A new bot family was found in the wild around April this year. This family was named “Avzhan.” Avzhan malware, detected by Trend Micro as Mal_Scar-1, mostly affected Asia where most of the affected users resided. Avzhan bots install themselves onto the Windows system directory using the file name {six random lower-case letters}.exe. After [...]
|
||||||
|
Several weeks ago a new Adobe Acrobat/Reader zero-day vulnerability was found and soon exploited in the wild. What’s most interesting about this particular exploit is how it used Return-Oriented-Exploitation (ROP) techniques to bypass some of Window’s security features, such as Data Execution Prevention (DEP). In addition, it uses two-staged shellcode to perform its routine: [...] This blog discusses our analysis of the recent Adobe Flash zero-day vulnerability. Trend Micro received a sample Shockwave Flash (.SWF) file that exploited this 0-day vulnerability. Since the original blog post was posted, we have been analyzing this sample to determine how the exploit works. Static Analysis Let’s call the sample .SWF file exploit.swf. [...] You know that something has become mainstream when people have a lot to say about it. Just like any activity, online gaming has had its share of caveats. For instance, a man from Hawaii sued an online game publisher, for allegedly causing him to lose 20,000 hours of his life. You see, the majority of [...] As I write this, there are some rather unusual trending topics on Twitter, including: XSS OnMouseOver MouseOver Exploit Security Flaw Searching for any of the said topics in Twitter should make what is going on immediately obvious. Essentially, there is a flaw in Twitter that allows the injection of JavaScript code into a Tweet. How [...] |
||||||
|
Copyright © 2012 Spyware Security - All Rights Reserved |
||||||