Cool Exploit kit
News has surfaced that the criminals behind the Blackhole exploit kit have been arrested.
Now, everyone wants to know, "Will the arrest have any effect on the prevalence of the threat?"
Fraser Howard of SophosLabs looks at the data...
What do you do when attackers are abusing legitimate domain Registration services?
How do you stop or at least disrupt the malicious attacks?
Reporting the incident to the appropriate Registrar is the correct course of action, but as you can read, doing so does not necessarily guarantee results.
Are some of the different variants of Blackhole exploit kit that SophosLabs are seeing actually new versions of this popular Exploit kit? Or simply copycats created by other groups?