SpiderLabs Blog

SpiderLabs Threat Intelligence Program

So a lot of people have been asking me "What do you do at Trustwave?" and I tell them I am the ...

[Honeypot Alert] phpMyAdmin Code Injection Attacks for Botnet Recruitment

Our web honeypots picked up the following attacks today:

#TWContest: And the winner of the @Trustwave @SpiderLabs 2012 Global Security Report contest is...

Here is a summary of the questions and answers:

#TWContest: One in how many organizations use insecure remote access...

The question was… "One in how many organizations use insecure remote access solutions as seen ...

Call for Assistance: OWASP Virtual Patching Survey

Identification of web application vulnerabilities is only half the battle with remediation efforts ...

#TWContest: The two main motivations for web-based attacks are...

On Thursday we posted our sixth question of the Trustwave 2012 Global Security Report Twitter ...

Trustwave SpiderLabs: My First Nine Days

So as some of you may have heard I now work at Trustwave for their SpiderLabs group headed up by ...

#TWContest: The correct data aggregation technique is...

On Tuesday we posted our fifth question of the Trustwave 2012 Global Security Report Twitter ...

Patch Tuesday, Feb 2012: What I did this Valentine's Day

Top Ten Web Protection Techniques of 2011

Top Ten Web Hacking Techniques of 2011 Every year the web security community votes on the top web ...

#TWContest: The top 'origin' of attack is...

The question was… "What was the top "origin" of attack as seen through Trustwave SpiderLabs ...

Common Attack Methodologies Identified in European Customers

As you may have heard, Trustwave SpiderLabs released our Global Security Report (GSR) 2012 Report, ...

#TWContest: The 7th most popular password is...

On Friday we posted our third question of the Trustwave 2012 Global Security Report Twitter ...

#TWContest: The industry that ranked third is...

On Thursday we posted our second question of the Trustwave 2012 Global Security Report Twitter ...

#TWContest: 1 out of every ~800 devices on the Internet is vulnerable to…

On Tuesday we posted our first question of the Trustwave 2012 Global Security Report Twitter ...

WASC Distributed Web Honeypots Project Update

As the WASC Distributed Web Honeypots Project Sponsor, we are excited to announce that we have ...

[Honeypot Alert] Status Report for January 2012

Monthly Web Honeypot Status Report We have received a tremendous amount of positive feedback on our ...

Clarifying The Trustwave CA Policy Update

We've seen a number of comments and questions on Twitter regarding a recent Trustwave CA Policy ...

Death to PDF!

SpiderLabs customers are frustrated with PDF reports:

Island Hopping the SpiderLabs Way

More and more, I find myself having to fight with highly segmented networks and ACL's. As a ...

HOIC DDoS Analysis and Detection

In a previous blog post, we provided details of a DDoS attack tool called LOIC (Low Orbit Ion ...

Cuckoo for Cuckoo Box

Cuckoo Sandbox is an automated, open source, malware analysis system that started as a Google ...

TWSL2012-002: Multiple Vulnerabilities in WordPress

Trustwave SpiderLabs has published a new advisory today for multiple vulnerabilities discovered in ...

On Null Byte Poisoning and XPath Injection

Recently I released a tool called XMLmao, a configurable testbed for learning to exploit XPath ...

[Honeypot Alert] Simple Page Options Module for Joomla! Local File Inclusion Attack Detected

Our web honeypots generated the following ModSecurity alert today:

Android IRC Bot - This Ain't Your Granny's Android Malware (Or Maybe It Is)

As I'm sure many of you know, the rise of mobile-based malware has been on the rise for some time ...

[Honeypot Alert] phpMyAdmin Superglobal Session Manipulation Attack Detected

Our web honeypots have identified attempts to exploit CVE-2011-2505. OSVDB lists the vulnerabilty ...

[Honeypot Alert] Is-human Wordpress Plugin Remote Command Execution Attack Detected

Our web honeypot logs picked up an attack aimed at exploiting the Is-human Wordpress Plugin Remote ...