SpiderLabs Blog
Explore the latest threats, critical vulnerability disclosures, cutting-edge research, and intelligence from our elite global threat experts.
Microsoft Patch Tuesday, November 2013
November 12, 2013
Most of us thought this would be an easymonth with only eight bulletins to deal ...
Hacking a Reporter: Writing Malware For Fun and Profit (Part 2 of 3)
November 08, 2013 | Josh Grunzweig
Matthew Jakubowski (@jaku) contributed to the writing of this blog post.
SpiderLabs Radio November 8, 2013 w/ Space Rogue
November 08, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Microsoft Advance Notification for November 2013
November 07, 2013 | Space Rogue
Microsoft will release eight bulletins for Patch Tuesday inNovember. Four of ...
SpiderLabs Radio November 1, 2013 w/ Space Rogue
November 01, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Hacking a Reporter: Writing Malware For Fun and Profit (Part 1 of 3)
October 31, 2013 | Josh Grunzweig
Matthew Jakubowski (@jaku) contributed to the writing of this blog post.
PHP.Net Site Infected with Malware
October 25, 2013 | Ryan Barnett
Earlier today, users attempting to access the www.php.net site were met with ...
SpiderLabs Radio October 25, 2013 w/ Space Rogue
October 25, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
SpiderLabs Radio October 18, 2013 w/ Space Rogue
October 18, 2013 | Space Rogue
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Card Data Siphon with Google Analytics
October 18, 2013 | Richard Wells
The introduction of EMV (Chip &Pin) payment devices in 2003 resulted in a ...
Fingerprinting Ubuntu OS Versions using OpenSSH
October 14, 2013 | Jonathan Claudius
Over the past couples weeks, I've been working on enhancingthe operating system ...
SpiderLabs Radio October 11, 2013 w/ Space Rogue
October 11, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Hiding Webshell Backdoor Code in Image Files
October 11, 2013 | Ryan Barnett
Looks Can Be Deceiving Do any of these pictures look suspicious?
The Technical Aspects of Exploiting IE Zero-Day CVE-2013-3897
October 10, 2013 | Trustwave SpiderLabs
Just two days ago we announced thediscovery of in-the-wild attacks that used ...
Having a Fiesta With Ploutus
October 10, 2013 | Josh Grunzweig
A short while ago, SafenSoft reported a new family ofmalware, named 'Ploutus', ...
AV Vendors Targeted in Defacement Campaign
October 08, 2013 | Ryan Barnett
Attacked Sites The KDMS hacking team recently defaced several popular websites ...
Exploiting Integer Based SQL Injection In Nested SQL Queries
October 08, 2013 | Sasha Zivojinovic
SQL injection involving nested queries and arithmetic evaluation.
Microsoft Patch Tuesday, October 2013
October 08, 2013
Here in Philadelphia this month the localweather people are calling it ...
Another Day, SpiderLabs Discovers Another IE Zero-Day
October 08, 2013
We at SpiderLabs investigate many suspicious webpages on adaily basis. ...
Microsoft Advance Notification for October 2013
October 07, 2013 | Space Rogue
It is on a monthly schedule but for some reason Microsoft's Patch Tuesday ...
SpiderLabs Radio October 4, 2013 w/ Space Rogue
October 04, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
TWSL2013-029: Information Disclosure Vulnerability in QNAP Photo Station
September 30, 2013
Photo Station, a web application, allows users to upload and share photos over ...
Installing VMware Tools on Kali Linux and Some Debugging Basics
September 30, 2013 | Christophe De La Fuente
I have been using Backtrack for a while now and decided to switch to Kali ...
SpiderLabs Radio September 27, 2013 w/ Space Rogue
September 27, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
ModSecurity for Java - BETA Testers Needed
September 27, 2013
Over the course of the summer of 2013, the ModSecurity team participated in ...
Wendel's Small Hacking Tricks - Killing Processes from the Microsoft Windows Command Line interface.
September 25, 2013 | Wendel Guglielmetti Henrique
Since 2003 a large part of my workday has been devoted solely to hacking ...
Is Oracle Application Server End-of-Life?
September 20, 2013
I was asked recently to review a web server running Oracle Application Server. ...
SpiderLabs Radio September 20, 2013 w/ Space Rogue
September 20, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...