exploit

Fake iTunes e-mail leads to drive-by download

December 22, 2010

E-mails purportedly coming from iTunes and bearing “iTunes account may be suspended” in the subject line have been hitting inboxes in the last few days. …

Week in review: Online shopping safety, malware hybrids and Packet Wars

November 29, 2010

Here’s an overview of some of last week’s most interesting news, articles and reviews: Google Apps Script API flaw allowed attacker to impersonate Google Details …

Windows 0-day circumvents UAC

November 25, 2010

Windows zero-day vulnerabilities are lately getting discovered too often for Microsoft’s – and users’ – liking. Unfortunately for all of us, details of …

Exploit code for still unpatched 0-day used by Stuxnet released

November 23, 2010

After Stuxnet hit, it was discovered that it took advantage of four previously unknown Windows zero-day vulnerabilities to spread and compromise targeted systems. Three of …

Latest IE 0-day exploit finds its way into Eleonore toolkit

November 9, 2010

Microsoft will likely be forced to issue an out-of-band-patch for the zero-day vulnerability affecting Internet Explorer that has been discovered being exploited in the wild …

New IE 0-day exploit code found in the wild

November 4, 2010

Exploit code for a previously unknown Internet Explorer zero-day vulnerability that would allow an attacker to perform a remote code execution and install malware on the …

Metasploit Framework 3.5.0 comes with over 600 exploits

October 20, 2010

The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration …

The rise of Java exploits

October 19, 2010

Sifting through the data collected and analyzed in order to compile the latest Microsoft Security Intelligence Report, senior program manager Holly Stewart came to an …