Skip to content

Gotham Security Daily Threat Alerts

by on October 2, 2013

September 27, Softpedia – (International) Exploit kit uses VBScript to deliver malware. Researchers at Sourcefire identified an exploit kit that uses VBScript to write an executable file to the disk without using a vulnerability or downloading an executable file. A malicious Web site prompts users to run an add-on named “Microsoft Script Runtime” to begin the attack. Source:

September 27, Threatpost – (International) LinkedIn patches multiple XSS vulnerabilities. Social network LinkedIn fixed four cross-site scripting (XSS) vulnerabilities in its Web site during July, according to a vulnerability report issued by the researcher who first identified and reported the vulnerabilities. Source:

September 27, IDG News Service – (International) Google finally squashes IM bug. Google reported September 27 that it completely corrected a glitch in its Google Talk, Chat, and Hangouts services. The issue caused messages to be sent to the wrong recipients starting September 26. Source:

September 27, Softpedia – (International) 77% of new malware samples found in Q2 2013 were trojans. Panda Security’s second quarter 2013 threat report found that 77 percent of malware detected during the period were trojans, and that the global infection rate increased from 31.13 percent to 32.77 percent, among other findings. Source:

September 27, SC Magazine – (International) London teen arrested for involvement in Spamhaus DDoS attack. U.K. authorities arrested a 16-year-old for his alleged involvement in the massive March 19 distributed denial of service (DDoS) attack against anti-spam group Spamhaus. Source:

Comments are closed.

%d bloggers like this: