Blackhole exploit: Compromised sites

Discussions of all Adware-Spyware-Malware related topics to include all security products users may have concerns with.

Moderators: Admin Team, Moderators

User avatar
MysteryFCM
Site Admin
Site Admin
Posts: 3721
Joined: Sun May 15, 2005 12:42 pm
Location: Newcastle, UK
Contact:

Blackhole exploit: Compromised sites

Postby MysteryFCM » Tue Oct 02, 2012 7:49 am

Looking at a recent case of a compromised site, I noticed something rather surprising - they're not even bothering to try and make the code difficult to decode. I'm pondering of course, the thought that this is deliberate, due to the changes in v2.0 of the Blackhole exploit (others have already written about that [1] [2], so won't go into that here), but even if this is the case, the choice of using far less complex code on compromised sites, is puzzling to say the least.


Read more
http://hphosts.blogspot.co.uk/2012/10/b ... sites.html
Regards

Steven Burn
I.T. Mate / hpHosts
it-mate.co.uk / hosts-file.net

Keeping it FREE!

Return to “Countermeasures Discussions\News”

Who is online

Users browsing this forum: No registered users and 3 guests