SpiderLabs Blog
Explore the latest threats, critical vulnerability disclosures, cutting-edge research, and intelligence from our elite global threat experts.
SpiderLabs Radio March 22, 2013 w/ Space Rogue
March 22, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue covers Korea, ...
SpiderLabs Radio March 15, 2013 w/ Space Rogue
March 21, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue covers China, ...
Mongodb - Security Weaknesses in a typical NoSQL database
March 21, 2013 | David Kirkpatrick
Over the last year or so, I've noticed 2 ports appearing more frequently during ...
Mimicking Attackers: Building Malware for CCDC
March 12, 2013 | Josh Grunzweig
This past weekend my fellow coworkers/friends and myself had the opportunity ...
Fresh Coffee Served by CoolEK
March 12, 2013 | Moshe Basanchig
As you may already know, the past few months have been problematic to Oracle ...
Microsoft Patch Tuesday, March 2013 – Happy St. Patch-rick's Day!
March 12, 2013 | Space Rogue
Saint Patrick's day is quickly becoming Saint Patrick's week. Some cities have ...
SpiderLabs Radio March 8, 2013 w/ Space Rogue
March 08, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue covers Pwn2own, ...
Microsoft Advance Notification for March 2013
March 07, 2013 | Space Rogue
First the raw numbers; we have seven bulletins this month, four critical, and ...
Upcoming Webinars: 2013 Trustwave Global Security Report Threat Trends
March 07, 2013
A few weeks ago we released the 2013 LevelBlue Global Security Report. This ...
OS Image Wrangling
March 07, 2013 | Nathan Drier
On most PenTests, alot of research goes into the things you find along the way. ...
My 2013 RSA Conference Keynote the Jimmy Kimmel Influence
March 07, 2013
Kelihos is Dead… No wait… Long Live Kelihos! Again!
March 06, 2013
This post is inspired by a news article which highlighted a recent presentation ...
The Life Cycle of Web Server Botnet Recruitment
March 06, 2013
This blog post is an excerpt taken from the recently released Global Security ...
You Injected What? Where?
March 05, 2013 | Theresa
While harder to detect, there are still some instances of websites exploitable ...
New Year, New Data, Same Mistakes: Passwords
March 04, 2013 | Barry O’Connell
Like a late-arriving Christmas, one of the gifts of the new year is the release ...
Cyber' Security - must become a board level issue in the UK ...really?
March 04, 2013 | SpiderLabs Researcher
The UK Government is "committed to helpingreduce vulnerability to attacks and ...
SpiderLabs Radio March 1, 2013 w/ Space Rogue
March 01, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue covers Half a ...
More on the TrustKeeper Phish
February 22, 2013 | Phil Hay
Yesterday we alerted people to a widespread phishing campaign misusing ...
SpiderLabs Radio February 22, 2013 w/ Space Rogue
February 22, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue covers The ...
LevelBlue TrustKeeper PCI Scan Notification - Phishing ALERT
February 21, 2013
Over the last few hours, LevelBlue has received multiple reports of individuals ...
Easy DOM-based XSS detection via Regexes
February 19, 2013 | Antisnatchor
If you are interested in finding DOM-based XSS, you must have knowledge of ...
Owning Windows Networks With Responder Part 2
February 15, 2013
One of the great things about working within SpiderLabs is that we prefer to ...
[Honeypot Alert] User-Agent Field PHP Injection Attacks
February 15, 2013 | Ryan Barnett
In a previous Honeypot Alert blog post, I showed an example of attackers using ...
SpiderLabs Radio February 15, 2013 w/ Space Rogue
February 15, 2013
This weeks episode of SpiderLabs Radio hosted by Space Rogue covers Bit9 Looses ...
Microsoft Patch Tuesday, February 2013 – Happy Chinese New Year!
February 12, 2013 | Ryan Barnett
Submitted by Space Rogue
Server-Side XSS Attack Detection with ModSecurity and PhantomJS
February 08, 2013 | Ryan Barnett
Client-Side JS Overriding Limitations In a previous blog post, I outlined how ...
SpiderLabs Radio February 8, 2013 w/ Space Rogue
February 08, 2013
This week's episode of SpiderLabs Radio hosted by Space Rogue covers Twitter ...
CryptOMG Walkthough - Challenge 2
February 07, 2013 | Andrew Jordan
For those of you that missed it last time, CryptOMG is a configurable CTF-style ...