchev | Also posted in Botnet activity, malware | Leave a Comment

A peek inside the PickPocket Botnet

January 6, 2012 – 9:33 am

by Dancho Danchev Malicious attackers quickly adapt to emerging trends, and therefore constantly produce new malicious releases. One of these recently released underground tools, is the PickPocket Botnet, a web-based command and control interface for controlling a botnet. Let’s review its core features, and find out just how easy it is to purchase it within [...]

By ddanchev | Also posted in Botnet activity, Uncategorized | Leave a Comment

Mass SQL injection attack affects over 200,000 URLs

January 5, 2012 – 3:41 pm

by Dancho Danchev Security researchers from the Internet Storm Center, have intercepted a currently ongoing SQL injection attack, that has already affected over 200,000 URLs. The attack was originally detected in early December, 2011. It currently affects ASP sites and Coldfusion, as well as all versions of MSSQL.

By ddanchev | Also posted in Exploits, Uncategorized, Website owners | Comments (4)

“Android Malware” – Thre@t Reply(video)

December 12, 2011 – 1:30 pm

By Armando Orozco Are Android phones susceptible to Trojans and other viruses just like computer? How can you make sure your phone doesn’t become infected and if it does, what can you do? Webroot mobile threat research analyst, Armando Orozco answers this question that was asked to our Webroot Threat Research team via Twitter.

By Lisa Bongiovanni | Also posted in Android, Mobile security, Uncategorized | Leave a Comment

Reflections on mobile security

November 21, 2011 – 10:00 am

By Armando Orozco Be wary the next time you enter your passcode into your iPhone on the bus – someone could be shoulder surfing. In fact, a team of researchers from the University of North Carolina has developed a system to watch you pecking out characters on your phone, analyse the video, and produce a [...]

By mguthrie09 | Also posted in Android, Keyloggers, malware, Mobile security, social engineering | Comments (4)

Top 7 Cybersecurity Predictions for 2012

November 17, 2011 – 3:00 am

By Mel Morris From Stuxnet to Sony, a number of cyberattacks emerged in 2011 that experts have predicted for quite some time. I predict 2012 will be even more pivotal, thrusting cybersecurity into the spotlight. These are my top seven forecasts for the year ahead: 1) Targeted, zero-day attacks will be the norm. Looking back [...]

By Lisa Bongiovanni | Also posted in Deep Knowledge, Internet security industry, Mobile security | Comments (5)

In space, no one can hear you hack

November 14, 2011 – 1:09 pm

By the Webroot Threat Team Two of NASA’s satellites were hacked during 2007 and 2008, according to a draft report to be officially released later this month. According to the United States-China Economic and Security Review Commission, the ‘birds’, which focused on Earth observation for tasks such as climate monitoring, were reportedly pwned by the [...]

By mguthrie09 | Also posted in Targets | Comments (4)

This blackhole exploit kit gives you Windows Media Player and a whole lot more

November 11, 2011 – 10:11 am

By Mike Johnson As a follow-up to the Blackhole Exploit posting, I thought I would share one aspect of my job that I truely enjoy: Discovery. While investigating some active urls being served up via a blackhole kit, I noticed something quite odd, as I would end up on sites that had malicious code injected into their webpages. Once [...]

By Lisa Bongiovanni | Also posted in Destructive behavior, Exploits, Internet Explorer, malware, Uncategorized | Comments (4)

A look inside the SpyEye Trojan admin console

October 24, 2011 – 1:38 pm

By Michael Johnson At Webroot we’ve been researching and chronicling developments with SpyEye since we first saw it in April 2010. This nasty Trojan is the successor to the Zeus Trojan, and it became essentially the main rootkit available for sale after the author of ZeuS left the underground market and sold ZeuS sources to [...]

By Lisa Bongiovanni | Also posted in Deep Knowledge | Comments (1)

Non-executable malicious files and code – Thre@t Reply

October 7, 2011 – 9:36 am

By Nathan Collier .exe, PHP, HTML, and the list goes on. How many different kinds of files and code can potentially infect your PC? Webroot threat research analyst Nathan Collier explains a few of the the types of potentially dangerous files, other than the common executable (.exe) that can be found on a Windows PC [...]

By Lisa Bongiovanni | Also posted in malware, Uncategorized | Comments (2)
Follow

Get every new post delivered to your Inbox.

Join 526 other followers