Forum latest

Honeynet Project: Attackers Know Where You Live
Written by Daniel   
Thursday, 08 November 2007 09:46
Bad guys find ways to make Web exploits more efficient, targeted, and lucrative, new report says
NOVEMBER 7, 2007 | 5:59 PM
By Kelly Jackson Higgins
Senior Editor, Dark Reading

The bad guys behind malicious Websites are starting to apply geographic intelligence to better target and make money from their victims, according to a soon-to-be released report by the Honeynet Project.

Honeynet researchers studied three popular Web exploitation kits -- WebAttacker, MPack, and IcePack -- and found that some attackers are using a feature in MPack called "geolocation-dependent triggering," which makes it possible for malware to pick up geographic clues and to infect only the users from a certain country or region.

What scares Honeynet researchers is that this feature could easily be used to avoid specific networks, such as those of known antivirus companies or research firms, making it harder for the good guys to discover the malware.... Comment in the forums
Don't Click Here Don't Click Here Either