Hackers Prepping For New Attacks - InformationWeek
IoT
IoT
Software // Enterprise Applications
News
11/28/2006
01:59 PM
50%
50%
RELATED EVENTS
[Cybersecurity] New Methods for Managing the Skills Shortage
Jun 06, 2017
In this webinar, security experts discuss methods for doing better security with fewer people, inc ...Read More>>

Hackers Prepping For New Attacks

Exploits come in waves followed by periods of quiet. A new wave of attacks is in the works, says Exploit Prevention Labs.

Cybercriminals are laying the foundation for another round of attacks, a security researcher warned Tuesday, but they're keeping their heads down in the meantime.

"The exploit underworld is characterized by manic flurries of activity accompanying new attacks, followed by periods of quiet," said Roger Thompson, Exploit Prevention Labs' chief technology officer, in an e-mail. "Consequently, following their successful [Internet Explorer] VML exploit in September, we believe [they're] now laying the groundwork for a new round of attacks."

Thompson's October exploit survey, a monthly status update of the most prevalent exploits, shows how attackers have settled into a cyclical pattern. "[It's] like a tidal surge that crashes to shore and then slowly ebbs back to sea."

In the survey's top spot was WebAttacker, a multiexploit generator that's bounced around the top of the list for half a year. WebAttacker is just one of several exploit kits sold in the attacker underground, and is frequently updated, said Thompson, to help criminals take advantage of newly discovered vulnerabilities. The most recent WebAttacker update was done in early October, when the kit added support for WebViewFolderIcon setSlice exploit.

WebAttacker accounted for 32% of all exploits detected in October, added Thompson, more than double its September tally of 14%.

Exploit Prevention Labs, a security software developer based in Atlanta, launched a new line of exploit detection tools -- LinkScanner Lite and LinkScanner Pro -- on Monday.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
2017 State of Data and Analytics
Today's companies are differentiating themselves using data analytics, but the journey requires adjustments to people, processes, technology, and culture. 
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of November 6, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll