Department of Labor Watering Hole Campaign Review | Eric Romang Blog
On April 30th, the watering hole campaign was published on a private mailing list and the May 1st, Invicia and AlienVault publicly reported, with technical details, that United States Department of Labor (DOL) Site Exposure Matrices (SEM) website had been compromised and was hosting malicious code. This malicious code was used in watering hole attack targeting at first employees of US Dept of Ener
Dark South Korea and Discovered PuTTY Tools Behaviours | Eric Romang Blog
By analyzing one of the Dark South Korea dropper, I discovered interesting behaviours associated with the PuTTY binaries installed in “%TMP%” Windows folder. These behaviours could be considered as expected, but they could be used more efficiently in the future. The two installed binaries are “alg.exe“ and “conime.exe“ used to upload “~pr1.tmp” bash file to *NIX targets discovered in configuration
When a Signed Java JAR file is not Proof of Trust | Eric Romang Blog
Today, Malware Domain List, reported strange behaviours regarding a Java app executed with the latest version of Java 6. Java 0day ? http://t.co/0G7mOdY4l5 Machine is running latest 1.6 JRE. Source: http://t.co/DTGrrZl3wC — Malware Domain List (@_MDL_) March 4, 2013 As you can observe, VirusTotal didn’t find something wrong (0/46) regarding the Java app, but after few hours, some analysis and some
Oracle Java 0day and the Myth of a Targeted Attack | Eric Romang Blog
FireEye (@fireeye) were the first to speak around the Oracle Java 0day in a nice blog post “Zero-Day Season is Not Over Yet“. As they mentioned in the blog post it was just a matter of time that a PoC will be released. The tweet was dated from 9:26 PM – 26 August, 2012. https://twitter.com/FireEye/status/239806161874993152 @jduck member of Metasploit team had sufficient information’s contained in
1
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
Facebook, Apple & Twitter Watering Hole Attack Additional Informations | Eric Romang Blog