Blackhole exploit kit

(get it in RSS or Atom)

Assessing the impact of the Blackhole arrests

bh-250

News has surfaced that the criminals behind the Blackhole exploit kit have been arrested.

Now, everyone wants to know, "Will the arrest have any effect on the prevalence of the threat?"

Fraser Howard of SophosLabs looks at the data...

Seagate's blog pushes malware on unsuspecting visitors via rogue Apache modules

Seagate's blog pushes malware on unsuspecting visitors via rogue Apache modules

SophosLabs has been tracking an infection of Mal/Iframe-AL on Seagate's blog since late February.

Are you taking enough care of your company's websites?

Rogue Apache modules pushing iFrame injections which drive traffic to Blackhole exploit kit

Rogue Apache modules pushing iFrame injections which drive traffic to Blackhole exploit kit

SophosLabs has seen huge volumes of legitimate sites being compromised with malicious redirects in recent weeks.

Fraser Howard explains what's going on, and how the compromised web servers are almost exclusively running Apache.

Technical paper: Deeper inside the Blackhole exploit kit

Technical Paper: Inside a Black Hole (part 2)

For those interested in exploit kits and how they work, Gabor Szappanos has published the second (and concluding) part of his technical paper looking at the Blackhole kit.

Recommended reading for all those that want a little more detail as to how one of the most prolific and widely used crimeware kits actually works.

Exploit kits, the biggest threat on the web, are being fed by whitehat security researchers

Who is feeding the Blackhole exploit kit?

When security researchers make available proof of concept code to demonstrate vulnerabilities, are they actually supporting the malicious exploit kit authors?

SophosLabs expert Gabor Szappanos shows that the creators of exploit kits aren't the ones discovering the zero day vulnerabilities.

Technical paper: Journey inside the Blackhole exploit kit

plug-hole-thumb

Do you want to learn more about the exploit kit that is arguably responsible for the most malware infections this year?

Well read the latest technical paper from SophosLabs, where Gabor Szappanos uncovers some of the details behind the Blackhole exploit kit.

Hacked Go Daddy sites infecting users with ransomware

go-daddy-thumb

Computer users are getting infected with ransomware because criminals have managed to hack the DNS records of Go Daddy hosted websites.

Fake Apple invoices lead to Blackhole exploit kit that drains your bank account

Fake Apple invoices lead to Black Hole that drains your bank account

A new round of spams proclaims you have been charged for a large purchase from Apple.

All links lead to webpages infected with the Blackhole exploit kit. Be cautious with your online shopping this holiday season.

EU domain abuse, courtesy of the Blackhole exploit kit

EU domain abuse, courtesy of the Blackhole exploit kit

Numerous .eu domains have been registered this month for the purposes of infecting computers with malware, via the Blackhole exploit kit.

Security expert Fraser Howard takes a closer look.

Blackhole exploit kit confusion. Custom builds or copycats?

Blackhole exploit kit confusion. Custom builds or copycats?

Are some of the different variants of Blackhole exploit kit that SophosLabs are seeing actually new versions of this popular Exploit kit? Or simply copycats created by other groups?

Monday review: the hot 20 stories of the week

Monday review: the hot 20 stories of the week

It's weekly roundup time - here's everything we published in the last seven days.

Adobe Reader zero-day exploit thwarts sandboxing

Adobe Reader zero-day exploit thwarts sandboxing

The vulnerability is selling for up to $50K on the black market, security researchers say, and has been included in a package of banking Trojans called the Blackhole Exploit Kit, which is the most prevalent exploit kit out there.

Blackhole malware attack spread via 'Your photos' email

blackhole-thumb

A malware attack has been spammed out widely via email to internet users, posing as a message about photos.

Offensive Facebook email leads to Blackhole malware attack

Offensive Facebook email leads to Blackhole malware attack

Facebook users are warned to be on their guard against unsolicited emails they might receive suggesting that someone has left an offensive comment about them on their wall.

"Mitt Romney almost president" - Fake CNN alert leads to Blackhole malware attack

CC-Romney-Byaustenhufford250

In an attempt to cash in on the interest in the upcoming US presidential election, online criminals have begun circulating malicious emails pretending to be CNN news alerts about Mitt Romney pulling ahead in the polls.

Attacks on Java security hole hidden in bogus Microsoft Services Agreement email

Java hole exploited in spam messages

Online scammers are using a recent email from Microsoft Corp. as bait in a widespread phishing campaign that exploits vulnerabilities in Oracle’s Java software to install malicious programs on vulnerable systems.

Insecure WordPress blogs unwittingly host Blackhole malware attack

Insecure WordPress blogs unwittingly host Blackhole malware attack

A major malware campaign has been spread via spam email and compromised self-hosted WordPress blogs, attempting to infect computers using the notorious Blackhole exploit kit.

Outbreak: Blackhole malware attack spreading on Twitter using "It's you on photo?" disguise

Outbreak: Blackhole malware attack spreading on Twitter using "It's you on photo?" disguise

Watch out! Malicious links are being spammed out on Twitter, designed to infect your Windows PC using the Blackhole exploit kit.

Blackhole malware attack poses as rejected wire transfer email

Malware attack poses as rejected wire transfer email

SophosLabs is intercepting a wave of malicious emails that have been spammed out around the world, luring unsuspecting internet users into clicking on a malicious attachment.

Malware spread as Facebook photo tag notification

Malware spammed out as Facebook photo tag notification

Be wary of emails claiming to be from Facebook, and saying that you have been tagged in a photograph.

Malicious hackers are once again using the Blackhole exploit kit to infect the computers of unsuspecting internet users.