Hackers Toolkit Attacks Vulnerable Browsers

SAN DIEGO, Calif. — Websense, an Online security company has issued a warning about its discovery of a do-it-yourself hackers kit being sold on a Russian website.

“The Web Attacker Toolkit,” which can be purchased for $15 to $20 exploits unpatched vulnerabilities in Internet Explorer and Firefox. The “smartbomb” virus latches onto the browsers code and then attacks its most vulnerable parts.

Websense says the hacking kit is being used on more than 1,000 websites to put a Trojan horse on susceptible computers. The worm runs in the background so surfers won’t realize their machine is being hacked. According to Websense, the Trojan can log keystrokes, download additional code, or open backdoors.

“It puts a bunch of code on a site that not only detects what browser the victim is running, but then selects one of seven different vulnerabilities to exploit,” Dan Hubbard, senior director of security and research at Websense said. “[This is] depending on how well patched the browser is.”

Interestingly, websites that host the malicious code also include a statistics page that shows “the number of infected clients, percentage of clients that have been infected, and a breakdown by country, operating system, and browser,” says Websense’s security alerts page. One of the bugs compromised 1,773 computers by using a three-year-old flaw in IE.

“Everyone knows they should patch their browsers,” Hubbard said, “but this is further evidence that that’s not happening as much as it should be.”

In its research, Websense has calculated that there have been more than 10,000 successful infections, which registers a 3 to 13 percent overall success rate.

Copyright © 2024 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Byborg Invests $22.35M in PLBY Group

Luxembourg-based Byborg Enterprises SA is investing $22.35 million in Playboy parent company PLBY Group.

Supreme Court to Hear Oral Arguments on Texas AV Law in January

The United States Supreme Court has scheduled oral arguments for Free Speech Coalition's challenge to Texas’ age verification law to take place Wednesday, Jan. 15.

2025 XBIZ Exec Awards Nominees for Online Industry Announced

XBIZ is pleased to announce the nominees for the online industry edition of the 2025 XBIZ Exec Awards, set to be presented as part of the annual XBIZ Honors ceremony on Wednesday, Jan. 15 in conjunction with the XBIZ 2025 conference.

Project 2025 Leader Claims Big Tech Companies 'Deliberately Fuel Pornography Addiction' Among Men

Heritage Foundation president and Project 2025 leader Kevin Roberts published on Wednesday the text of a speech in which he persists with his past claim that “predatory Big Tech corporations” are “deliberately fueling pornography addiction” among young men.

FSC Petitions 10th Circuit for Review of Utah AV Dismissal

Free Speech Coalition (FSC) on Wednesday petitioned the United States Court of Appeals for the 10th Circuit to review a decision handed down earlier this month by a three-judge panel of the same appeals court, which denied FSC the right to challenge Utah’s controversial age verification law by suing state officials.

MyAdultAttorney's Corey D. Silverstein to Hold Post-Election Legal Impact Webinar

Industry attorney Corey D. Silverstein will hold a “Legal Impact” webinar titled “We Have a New U.S. President: Legal and Community Implications” on Nov. 12 at 1 p.m. PST.

Pornhub Shuts Down Access in Oklahoma Over Age Verification

Aylo began geo-blocking Pornhub across Oklahoma on Tuesday, three days in advance of the state’s new age verification law, SB 1959, taking effect.

LALExpo Unveils Details of Upcoming Show

Organizers of LALExpo have released new details about the Latin American adult business conference, which will take place at the Valle del Pacífico Event Center in Cali, Colombia, from Feb. 23-26.

AEBN Publishes Popular Searches by Country for August, September

AEBN has released its list of popular searches from its straight and gay theaters in more than three dozen countries during August and September.

Lightspeed Media Onboards Industry Vets JMan, Marukel

LightSpeed Media has added veteran industry figures JMan and Marukel to its team.

Show More