ICT Security-Sécurité PC et Internet
87.1K views | +1 today
Follow
ICT Security-Sécurité PC et Internet
Education Technology
ICT Security + Privacy + Piracy + Data Protection - Censorship - Des cours et infos gratuites sur la"Sécurité PC et Internet" pour usage non-commercial... (FR, EN+DE)...
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Drive-by Download Attacks: Examining the Web Server Platforms Attackers Use Most Often

Drive-by Download Attacks: Examining the Web Server Platforms Attackers Use Most Often | ICT Security-Sécurité PC et Internet | Scoop.it
From blogs.technet.com - February 17, 2014 3:31 AM

The official Microsoft Security Blog provides in-depth discussion of security, cybersecurity and technology trends affecting trust in computing, as well as timely security news, trends, and practical security guidance. 


We have included data on drive-by download attacks in numerous past volumes of the Microsoft Security Intelligence Report. But in the latest volume of the report, volume 15, we published some new data that we haven’t included in the report before - the relative prevalence of drive-by download sites hosted on different web server platforms.


Drive-by download attacks continue to be many attacker’s favorite type of attack. This is something I have written about several times in the past:

.





Gust MEES's insight:
.



more...
No comment yet.
Sign up to comment
Scooped by Gust MEES
Scoop.it!

Android drive-by download attack via phishing SMS | ZDNet

Android drive-by download attack via phishing SMS | ZDNet | ICT Security-Sécurité PC et Internet | Scoop.it
From www.zdnet.com - February 27, 2012 10:41 AM
A new security start-up focused on helping businesses deal with targeted attacks plans to showcase a drive-by download that plans malware silently onAndroid smart phones.

 

CloudStrike, which emerged from stealth mode last week with $26 million in funding, says the attack is delivered via spear-phishing SMS messages that lure users to a link that exploits a WebKit zero-day vulnerability. ...
more...
No comment yet.
Sign up to comment
Scooped by Gust MEES
Scoop.it!

Mobile malware: Beware drive-by downloads on your smartphone

Mobile malware: Beware drive-by downloads on your smartphone | ICT Security-Sécurité PC et Internet | Scoop.it
From www.itworld.com - March 23, 2012 8:30 AM
While Jeff Schmidt, the CEO of JAS Global Advisors, was surfing the Web on his new Android smartphone (his first Android phone) earlier this year, what appeared to be an ad popped up on his screen.

 

On a smartphone, drive-by downloads work differently, says Johnson, who is also a senior instructor with the SANS Technology Institute. "With an iPhone, I can't browse to a Website and have it install an app on my iPhone. The iPhone is not capable of doing that, which is good," he says. "The problem is that the drive-by download model has changed to take that into account."

 

So instead of dumping an app onto your smartphone's OS, the infected Website exploits a vulnerability in,

 

say, ===> the Safari browser and runs commands or packages within the phone's operating system to change the way it works, says Johnson. <===

more...
No comment yet.
Sign up to comment
About Follow us Resources Terms Mobile Features
Facebook
X
LinkedIn