SpiderLabs Radio for the week of December 1, 2014
In this episode:
Read MoreMicrosoft Advance Notification for December 2014
Microsoft will publish the last scheduled security release of the year on Tuesday, December 9th. ...
Read MoreSpiderLabs Radio for the week of November 24, 2014
SpiderLabs Radio is taking a hiatus this week to celebrate the Thanksgiving holiday. We give thanks ...
Read MoreModSecurity Advanced Topic of the Week: Detecting Malware with Fuzzy Hashing
We witnessed a sophisticated phishing campaign on 16th August 2017, targeting victims by sending ...
Read MoreMagnitude Exploit Kit Backend Infrastructure Insight - Part II
Welcome back to another edition of "exposing Magnitude exploit-kit internals"! As already mentioned ...
Read MoreMicrosoft Patch Tuesday, November 2014
Compared to previous Microsoft Patch Tuesday's, November's is a pretty big one clocking in at 14 ...
Read MoreMicrosoft Advance Notification for November 2014
This coming Tuesday, November 11, Microsoft will publish their next security update. With sixteen ...
Read MoreSmuggler - An interactive 802.11 wireless shell without the need for authentication or association
I've always been fascinated by wireless communications. The ability to launch seemingly invisible ...
Read MoreSetting HoneyTraps with ModSecurity: Adding Fake Cookies
This blog post continues with the topic of setting "HoneyTraps" within your web applications to ...
Read MoreBitcoin Transaction Malleability Theory in Practice – Ruxcon Australia 2014
Two weeks ago we gave a talk at the Ruxcon 10 conference in Melbourne, Australia titled "Bitcoin ...
Read MoreReflected File Download - A New Web Attack Vector
PLEASE NOTE: As promised, I've published a full white paper that is now available for download: ...
Read MoreHacking a Reporter: UK Edition
Over the summer, a U.K. journalist asked the Trustwave SpiderLabs team to target her with an online ...
Read MorePowerpoint Vulnerability (CVE-2014-4114) used in Malicious Spam
Following last week's announcement of a zero-day vulnerability for PowerPoint (CVE-2014-4114), we ...
Read MoreSpam Campaign Taking Advantage of Ebola Scare May Lead To Malware Infections
Cybercriminals have inevitably taken advantage of the publicization of the Ebola virus in the news ...
Read MoreSpiderLabs Radio: October 16, 2014
In this episode we'll be talking about the zero days patched by Microsoft's Patch Tuesday as well ...
Read MoreJailbreak Detection Methods
This post concludes our three-part series about mobile security. Today's post will outline some ...
Read MoreMicrosoft Patch Tuesday, October 2014
Today is the October Microsoft Patch Tuesday, and it addresses eight separate bulletins. Three ...
Read MoreExploring and Exploiting iOS Web Browsers
Today we begin a three-post series about mobile security. We start with a discussion of ...
Read MoreExecuting Apps on Jailbroken Devices
This post is part two of a three-part series about mobile security. Today's post will discuss the ...
Read MoreMicrosoft Advance Notification for October 2014
On Tuesday, October 14, Microsoft will publish their newest security update. This patch Tuesday ...
Read MoreShellshock a Week Later: What We Have Seen
Trustwave, like most other information security firms, has been busy investigating the ShellShock ...
Read More