HackDig : Dig high-quality web security articles for hackers

Holy water: ongoing targeted water-holing attack in Asia

On December 4, 2019, we discovered watering hole websites that were compromised to selectively trigger a drive-by download attack with fake Adobe Flash update warnings. This campaign has been active since at least May 2019, and targets an Asian religious and ethnic group. The threat actor’s unsophisticated but creative toolset has been evolving a lot s
Publish At:2020-03-31 08:22 | Read:427 | Comments:0 | Tags:APT reports Featured Adobe Flash Backdoor drive-by attack Ja

Bad Rabbit ransomware

What happened? On October 24th we observed notifications of mass attacks with ransomware called Bad Rabbit. It has been targeting organizations and consumers, mostly in Russia but there have also been reports of victims in Ukraine. Here’s what a ransom message looks like for the unlucky victims: What is bad rabbit? Bad Rabbit is a previously unknown r
Publish At:2017-10-24 16:45 | Read:4345 | Comments:0 | Tags:Featured Incidents drive-by attack Ransomware Targeted Attac

Certified Ethical Hacker website caught spreading crypto ransomware

For the past four days, including during the hour that this post was being prepared on Thursday morning, a major security certification organization has been spreading TeslaCrypt malware—despite repeated warnings from outside researchers.EC-Council, the Albuquerque, New Mexico-based professional organization that administers the Certified Ethical Hacker prog
Publish At:2016-03-25 04:10 | Read:3984 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab Uncategorized

GoDaddy accounts compromised to run a campaign based on Angler kit

Experts at Cisco discovered a new technique dubbed Domain Shadowing consisting in the creation of thousand subdomains used to spread the Angler exploit kit Cyber criminals have used hundreds of legitimate domain name accounts registered through GoDaddy to run a malicious campaign using the popular Angler exploit kit. Crooks ha
Publish At:2015-03-04 17:30 | Read:3901 | Comments:0 | Tags:Breaking News Cyber Crime Malware Angler CISCO Cybercrime Do

Some 100,000 or more WordPress sites infected by mysterious malware

About 100,000 or more websites running the WordPress content management system have been compromised by mysterious malware that turns the infected sites into attack platforms that can target visitors, security researchers said.The campaign has prompted Google to flag more than 11,000 domains as malicious, but many more sites have been detected as comprom
Publish At:2014-12-15 22:20 | Read:4011 | Comments:0 | Tags:Risk Assessment Technology Lab Uncategorized drive-by attack


Share high-quality web security related articles with you:)