SpiderLabs Blog
Explore the latest threats, critical vulnerability disclosures, cutting-edge research, and intelligence from our elite global threat experts.
Sometimes, The PenTest Gods Shine On You
June 14, 2013 | Nathan Drier
Settling down for a hacking session usually means lots of hard work and a long ...
SpiderLabs Radio June 14, 2013 w/ Space Rogue
June 14, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
TWSL2013-006: Cross-Site Scripting Vulnerability in Coldbox
June 11, 2013 | Robert Foggia
Trustwave SpiderLabs has published a new advisory yesterday fora reflective ...
TWSL2013-007: Multiple Vulnerabilities in VLC Media Player - Web Interface
June 11, 2013
Yesterday, Trustwave SpiderLabs has published an advisory for multiple ...
Microsoft Patch Tuesday, June 2013
June 11, 2013
Finally, patch Tuesday has arrived and fortunately this one will be a real ...
Behind the Phish: Romance Perhaps?
June 10, 2013 | Phil Hay
When I look at the masses of spam we receive on a daily basis, I often wonder ...
[Honeypot Alert] Active Exploits Attempts for Plesk Vulnerability
June 10, 2013 | Ryan Barnett
Last week, hacker "kingcope" provided PoC expliot code for a Plesk 0-day on the ...
SpiderLabs Radio June 7, 2013 w/ Space Rogue
June 07, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
ModSecurity Updates: Nginx Stable Release and Google Summer of Code Participation
June 06, 2013 | Ryan Barnett
Availability of ModSecurity 2.7.4: Nginx Stable Release The ModSecurity ...
Microsoft Advance Notification for June 2013
June 06, 2013 | Space Rogue
So far this year we has had two Patch Tuesday months with seven bulletins ...
The Speed is from the Devil – Some Thoughts about Google’s New Disclosure Policy
June 03, 2013 | Ziv Mador
If you follow info-security news, you might have heard about Google considering ...
Alina: Following The Shadow Part 2
June 03, 2013 | Josh Grunzweig
This will likely be the final blog post in this series on the Alina Point of ...
Under The Hood: Linksys Remote Command Injection Vulnerabilities
May 31, 2013
Several models in the Linksys E-Series WiFi routers running their respective ...
ModSecurity Performance Recommendations
May 31, 2013 | Breno Silva
Sometimes we see ModSecurity users asking about performance in the mail-list. ...
SpiderLabs Radio May 31, 2013 w/ Space Rogue
May 31, 2013
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
SpiderLabs Radio May 24, 2013 w/ Space Rogue
May 24, 2013
This weeks episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Machine Learning Update 1
May 20, 2013 | Ryan Merritt
It has been almost exactly a month since my last post regarding the new project ...
SpiderLabs Radio May 17, 2013 w/ Space Rogue
May 17, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Analysis of Malicious Document Files Spammed by Cutwail
May 15, 2013 | Rodel Mendrez
In our Global Security Report, we highlighted a zero day vulnerability in the ...
Microsoft Patch Tuesday, May 2013
May 14, 2013
I keep hoping for an easy relaxing Patch Tuesday of say, only two or three ...
TWSL2013-002: Multiple XSS Vulnerabilities in The Bug Genie
May 14, 2013
Trustwave SpiderLabs has published a new security advisory for multiple ...
Securing Continuous Integration Services
May 13, 2013 | Jonathan Claudius
Over the last couple weeks, I've had the distinct privilege to share some of my ...
Introducing the Burp Notes Extension
May 10, 2013 | Austin Lane
As a Security Analyst I spend a significant amount of time working in tools ...
5 ways to protect your E-Commerce site
May 10, 2013 | Grayson Lenik
The Trustwave Spiderlabs team frequently responds to E-commerce data breaches. ...
SpiderLabs Radio May 10, 2013 w/ Space Rogue
May 10, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue is brought to you ...
Microsoft Advance Notification for May 2013
May 09, 2013 | Space Rogue
There will be ten bulletins released by Microsoft next Tuesday and one of those ...
Alina: Casting a Shadow on POS
May 08, 2013 | Josh Grunzweig
Over the pastfew months, a number of malware families targeting Point of Sale ...
Mayday! 0-Day
May 05, 2013
While many workers around the world were celebrating the May 1st events, the US ...