AceInfinity Emeritus, Contributor Joined Feb 21, 2012 Posts 1,728 Location Canada Nov 22, 2013 #1 I found, or came across some interesting information today: Malware-Traffic-Analysis.net - A malware traffic analysis blog - 2013-07-08 hXXps://lists.emergingthreats.net/pipermail/emerging-sigs/2013-October/022880.html https://www.virustotal.com/en/domain/alnera.eu/information/ New and upcoming, as it was just last month that this suspicious 'thing' (really) emerged. :huh: Last edited by a moderator: Nov 23, 2013
I found, or came across some interesting information today: Malware-Traffic-Analysis.net - A malware traffic analysis blog - 2013-07-08 hXXps://lists.emergingthreats.net/pipermail/emerging-sigs/2013-October/022880.html https://www.virustotal.com/en/domain/alnera.eu/information/ New and upcoming, as it was just last month that this suspicious 'thing' (really) emerged. :huh:
Corrine Administrator, Microsoft MVP, Security Analyst Staff member Joined Feb 22, 2012 Posts 12,255 Location Upstate, NY Nov 23, 2013 #2 I munged the URL for the second link because WOT provided a warning. Not so sure how "new and upcoming" this is as the VT link identifies it as a Java exploit, CVE-2013-1493. Oracle released an out-of-band security update in March, 2013: Security Alert CVE-2013-1493. The Java release at that time was JRE7u17.
I munged the URL for the second link because WOT provided a warning. Not so sure how "new and upcoming" this is as the VT link identifies it as a Java exploit, CVE-2013-1493. Oracle released an out-of-band security update in March, 2013: Security Alert CVE-2013-1493. The Java release at that time was JRE7u17.
AceInfinity Emeritus, Contributor Joined Feb 21, 2012 Posts 1,728 Location Canada Nov 23, 2013 #3 Corrine said: I munged the URL for the second link because WOT provided a warning. Not so sure how "new and upcoming" this is as the VT link identifies it as a Java exploit, CVE-2013-1493. Oracle released an out-of-band security update in March, 2013: Security Alert CVE-2013-1493. The Java release at that time was JRE7u17. Click to expand... It is not CVE-2013-1493 though, it is only based on that (as detailed in one of the link text's), and modified. Only a few less known scanners actually detect it as that too.
Corrine said: I munged the URL for the second link because WOT provided a warning. Not so sure how "new and upcoming" this is as the VT link identifies it as a Java exploit, CVE-2013-1493. Oracle released an out-of-band security update in March, 2013: Security Alert CVE-2013-1493. The Java release at that time was JRE7u17. Click to expand... It is not CVE-2013-1493 though, it is only based on that (as detailed in one of the link text's), and modified. Only a few less known scanners actually detect it as that too.