[ad] There’s been a lot of controversy with China recently, a lot of which we have documented here. With the Aurora attacks targeting Google too and the attack code originating from China Google stopped censoring it’s Google.cn search engine and is now almost certainly pulling out of China. The latest report from the financial times […]
Archives for 2010
Vicnum – Lightweight Vulnerable Web Application
[ad] Vicnum is a flexible and vulnerable web application which demonstrates common web security problems such as cross site scripting, sql injections, and session management issues. The program is especially useful to IT auditors honing web security skills and setting up ‘capture the flag’ type exercises. Being a small web application with no complex framework […]
Zeus-related Botnet Servers Taken Offline
[ad] We wrote about Zeus a while back, a nasty trojan which can evade detection by Anti-virus software and is ranked as the number 1 trojan infector by numbers. About a week ok a massive sting operation took down large parts of the Mariposa botnet in Spain and the USA and the latest news is […]
WebRaider – Automated Web Application Exploitation Tool
[ad] WebRaider is a plugin based automated web application exploitation tool which focuses to get a shell from multiple targets or injection point Idea of this attack is very simple. Getting a reverse shell from an SQL Injection with one request without using an extra channel such as TFTP, FTP to upload the initial payload. […]
Energizer Duo USB Battery Charger Software Has Backdoor Trojan
[ad] There has been a number of interested stories lately especially related to hardware, the latest doing the rounds is this one where a seemingly innocuous USB battery charger has been installing some nasty remote control software onto users systems. The charger at fault is the Energizer Duo USB Battery Charger, you’re only at risk […]