New Flash Player zero-day used against Russian facility

An APT group is using a new Flash Player zero-day that was used a lure targeting a Russian-based clinic

Read more

Blocks for Flash and others coming to Office 365

If you make use of Flash or Silverlight in your day-to-day activities, you may need to have a word with IT. For everyone else, your Office 365 experience is about to become a lot more secure.

Read more

‘FakeUpdates’ campaign leverages multiple website platforms

Browser update? Do not trust, and do verify before downloading potential malware.

Read more

Cookies: Should I worry about them?

Are cookies a threat? The answer depends on how much you care about privacy. Learn how to manage cookies and stay in control of your data.

Read more

Neutrino EK: more Flash trickery

Keeping up with twists and turns on the exploit kit scene, we examine a new redirection mechanism to Neutrino EK which adds fingerprinting way up the infection chain by crafting a special Flash file and uploading it on compromised hosts. This ensures proper filtering of non desirable traffic even before the gate to the exploit kit.

Read more

Neutrino EK: fingerprinting in a Flash

Since the disappearance of Angler EK, exploit kit activity is at one of its lowest it has been in a long time. The focus is therefore on Neutrino EK, which has somewhat picked up the pieces, although at a much lower rate. In this post we look at a change recently noticed with the Flash exploit Neutrino uses, which now includes fingerprinting of the user’s machine.

Read more

New wave of malvertising leverages latest Flash exploit

A well known malvertising gang famous for its use of the fingerprinting technique and other evasion tricks to bypass security checks has been ramping up its activity against many different ad platforms to push malware via top websites. The setup for these malvertising attacks relies on a combination of techniques that start with the fraudulent advertiser choosing a victim, typically a legitimate website in the retail, or legal business.

Read more

Spike in Malvertising Attacks Via Nuclear EK Pushes Ransomware

Ransomware is being dropped in a large ongoing malvertising attack via Nuclear EK.

Read more

Large Number of Adult Sites Distribute Malware Via AdXpansion Malvertising

This AdXpansion advert has a double purpose and that is to exploit your computer.

Read more

DirectRev Advert Loads Self Sufficient Flash Exploit, CryptoWall

Trusting Flash-based ads has never been harder when they bundle nasty code.

Read more

Cybersecurity info you can’t do without

Want to stay informed on the latest news in cybersecurity? Sign up for our newsletter and learn how to protect your computer from threats.

Select your language