Tag: drive-by download
-
VB2018 paper: From drive-by download to drive-by mining: understanding the new paradigm
When it comes to web-based threats, Malwarebytes researcher Jérôme Segura is one of the people to follow. His quarterly reviews of the exploit kit landscape are an essential read for anyone who follows this type of threat. In his latest review , Jérôme writes about a slight reversal of an important shift seen in the past…
-
VB2018 paper: From drive-by download to drive-by mining: understanding the new paradigm
When it comes to web-based threats, Malwarebytes researcher Jérôme Segura is one of the people to follow. His quarterly reviews of the exploit kit landscape are an essential read for anyone who follows this type of threat. In his latest review , Jérôme writes about a slight reversal of an important shift seen in the past…
-
VB2018 preview: From drive-by download to drive-by mining
“Understanding the new paradigm”, Malwarebytes researcher Jérôme Segura writes in the title of his upcoming VB2018 presentation on drive-by mining. He could hardly have put it more accurately – the rise of malicious cryptocurrency miners is the main security trend of the past 12 months. In the paper , Jérôme will look at those miners that…
-
VB2018 preview: From drive-by download to drive-by mining
“Understanding the new paradigm”, Malwarebytes researcher Jérôme Segura writes in the title of his upcoming VB2018 presentation on drive-by mining. He could hardly have put it more accurately – the rise of malicious cryptocurrency miners is the main security trend of the past 12 months. In the paper , Jérôme will look at those miners that…
-
VB2016 paper: The TAO of Automated Iframe Injectors – Building Drive-by Platforms For Fun
VB2016 took place almost two weeks ago, since when we have had many requests to publish the papers presented at the conference, as well as the videos of those presentations. Virus Bulletin is all about bringing security experts together and making relevant information accessible to them and for that reason, subject to authors’ permission, we…
-
VB2016 paper: The TAO of Automated Iframe Injectors – Building Drive-by Platforms For Fun
VB2016 took place almost two weeks ago, since when we have had many requests to publish the papers presented at the conference, as well as the videos of those presentations. Virus Bulletin is all about bringing security experts together and making relevant information accessible to them and for that reason, subject to authors’ permission, we…
-
Virus Bulletin publishes first web filter test report
Virus Bulletin has been testing security products for more than 18 years, and in recent years, we have had many requests from product developers asking us to test their web security products. After all, whether malicious software is downloaded directly from websites or through sneaky drive-by downloads, the web remains an important infection vector. In…
-
Php.net compromised to serve malware
Researchers initially believed Google warning was a false positive. For a few days this week, the popular php.net website was serving malware to some of its visitors and was doing so in a stealthy way that initially confused researchers. There may be thousands and possibly millions of malicious websites on the Internet, but when you…
-
Apache binaries replaced by stealth malcious ones
Malicious servers opening backdoors, performing redirects. Researchers at ESET and Sucuri have discovered a modified Apache binary that is used on hundreds of web servers to perform malicious redirects and open a backdoor to the server, while going to great lengths to hide its activity. Recently, thousands of websites – most prominently that of the…
-
One in ten spam messages contains drive-by download link
80-fold increase in one month. I do not think I am unique in that I can recognize (most) phishing pages from a mile away and that I know that, if I ever wanted to buy performance-enhancing drugs of any kind, I should not buy them through a link found in a spam message. However, that…