ZDNet

Oracle DB rootkit for sale in exploit pack

A vulnerability research company in Argentina has fitted an Oracle database rootkit into its zero-day exploit pack, adding a stealthy new danger to enterprise systems. The rootkit, which is available ...
Threat Post

New ‘Nice Pack’ Exploit Kit Found, Thousands of Owned Sites Redirecting Users to Attack Site

A new exploit pack has appeared on the scene in the last week or so and it already is causing trouble for users, with thousands of compromised Web sites redirecting users to a page that is hosting the ...
Forbes

Want Some Nuclear Power Plant 'Zero-Day' Vulnerabilities? Yours For Just $8,000

How much would a government be willing to pay for hacking tools designed to exploit the systems that control oil, gas and water plants? In many cases, they needn't pay much at all. Whilst weaknesses ...
Searchenginejournal.com

All in One SEO Pack Vulnerability – New Exploit

Researchers discovered a type of issue that is called a cross site scripting vulnerability (XSS). It can generally involve a compromised input interface. So anywhere that a user can input and upload ...
CSOonline

Cybercriminals add new exploit for patched Java vulnerability to their arsenal

Cybercriminals were quick to integrate a newly released exploit for a Java vulnerability patched in June into a tool used to launch mass attacks against users, an independent malware researcher warned ...
Krebs on Security

Tag Archives: Dragon Pack

In October, I showed why Java vulnerabilities continue to be the top moneymaker for purveyors of “exploit kits,” commercial crimeware designed to be stitched into hacked or malicious sites and exploit ...