Zero-day exploit protection from Invincea

Teardown of malware infection via a popular website (or specifically a malicious ad served on speedtest.net): Java exploit, command prompt with root to download and install corrupted DLLs. 

“The exploit analysis shows that potentially a large number of users were exposed to a Java-based exploit temporarily hosted by speedtest.net. Indicators show the exploit implemented by injected Javascript and used the “g01pack” exploit kit likely compromised speedtest.net as part of a malvertising campaign. The exploit used a number of tactics and techniques to evade detection while exploiting the commonly vulnerable Java software plug-in. Speedtest.net is a popular site widely used to test network connection speeds. The exploit shows that legitimate sites pose risks to online users who browse without protection.” 

Zero-day exploit protection from Invincea…killing advanced persistent threats in their tracks | Invincea

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s