This is a pretty interesting story, and an interesting use (or mis-use) of cloud resources. We’ve covered similar stuff before like the case when Yahoo! was Spreading Bitcoin Mining Botnet Malware Via Ads, and then more recently when the Pirated ‘Watch Dogs’ Game Made A Bitcoin Mining Botnet. But this time it’s not malware based, […]
Archives for August 2014
ParanoiDF – PDF Analysis & Password Cracking Tool
ParanoiDF is a PDF Analysis Suite based on PeePDF by Jose Miguel Esparza. The tools/features that have been added are – Password cracking, redaction recovery, DRM removal, malicious JavaScript extraction, and more. We have posted about a few PDF related tools before, including the one this tool is based on: – peepdf – Analyze & […]
XML Quadratic Blowup Attack Blows Up WordPress & Drupal
This was a pretty interesting piece of news for me last week as I was actually affected by it (I think?). It’s an XML Quadratic Blowup Attack that affects both WordPress and Drupal and is quite serious as rather than just crashing the software, it can take down the whole server. It didn’t completely take […]
HoneyDrive 3 Released – New Honeypot Download Distro ISO
A new version of HoneyDrive has been released codenamed Royal Jelly which is HoneyDrive 3 the greatest Honeypot download out there, Honeypots in a box is a great concept if you want to deploy a honeypot quickly without too much hassle. HoneyDrive is a fairly comprehensive Linux distro based which allows you to quickly download […]
Windows Registry Infecting Malware Has NO Files
This is a pretty interesting use of the Windows Registry and reminds me a little of the transient drive-by malware used last year against Internet Explorer that left no files either – Another IE 0-Day Hole Found & Used By In-Memory Drive By Attacks. The main difference being, that wasn’t persistent and as it lived […]