Blackhole 2.0 is out with new exploits and same price
Posted on 13.09.2012
A new version of BlackHole, one of the most popular exploit kits out there, has been made available by its creator, who has supposedly rewritten it from scratch.


BlackHole 2.0 brings many improvements:
  • Dynamic URL generation in order to foil the automatic systems for downloading exploits used by security researchers
  • The removal of exploits for "old" vulnerabilities, and the inclusion of three different exploit packs - one including Java exploits, the second exploits for the Adobe PDF LibTiff vulnerability (CVE-2010-0188), and the third for Internet Explorer's Microsoft Data Access Components flaw (CVE-2006-5559) - a rather old vulnerability that still gets taken advantage of because of unpatched IE6 browsers
  • Links can get renamed to human readable format (for example /news/index.php) instead of kept in the obviously suspicious format that includes a slew of random characters (for example /Main.php?Varname=lgjlrewgjlrwbnvl2)
  • JAR and PDF exploits run only if vulnerable versions of plug-ins are detected, so they don't trigger detection by antivirus package unnecessarily
  • A new administration panel with a considerable number of new options
In spite of all these changes, the new version of the exploit kit costs the same as the previous one: a one-year license for those criminals that use their own servers amounts to $1500.

The kit can also be rented from the author's server, and that will cost $50 per day (up to 50,000 hits) or $500 per month (up to 70k hits per day).

The advert for BlackHole 2.0 was spotted on the underground forum site Exploit.ln, and was translated from Russian with the help of Google Translate by the Malware Donít Need Coffee blog team.






Spotlight

How to talk infosec with kids

Posted on 17 September 2014.  |  It's never too early to talk infosec with kids: you simply need the right story. In fact, as cyber professionals itís our duty to teach ALL the kids in our life about technology. If we are to make an impact, we must remember that children needed to be taught about technology on their terms.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Mon, Sep 22nd
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //