Spam Triple Threat: Voice Message, Important System Update, and DHL Delivery spam campaign.
This week we discovered a large malware spam campaign that used the Zbot Trojan executable. It ...
Read More
Vulnerability in RiskNet Acquirer (TWSL2013-031)
Last week we released an advisory for a vulnerability discovered in the RiskNet Acquirer ...
Read MoreMalicious shells; Established != Active
During a recent investigation, SpiderLabs was presented with evidence that appeared to be ...
Read MoreTutorial for NTDS goodness (VSSADMIN, WMIS, NTDS.dit, SYSTEM)
I recently performed an internal penetration test where the NTDS.dit file got me thousands of ...
Read MoreSpiderLabs Radio November 15, 2013 w/ Space Rogue
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...
Read MoreTrustwave SpiderLabs at OWASP’s AppSec USA 2013
Will you be at the OWASP Foundation's AppSec USA event next week in New York City? If so, be sure ...
Read MoreMicrosoft Patch Tuesday, November 2013
Most of us thought this would be an easymonth with only eight bulletins to deal with and only three ...
Read MoreSpiderLabs Radio November 8, 2013 w/ Space Rogue
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...
Read MoreHacking a Reporter: Writing Malware For Fun and Profit (Part 2 of 3)
Matthew Jakubowski (@jaku) contributed to the writing of this blog post.
Read MoreMicrosoft Advance Notification for November 2013
Microsoft will release eight bulletins for Patch Tuesday inNovember. Four of them will result in ...
Read MoreSpiderLabs Radio November 1, 2013 w/ Space Rogue
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...
Read MoreHacking a Reporter: Writing Malware For Fun and Profit (Part 1 of 3)
Matthew Jakubowski (@jaku) contributed to the writing of this blog post.
Read MoreSpiderLabs Radio October 25, 2013 w/ Space Rogue
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...
Read MorePHP.Net Site Infected with Malware
Earlier today, users attempting to access the www.php.net site were met with malware warnings from ...
Read MoreCard Data Siphon with Google Analytics
The introduction of EMV (Chip &Pin) payment devices in 2003 resulted in a rapid decline in ...
Read MoreSpiderLabs Radio October 18, 2013 w/ Space Rogue
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...
Read MoreFingerprinting Ubuntu OS Versions using OpenSSH
Over the past couples weeks, I've been working on enhancingthe operating system detection logic in ...
Read MoreSpiderLabs Radio October 11, 2013 w/ Space Rogue
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...
Read MoreHiding Webshell Backdoor Code in Image Files
Looks Can Be Deceiving Do any of these pictures look suspicious?
Read MoreThe Technical Aspects of Exploiting IE Zero-Day CVE-2013-3897
Just two days ago we announced thediscovery of in-the-wild attacks that used the zero-day which is ...
Read MoreHaving a Fiesta With Ploutus
A short while ago, SafenSoft reported a new family ofmalware, named 'Ploutus', that targeted a ...
Read MoreAnother Day, SpiderLabs Discovers Another IE Zero-Day
We at SpiderLabs investigate many suspicious webpages on adaily basis. Occasionally we run ...
Read MoreMicrosoft Patch Tuesday, October 2013
Here in Philadelphia this month the localweather people are calling it "Aug-tober" due to the ...
Read MoreAV Vendors Targeted in Defacement Campaign
Attacked Sites The KDMS hacking team recently defaced several popular websites include Whatsapp.com ...
Read MoreMicrosoft Advance Notification for October 2013
It is on a monthly schedule but for some reason Microsoft's Patch Tuesday sneaks up on me every ...
Read MoreSpiderLabs Radio October 4, 2013 w/ Space Rogue
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...
Read MoreInstalling VMware Tools on Kali Linux and Some Debugging Basics
I have been using Backtrack for a while now and decided to switch to Kali Linux, a new open source ...
Read MoreTWSL2013-029: Information Disclosure Vulnerability in QNAP Photo Station
Photo Station, a web application, allows users to upload and share photos over the Internet using a ...
Read More