Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'FireEye Research' | www.SecurityPhresh.com
Security News from 'FireEye Research'
Showing 'Security News from 'FireEye Research'' from 31 to 40
Exploit Proliferation: Additional Threat Groups Acquire CVE-2013-3906
26th Jan 2018 [4 months ago] from FireEye Research
Last week, we bloggedabout a zero-day vulnerability (CVE-2013-3906) that was being used byat least two different threat groups. Although it was the sameexploit, the two groups deployed it differently and dropped verydifferent payloads....
Dissecting Android KorBanker
26th Jan 2018 [4 months ago] from FireEye Research
FireEye recentlyidentified a malicious mobile application that installs a fake bankingapplication capable of stealing user credentials. The top-level appacts as a bogus Google Play application, falsely assuring the userthat it is benign.FireEye...
Update: Ad Vulna Continues
26th Jan 2018 [4 months ago] from FireEye Research
This is an update to our earlier blog “AdVulna: A Vulnaggressive (Vulnerable Aggressive) AdwareThreatening Millions”. Since our last notification to Google and Ad Vulna (code name foranonymity), we have noticed a number of changes...
Evasive Tactics: Terminator RAT
26th Jan 2018 [4 months ago] from FireEye Research
FireEye Labs hasbeen tracking a variety of advanced persistent threat (APT) actorsthat have been slightly changing their tools, techniques, andprocedures (TTPs) in order to evade network defenses. Earlier, wedocumented changes to Taidoor,a...
Another Darkleech Campaign
26th Jan 2018 [4 months ago] from FireEye Research
Last week got us up close and personal with Darkleech and Blackholewith our external careers web site.The fun didn’t end there, this week we saw a tidal wave of Darkleechactivity linked to a large-scale malvertisingcampaign identified...
ASLR Bypass Apocalypse In Recent Zero-Day Exploits
26th Jan 2018 [4 months ago] from FireEye Research
ASLR (Address Space Layout Randomization) is one of the mosteffective protection mechanisms in modern operation systems. But it’snot perfect. Many recent APT attacks have used innovative techniquesto bypass ASLR.Here are just a few interesting...
Ad Vulna: A Vulnaggressive (Vulnerable & Aggressive) Adware Threatening Millions
26th Jan 2018 [4 months ago] from FireEye Research
FireEye researchers have discovered a rapidly-growing class ofmobile threats represented by a popular ad library affecting appswith over 200 million downloads in total. This ad library,anonymized as Vulna, is aggressive at collectingsensitive...
Technical Analysis Of CVE-2013-3147
26th Jan 2018 [4 months ago] from FireEye Research
In July, Microsoft released a patch fora memory-corruption vulnerability in the Internet Explorer (IE) Webbrowser. The vulnerability enabled remote attackers to executearbitrary code or cause a denial of service through a crafted orcompromised...
Operation DeputyDog: Zero-Day (CVE-2013-3893) Attack Against Japanese Targets
26th Jan 2018 [4 months ago] from FireEye Research
FireEye hasdiscovered a campaign leveraging the recently announced zero-dayCVE-2013-3893. This campaign, which we have labeled ‘OperationDeputyDog, began as early as August 19, 2013 and appears to havetargeted organizations in Japan....
Hand Me Downs: Exploit And Infrastructure Reuse Among APT Campaigns
26th Jan 2018 [4 months ago] from FireEye Research
Since we first reported on OperationDeputyDog, at least three other Advanced Persistent Threat(APT) campaigns known as Web2Crew, Taidoor, and th3bug have made useof the same exploit to deliver their own payloads to their owntargets. It...
« Newer 1 2 3 4 5 6 7 8 9 10 Older »