Computerworld

Cybercriminals selling exploit-as-a-service kit

Cybercriminals are taking a page from the software-as-a-service playbook: they’re now selling exploit kits complete with hosting services, with customers paying for the length of time the exploits are ...
Infosecurity Magazine

Chinese-Made Malware Kit Targets Chinese-Based Routers and Edge Devices

The researchers were hunting for samples of DarkNimbus, a backdoor linked to the MOONSHINE exploit kit which have both been ...
Homeland Security Today

Exploit Kits: The Silent Web Threat Affecting Billions

When we talk to people whose computers have been infected, they often ask how it happened. In a growing number of cases, they have been doing nothing more than reading a news website or browsing for ...
InfoWorld

Hackers update malware tool kit with zero-day code

A new version of the IcePack hacker exploit tool kit has been released, security researchers warned Tuesday, and for the first time it includes attack code designed to exploit an unpatched, or ...
Homeland Security Today

A Deep Dive Into RIG Exploit Kit Delivering Grobios Trojan

Exploit kit activity has been on the decline since the latter half of 2016. However, we do still periodically observe significant developments in this space, and we have been observing interesting ...
Forbes

New Android, Windows Warning—Attack Erases Browser Security Updates

Another threat group using an Android exploit kit, and a backdoor that targets both Android and Windows users, could easily slip under your reading radar. After all, there are just so many ...
Computerworld

New Whitehole exploit toolkit emerges on the underground market

A new exploit kit called Whitehole has emerged on the underground market, providing cybercriminals with one more tool to infect computers with malware over the Web, security researchers from antivirus ...
Bleeping Computer

US offers $2.5 million reward for hacker linked to Angler Exploit Kit

The U.S. Department of State and the Secret Service have announced a reward of $2,500,000 for information leading to Belarusian national Volodymyr Kadariya (Владимир Кадария) for cybercrime activities ...
Security Boulevard

When Documents Become the Attack Vector: Inside APT28’s Latest Microsoft Office Exploit

Email attachments remain one of the most trusted entry points into enterprise environments. Despite years of awareness training and secure email gateways, attackers continue to rely on documents ...
CSOonline

The US offers a $2.5M bounty for the arrest of Angler Exploit Kit co-distributor

The State Department has placed a bounty of up to $2.5 million on information leading to Volodymyr Kedariya’s arrest. The US Department of State is offering a reward of $2.5 million for information ...
InfoWorld

Attackers are exploiting a zero-day vulnerability in Flash Player

Attackers are using compromised websites to exploit a new and currently unpatched vulnerability in Flash Player, a malware researcher has reported. The new exploit was observed in drive-by-download ...