Results for "neutrino"

November 9, 2017 - Exploits may not be enough as threat actors combine them with social engineering in a new Disdain exploit kit attack method.

CONTINUE READING No Comments

Backdoor.Neutrino

CONTINUE READING No Comments

February 27, 2017 - We take another look at the Neutrino bot, known for its diverse feature set ranging from snooping on victims to performing DDos attacks. This latest version includes a hardened protective layer aimed at defeating sandboxes and hiding the bot from discovery.

CONTINUE READING No Comments

January 11, 2017 - Spammers took a break over the holidays but are back in form with a campaign pushing the Neutrino Bot.

CONTINUE READING 9 Comments

September 13, 2016 - With a rise in malvertising attacks lately, we take a look at an ad server pushing the Afraidgate, traditionally found on compromised sites.

CONTINUE READING No Comments

August 15, 2016 - Something unusual happened in the exploit kit ecosystem. Two well-known malware distribution campaigns switched from Neutrino EK to RIG EK. A temporary blip or a more durable change? Only time will tell.

CONTINUE READING No Comments

August 12, 2016 - Keeping up with twists and turns on the exploit kit scene, we examine a new redirection mechanism to Neutrino EK which adds fingerprinting way up the infection chain by crafting a special Flash file and uploading it on compromised hosts. This ensures proper filtering of non desirable traffic even before the gate to the exploit kit.

CONTINUE READING No Comments

August 3, 2016 - In the cybercrime landscape, Exploit Kits (EKs) are the tool of choice to infect endpoints by exploiting software vulnerabilities. However, a critical component EKs rely on is web traffic, which must be directed towards them. In this post, we take a look at what we sometimes refer to as 'gates'. Hacked websites are injected with code to an intermediary webpage that serves as the gateway to the exploit kit.

CONTINUE READING 1 Comment

July 15, 2016 - The Neutrino developers have made some changes to the landing page source code as well as integrated a new exploit. The malware campaigns that once were Angler's continue to point to Neutrino including a large malvertising attack on top adult sites we detected a few days ago.

CONTINUE READING No Comments

Select your language