SpiderLabs Blog

March 08, 2016 | SpiderLabs Researcher

Today is March's Patch Tuesday with 13 bulletins and 39 unique CVEs, which is ...

March 07, 2016 | Admin

Day One: In Which The Heavens Part, But Only Slightly A few weeks ago while ...

March 04, 2016 | SpiderLabs Researcher

We have just discovered an advertising campaign that has been placing malicious ...

February 09, 2016 | Karl Sigler

February Patch Tuesday is here with double the number of vulnerabilities that ...

February 08, 2016 | Rami Kogan

They say that with great power comes great responsibility. In the world of ...

February 05, 2016 | Chaim Sanders

Recently we have been working on the libmodsecurity project. As part of the ...

February 04, 2016 | Daniel Chechik

A couple of weeks ago we were looking at some exploit kits in one of our lab ...

February 02, 2016 | Chaim Sanders

Previous Work

January 12, 2016 | SpiderLabs Researcher

It's a new year and with it comes a fresh batch of CVEs. As expected this ...

January 07, 2016 | Martin Rakhmanov

SAP released an update for SAP ASE 16.0 and 15.7 that addresses a serious ...

December 28, 2015 | Felipe "Zimmerle" Costa

libModSecurity is a major rewrite of ModSecurity. It preserves the rich syntax ...

December 28, 2015 | Daniel Chechik

There's been a bit of talk about the Neutrino exploit kit lately, most of it ...

December 27, 2015 | Rami Kogan

In the past year we have been exploring the Magnitude Exploit Kit - one of the ...

December 22, 2015 | Rodel Mendrez

Recently we've observed a massive uptick of malicious spam with JavaScript ...

December 21, 2015 | Admin

Overview A few weeks ago, FoxGlove Security released this important blog post ...

December 18, 2015 | Assi Barak

A recent new 0-day in Joomla discovered by Sucuri (Sucuri Blog) has drawn a lot ...

December 18, 2015 | David Broggy

One of my "pastimes," if you will, is to check out the features of various ...

December 15, 2015 | Jonathan Yarema

Have you ever wondered if all that informal training you do with your friends ...

December 08, 2015 | Admin

The December Microsoft Path Tuesday is upon us and it does not bring any happy ...

December 07, 2015 | Eric Merritt

Introduction FrameworkPoS is a well-documented family of malware that targets ...

November 17, 2015 | Eric Merritt

Introduction Working primarily with point of sale malware, we regularly see the ...

November 16, 2015 | Eric Merritt

Introduction For the last five years Trustwave has been monitoring a threat ...

November 10, 2015 | Admin

November's Patch Tuesday marks a return to business as usual. Where October was ...

November 10, 2015 | Phil Hay

Spammers try all sorts of tricks to obfuscate, including trying to obfuscate ...

November 08, 2015 | Admin

In this week's episode:

November 06, 2015 | Martin Rakhmanov

In the October 2015 'Critical Patch Update' Oracle fixed a flaw in XML index ...

October 26, 2015 | Martin Rakhmanov

Over the past seven months, a number of vulnerabilities in Lenovo System Update ...

October 25, 2015 | Admin

Two separate SpiderLabs vulnerabilities released: