Hey! A slow news week this time around, but the stuff we got is pretty good. Let’s get to it.
- First story from MalwareBytes takes a look at a new exploit kit making the rounds. Every once in a while there is a new kid on the block in the EK realm, so I found this a good read.
- Read More @ https://blog.malwarebytes.org/exploits-2/2014/08/shining-some-light-on-the-unknown-exploit-kit
- Second article, by AlienVault, takes a look at a new reconnaissance framework used in a number of Waterhole Attacks, called Scanbox.
- Read More @ http://www.alienvault.com/open-threat-exchange/blog/scanbox-a-reconnaissance-framework-used-on-watering-hole-attacks
- Next, a pretty big story that looks at the recent attacks against a number of major banks, including JPMorgan. This one seems like it will be pretty big. I am curious to see the details on this one, as they are released.
- Read More @ http://www.nytimes.com/2014/08/28/technology/hackers-target-banks-including-jpmorgan.html?smid=tw-share
- Next, a pretty interesting read on a study done by BlueCoat, on malicious uses of domains that existed for less than 24 hours or so. While this technique is not really new, and is quite often used by exploit kits, this is a more in depth look. Good read.
- Read More @ https://www.bluecoat.com/company/press-releases/blue-coat-reveals-security-risks-one-day-wonders-websites
- Next, a look at a malvertising campaign that affects Java.com. While malvertising itself is hardly news, generally legitimate sites like Java.com are not really known for serving up malicious ads. Irony here is that the malicious ads on Java.com were leading to malware that exploits Java.
- Read More @ http://blog.fox-it.com/2014/08/27/malvertising-not-all-java-from-java-com-is-legitimate/
- Lastly, something a bit different. This article by network world takes a look at the Russian hacking scene, and provides some interesting theories as to why they are so successful in their hacking endeavors.
- Read More @ http://www.networkworld.com/article/2600218/data-protection/why-russian-hackers-are-beating-us.html?sf30456308=1