SpiderLabs Blog

Ransomware Author 3's Farm Animals

As security researchers, our virtual journey in revealing new threats on the web is never-ending. ...

Microsoft Patch Tuesday, April 2013

This month we have nine bulletins, two critical covering just fourteen CVEs. The critical bulletins ...

SpiderLabs Radio April 5, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue covers Carberp, WarZ, Japan, Exp0sed ...

ModSecurity User Survey 2013

The ModSecurity web application firewall project has grown a lot in the past year including, ...

Web Application Defender's Cookbook: CCDC Blue Team Cheatsheet

Trustwave is a corporate sponsor of the National Collegiate Cyber Defense Competition (CCDC) where ...

Microsoft Advance Notification for April 2013

Ah, April, for most of us the weather is turning warm, birds return to their trees, flowers start ...

Jamming With WordPress Sessions

Let's talk about some targeted attacks where session management can be targeted to side step multi ...

Breaking the Authentication Chain

This little post is going to talk about how authentication goes beyond just usernames and passwords.

SpiderLabs Radio March 29, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue covers OMG DDoS Nukes Take out Net!, ...

Cracking IKE Mission:Improbable (Part 1)

All too often during pen tests I still find VPN endpoints configured to allow insecure Aggressive ...

Hooked on Packets: Reading PCAPs for D Students - Preview

SOURCE Boston is coming up in April, and Mike Ryan and I are giving a presentation about making ...

Did Grum Really Get Killed?

For several years before July 2012 takedown, Grum was one of the notorious spam botnets and at one ...

SpiderLabs Radio March 22, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue covers Korea, teamSpy, Scan all the ...

Baiting Attack Exercise – The Old School Way Still Works

In the past few months, we have had quite a few social engineering and client-side penetration ...

Mongodb - Security Weaknesses in a typical NoSQL database

Over the last year or so, I've noticed 2 ports appearing more frequently during internal ...

SpiderLabs Radio March 15, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue covers China, celebs breached, NVD ...

Fresh Coffee Served by CoolEK

As you may already know, the past few months have been problematic to Oracle when it comes to ...

Mimicking Attackers: Building Malware for CCDC

This past weekend my fellow coworkers/friends and myself had the opportunity and the privilege to ...

Microsoft Patch Tuesday, March 2013 – Happy St. Patch-rick's Day!

Saint Patrick's day is quickly becoming Saint Patrick's week. Some cities have scheduled their ...

SpiderLabs Radio March 8, 2013 w/ Space Rogue

This week's episode of SpiderLabs Radio hosted by Space Rogue covers Pwn2own, Chrome free, ...

Microsoft Advance Notification for March 2013

First the raw numbers; we have seven bulletins this month, four critical, and three important. ...

Upcoming Webinars: 2013 Trustwave Global Security Report Threat Trends

A few weeks ago we released the 2013 Trustwave Global Security Report. This year, Trustwave ...

OS Image Wrangling

On most PenTests, alot of research goes into the things you find along the way. You find obscure ...

My 2013 RSA Conference Keynote the Jimmy Kimmel Influence

The Life Cycle of Web Server Botnet Recruitment

This blog post is an excerpt taken from the recently released Global Security Report (GSR) for 2013.

Kelihos is Dead… No wait… Long Live Kelihos! Again!

This post is inspired by a news article which highlighted a recent presentation at RSA. Kelihos, ...

You Injected What? Where?

While harder to detect, there are still some instances of websites exploitable via partially blind ...

'Cyber' Security - must become a board level issue in the UK ...really?

The UK Government is "committed to helpingreduce vulnerability to attacks and ensure that the UK is ...