SpiderLabs Blog
Explore the latest threats, critical vulnerability disclosures, cutting-edge research, and intelligence from our elite global threat experts.
[Honeypot Alert] Fritz!Box – Remote Command Execution Exploit Attempt
May 26, 2015
Our web honeypots picked up some exploit attempts for a remote command ...
SpiderLabs Radio for the Week of May 11, 2015
May 15, 2015
In this week's episode:
AppDetectivePRO and DbProtect Knowledgebase Update 4.49
May 12, 2015 | SpiderLabs Researcher
This month's update for our AppDetectivePRO and DbProtect Knowledgebase is now ...
Microsoft Patch Tuesday, May 2015
May 12, 2015
May's Patch Tuesday is upon us and with it comes three Critical and eleven ...
SpiderLabs Radio for the Week of May 4, 2015
May 08, 2015
SpiderLabs Radio will be on hiatus this week so our host can catch up on the ...
SpiderLabs Radio for the Week of April 27, 2015
May 01, 2015
In this week`s episode:
Bedep trojan malware spread by the Angler exploit kit gets political
April 30, 2015 | Rami Kogan
We recently observed what seems to be a group of cybercriminals helping spread ...
SAP Adaptive Server Enterprise Vulnerabilities discussed @RSAC
April 28, 2015
Last week I gave a talk at RSA USA 2015 on SAP Adaptive Server Enterprise ...
Open Challenge: Ruby YAML.load(YOUR_STRING_HERE) == RCE?
April 27, 2015 | Jonathan Claudius
For some, the challenge may already be quite clear by the title of this post, ...
SpiderLabs Radio for the Week of April 20, 2015
April 26, 2015
In this week's episode it's all things RSA Conference. I'll be discussing two ...
CVE-2014-6284 - 'Probe' login access vulnerability in SAP ASE
April 23, 2015
The SpiderLabs team at Trustwave published a new advisory today which details ...
Cryptowall and phishing delivered through JavaScript Attachments
April 20, 2015 | Brian Bebeau
While most emails with malicious attachments seem to be zipped Windows ...
SpiderLabs Radio for the Week of April 13, 2015
April 17, 2015
In this week's episode:
New POS Malware Emerges - Punkey
April 15, 2015 | Eric Merritt
During a recent United States Secret Service investigation, Trustwave ...
Microsoft Patch Tuesday, April 2015
April 14, 2015
April's Microsoft Patch Tuesday has arrived with 11 bulletins including four ...
SpiderLabs Radio for the Week of February 2, 2015
April 09, 2015
In this week's episode:
SpiderLabs Radio for the Week of March 30, 2015
April 06, 2015
In this week's episode:
OWASP/WASC Distributed Web Honeypots Project Re-Launch - Seeking Participants
March 31, 2015 | Ryan Barnett
The SpiderLabs Research Team is proud to announce that we are officially ...
WebLogic SSRF And XSS (CVE-2014-4241, CVE-2014-4210, CVE-2014-4242)
March 30, 2015 | Toby Clarke
CVE-2014-4241, CVE-2014-4210, and CVE-2014-4242: Server-Side Request Forgery ...
SpiderLabs Radio for the Week of March 23, 2015
March 30, 2015
In this week's episode:
SpiderLabs Radio for the Week of March 16, 2015
March 22, 2015
In this week's episode:
Drupal Compromise Analysis Including Indicators of Compromise
March 20, 2015 | Ryan Barnett
I would like to thank fellow SpiderLabs Researcher Chaim Sanders and Dennis ...
About SAP security notice 2113333
March 20, 2015
SAP published security notice 2113333 "Multiple SQL injection vulnerabilities ...
TrustKeeper Scan Engine Update – March 18, 2015
March 18, 2015 | Jonathan Claudius
The latest update to the TrustKeeper scan engine that powers our Trustwave ...
SpiderLabs Radio for the Week of March 9, 2015
March 16, 2015
In this week's episode:
Dumping LSA Secrets on NT5 x64
March 11, 2015 | Sebastien Macke
The Bug On the x64 version of Windows 2003 or XP (kernel 5.2), almost every ...
Microsoft Patch Tuesday, March 2015
March 10, 2015
March comes in like a lion this Microsoft Patch Tuesday with 14 bulletins ...
SpiderLabs Radio for the Week of March 2, 2015
March 09, 2015
In this week's episode: