1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Widespread exploit kit, password stealer and ransomware program mixed into dangerous cocktail

Discussion in 'Network World' started by RSS, Dec 4, 2015.

  1. RSS

    RSS New Member Member

    An ongoing attack campaign combines a very effective password stealer, the most widespread exploit kit, called Angler, and the latest version of the infamous CryptoWall file-encrypting ransomware program.

    The attackers first use the Pony computer Trojan to pilfer passwords from compromised computers, including FTP and SSH credentials that webmasters use to administer websites, according to researchers from Heimdal Security.

    The stolen credentials are then used to inject malicious code into legitimate websites with the goal of redirecting their visitors to an installation of the Angler exploit kit. This is a Web-based attack tool that includes exploits for various vulnerabilities in Windows and browser plug-ins, such as Flash Player and Java.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page