Showing 16 results for: July 2014 ×

Backoff - Technical Analysis

As discussed in the an advisory published by US-CERT, Trustwave SpiderLabs has discovered a previously unidentified family of Point of Sale (PoS) malware. This blog post serves as a technical analysis of the Backoff malware family. While a number of...

TrustKeeper Scan Engine Update – July 29, 2014

Summary The latest update to the TrustKeeper Scan Engine is now available. Highlights of the update include coverage for 15 new vulnerabilities and expanded version coverage for PHP. New Vulnerability Test Highlights Some of the more interesting vulnerability tests we...

DbProtect Update - What's New in Version 6.4.4

We've made a number of improvements to our DbProtect platform with the release of version 6.4.4, which is available now. Enhancements include a new advanced asset search feature, more filtering capabilities for reports and a number of operational system improvements....

TrustKeeper Scan Engine Update – July 22, 2014

Summary The latest update to the TrustKeeper Scan Engine is now available. Highlights of the release include tests for 14 new vulnerabilities. New Vulnerability Test Highlights Some of the more interesting vulnerability tests we added recently are as follows: Cisco...

SpiderLabs Radio: July 17, 2014

In this episode: Vulnerabilites in password managers New Gameover Zeus Malware Kronos Malware Tesla Model S Vulnerabilities Google's Project Zero Network Attacks during World Cup We'd love to hear what you think or what you'd like to hear in future...

TrustKeeper Scan Engine Update – July 14, 2014

Summary The latest update to the TrustKeeper Scan Engine is now available. Highlights of the release include coverage for two new vulnerabilities and improvements in Cisco ASA fingerprint version detection. New Vulnerability Test Highlights Some of the more interesting vulnerability...

SpiderLabs Radio: July 10, 2014

In this episode: Rosetta Flash vulnerability BrutPOS Track2, Russian POS criminal, arrested Smart Lightbulbs leak wifi passwords Office macro malware makes a comeback Fraudulent SSL certificates found impersonating Google, Yahoo Data farmed from used cellphones We'd love to hear what...

Microsoft Patch Tuesday, July 2014

July's Microsoft Patch Tuesday is a light release with two "Critical" bulletins, three "Important" bulletins and one "Moderate" bulletin. Yet again, the majority of the security fixes this month are for Internet Explorer. This marks the sixth Patch Tuesday in...

SpiderLabs Radio: July 3, 2014

In this episode: Apple ships patches for all the things 20 year old LZO bug resurrected New Zeus variant Lite Zeus Dragonfly campaign targets US Energy Microsoft seizes No-IP We'd love to hear what you think or what you'd like...

Microsoft Advance Notification for July 2014

Microsoft will publish their next security patch release on Tuesday, July 8. This seems to be a light release with two "Critical" bulletins, three "Important" bulletins and one "Moderate" bulletin. These bulletins will affect Internet Explorer, Microsoft Server Software and...

TrustKeeper Scan Engine Update - July 1, 2014

Summary The latest update to the TrustKeeper Scan Engine is now available. It adds detection for more than a dozen vulnerabilities, including several recently patched vulnerabilities in ISC BIND, OpenSSL and PHP. New Vulnerability Test Highlights Some of the more...

Analysis of a New Banking Trojan Spammed by Cutwail

The Cutwail spambot has a long history of sending spam with attached malicious files such as Zbot, Blackhole Exploit Kit and Cryptolocker. Another trick in Cutwail’s portfolio is to use links pointing to popular file hosting services. Over the past...