Monday, May 19th, 2008 We have been noticing quite a few binaries lately that target Brazilian banks. While most tend to have the same behavior, we found a particular piece that actually encrypted most of its strings to slow down analysis. In this blog we analyze the decryption routine and write a decryption algorithm, ...
Posted in Internet, Security | No Comments
Wednesday, May 14th, 2008 A little-known botnet has put a different spin on the recent wave of SQL injection attacks on thousands of Websites: It’s outfitting its bots with its own tool to launch SQL injection attacks on vulnerable sites.The Asprox botnet, a relatively small botnet known mainly for sending phishing emails, has been ...
Posted in Coding, Internet, Privacy, Security | No Comments
Tuesday, May 13th, 2008 The mass SQL injection attacks we've mentioned here and here are increasing in numbers and we're seeing more domains being injected and used to host the attack files and we believe that there are now more than one group using a set of different automated tools to inject the code.Previously ...
Posted in Internet, Security | No Comments
Sunday, May 11th, 2008 We received a report from Mike this afternoon about a couple of URLs containing a malicious JavaScript that pulls down a file associated with Zlob. If you do a google search for these two URLs, you get about 400,000 sites that have a call to this Javascript file included in ...
Posted in Internet, Privacy, Security | No Comments
Thursday, May 8th, 2008 It takes the average attacker less than 10 seconds to hack in and out of a database -- hardly enough time for the database administrator even notice the intruder. So it’s no surprise that many database attacks go unnoticed by organizations until long after the data has been compromised.And surprisingly, ...
Posted in Internet, Security | No Comments
