Difference between revisions of "The resurrection of RedKit"
Jump to navigation
Jump to search
m (Text replacement - "/ www." to "/ |Site=www.") |
|||
| (One intermediate revision by the same user not shown) | |||
| Line 1: | Line 1: | ||
{{Publication | {{Publication | ||
|Type=Blogpost | |Type=Blogpost | ||
|Link=http://www.kahusecurity.com/2014/the-resurrection-of-redkit/ www.kahusecurity.com | |Link=http://www.kahusecurity.com/2014/the-resurrection-of-redkit/ | ||
|Site=www.kahusecurity.com | |||
|Author=Darryl | |Author=Darryl | ||
|NomRevue=Kahu Security blog | |NomRevue=Kahu Security blog | ||
Latest revision as of 12:48, 31 July 2015
(Publication) Google search: [1]
| The resurrection of RedKit | |
|---|---|
| Botnet | |
| Malware | |
| Botnet/malware group | |
| Exploit kits | RedKit |
| Services | |
| Feature | |
| Distribution vector | |
| Target | |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2014 / 2014-01-07 |
| Editor/Conference | Kahu Security |
| Link | http://www.kahusecurity.com/2014/the-resurrection-of-redkit/ (Archive copy) |
| Author | Darryl |
| Type | Blogpost |
Abstract
“ “RedKit” was once a thriving exploit pack then faded away leaving behind artifacts on several abandoned hosts which are still triggering broken redirection alerts to this day. Within the past couple of months, however, we are witnessing a deliberate return of “RedKit”. While I can’t be 100% certain, there are many striking similarities between this and the previous iteration of RedKit that I’m led to believe that this is an updated version.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2014BFR1372,
editor = {Kahu Security},
author = {Darryl},
title = {The resurrection of RedKit},
date = {07},
month = Jan,
year = {2014},
howpublished = {\url{http://www.kahusecurity.com/2014/the-resurrection-of-redkit/}},
}