Spam Triple Threat: Voice Message, Important System Update, and DHL Delivery spam campaign.

This week we discovered a large malware spam campaign that used the Zbot Trojan executable. It ...

Read More

Vulnerability in RiskNet Acquirer (TWSL2013-031)

Last week we released an advisory for a vulnerability discovered in the RiskNet Acquirer ...

Read More

Malicious shells; Established != Active

During a recent investigation, SpiderLabs was presented with evidence that appeared to be ...

Read More

Tutorial for NTDS goodness (VSSADMIN, WMIS, NTDS.dit, SYSTEM)

I recently performed an internal penetration test where the NTDS.dit file got me thousands of ...

Read More

SpiderLabs Radio November 15, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...

Read More

Trustwave SpiderLabs at OWASP’s AppSec USA 2013

Will you be at the OWASP Foundation's AppSec USA event next week in New York City? If so, be sure ...

Read More

Microsoft Patch Tuesday, November 2013

Most of us thought this would be an easymonth with only eight bulletins to deal with and only three ...

Read More

SpiderLabs Radio November 8, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...

Read More

Hacking a Reporter: Writing Malware For Fun and Profit (Part 2 of 3)

Matthew Jakubowski (@jaku) contributed to the writing of this blog post.

Read More

Microsoft Advance Notification for November 2013

Microsoft will release eight bulletins for Patch Tuesday inNovember. Four of them will result in ...

Read More

SpiderLabs Radio November 1, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...

Read More

Hacking a Reporter: Writing Malware For Fun and Profit (Part 1 of 3)

Matthew Jakubowski (@jaku) contributed to the writing of this blog post.

Read More

SpiderLabs Radio October 25, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...

Read More

PHP.Net Site Infected with Malware

Earlier today, users attempting to access the www.php.net site were met with malware warnings from ...

Read More

Card Data Siphon with Google Analytics

The introduction of EMV (Chip &Pin) payment devices in 2003 resulted in a rapid decline in ...

Read More

SpiderLabs Radio October 18, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...

Read More

Fingerprinting Ubuntu OS Versions using OpenSSH

Over the past couples weeks, I've been working on enhancingthe operating system detection logic in ...

Read More

SpiderLabs Radio October 11, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...

Read More

Hiding Webshell Backdoor Code in Image Files

Looks Can Be Deceiving Do any of these pictures look suspicious?

Read More

The Technical Aspects of Exploiting IE Zero-Day CVE-2013-3897

Just two days ago we announced thediscovery of in-the-wild attacks that used the zero-day which is ...

Read More

Having a Fiesta With Ploutus

A short while ago, SafenSoft reported a new family ofmalware, named 'Ploutus', that targeted a ...

Read More

Another Day, SpiderLabs Discovers Another IE Zero-Day

We at SpiderLabs investigate many suspicious webpages on adaily basis. Occasionally we run ...

Read More

Microsoft Patch Tuesday, October 2013

Here in Philadelphia this month the localweather people are calling it "Aug-tober" due to the ...

Read More

AV Vendors Targeted in Defacement Campaign

Attacked Sites The KDMS hacking team recently defaced several popular websites include Whatsapp.com ...

Read More

Microsoft Advance Notification for October 2013

It is on a monthly schedule but for some reason Microsoft's Patch Tuesday sneaks up on me every ...

Read More

SpiderLabs Radio October 4, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you by Trustwave ...

Read More

Installing VMware Tools on Kali Linux and Some Debugging Basics

I have been using Backtrack for a while now and decided to switch to Kali Linux, a new open source ...

Read More

TWSL2013-029: Information Disclosure Vulnerability in QNAP Photo Station

Photo Station, a web application, allows users to upload and share photos over the Internet using a ...

Read More