HackDig : Dig high-quality web security articles for hacker

Website Malware – The SWF iFrame Injector Evolves

Last year, we released a post about a malware injector found in an Adobe Flash (.SWF) file. In that post, we showed how a .SWF file is used to inject an invisible, malicious iFrame. It appears that the author of that Flash malware continued with this method of infection. Now we are seeing more varieties infecting both WordPress and Joomla websites. Though it
Publish At:2015-04-02 21:25 | Read:2806 | Comments:0 | Tags:Joomla! Security Website Malware Website Security WordPress

Website Malware – The SWF iFrame Injector Evolves

Last year, we released a post about a malware injector found in an Adobe Flash (.SWF) file. In that post, we showed how a .SWF file is used to inject an invisible, malicious iFrame. It appears that the author of that Flash malware continued with this method of infection. Now we are seeing more varieties infecting both WordPress and Joomla websites. Though it
Publish At:2015-04-02 15:10 | Read:2968 | Comments:0 | Tags:Joomla! Security Website Malware Website Security WordPress

Pharming Attack Targets Home Router DNS Settings

Pharming attacks are generally network-based intrusions where the ultimate goal is to redirect a victim’s web traffic to a hacker-controlled webserver, generally through a malicious modification of DNS settings.Some of these attacks, however, are starting to move to the web and have their beginnings with a spam or phishing email.Researchers at Kaspersk
Publish At:2015-02-28 02:20 | Read:2678 | Comments:0 | Tags:Hacks Malware Vulnerabilities Web Security DNS attack DNS se

Compromised spin.com serving malware

One of the widely used technique by cyber criminal to promote thier malwares is by compromising a popular website that have a large number of visitor and host a malicious code on the webpage to make it infecting users. this is not good for the company reputation and will make the botnet circulate further.New case have been reported today by Symantec securit
Publish At:2014-11-04 20:40 | Read:2109 | Comments:0 | Tags:Malwares iFrame Malware spin.com Symantec Zeus

Spin.com visitors served malware instead of music

On October 27, while tracking exploit kits (EKs) and infected domains, Symantec discovered that the popular music news and reviews website spin.com was redirecting visitors to the Rig exploit kit. This exploit kit was discovered earlier this year and is known to be the successor of another once popular EK, Redkit. The Rig EK takes advantage of vu
Publish At:2014-11-04 17:20 | Read:2340 | Comments:0 | Tags:Security Security Response Endpoint Protection (AntiVirus) i

iFrame-based redirection attacks used to monitor Chinese organizations

Security Experts at FireEye discovered a new malicious campaign which is targeting Chinese organizations with iFrame traffic redirection to serve RAT. Security experts at FireEye observed a new malicious campaign that is targeting non-profit organizations and non-governmental organizations by compromising legitimate website. T
Publish At:2014-09-29 10:30 | Read:2776 | Comments:0 | Tags:Cyber Crime Malware APT China digital certificates FireEye H

Hacked Brazilian Newspaper Site Targets Router DNS Settings

The website for one of Brazil’s biggest newspapers has been compromised with malware that tries to change the victim’s router DNS settings.Web security company Securi published a report yesterday that Politica Estadao’s website was loading iFrames that carried out a brute-force attack against the victim’s home router’s admin credentials. A similar styl
Publish At:2014-09-12 22:20 | Read:2600 | Comments:0 | Tags:Hacks Vulnerabilities Web Security DNS redirect iFrame route

Rotating Iframe URLs – One a Minute

Earlier this week, Sucuri wrote about auto generated iframes in hacked WordPress blogs. The malicious PHP code fetched the iframe URLs from a remote server (hxxp://82 .200 .204 .151/config.inc.php) on-the-fly every time someone loaded infected web pages. This trick helped regularly update the malicious URLs without having to change the code on each hacked si
Publish At:2014-08-15 20:40 | Read:7589 | Comments:0 | Tags:Website exploits htaccess iframe Joomla nginx redirects Unit

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud