A study conducted by RSA on the RIG exploit kit has not only led to a better understanding of how the exploit kit operates, but resulted in finding and shutting down thousands of shadow domain sources.
A malicious campaign has been leveraging a newly discovered social engineering toolkit to distribute a wide range of phony web page overlays, seemingly generating at least 100,000 page views in the just the past few weeks. The toolkit, dubbed Domen, uses a cleverly written client-side script (“template.js”) to deliver these fraudulent overlays, which are loaded…
Exploit kits didn't completely hibernate over the winter, but they didn't show much signs of life either, with no major changes to their features and a relatively low infection volume compared to malicious spam, according to Malwarebytes.
The long-lived ElTest malware campaign that infects victims through compromised websites evolved once again in the last quarter of 2016, ending its use of exploit kit gates and obfuscation, according to researchers with Palo Alto Networks' Unit 42 threat research team.