Hackers Toolkit Attacks Vulnerable Browsers

SAN DIEGO, Calif. — Websense, an Online security company has issued a warning about its discovery of a do-it-yourself hackers kit being sold on a Russian website.

“The Web Attacker Toolkit,” which can be purchased for $15 to $20 exploits unpatched vulnerabilities in Internet Explorer and Firefox. The “smartbomb” virus latches onto the browsers code and then attacks its most vulnerable parts.

Websense says the hacking kit is being used on more than 1,000 websites to put a Trojan horse on susceptible computers. The worm runs in the background so surfers won’t realize their machine is being hacked. According to Websense, the Trojan can log keystrokes, download additional code, or open backdoors.

“It puts a bunch of code on a site that not only detects what browser the victim is running, but then selects one of seven different vulnerabilities to exploit,” Dan Hubbard, senior director of security and research at Websense said. “[This is] depending on how well patched the browser is.”

Interestingly, websites that host the malicious code also include a statistics page that shows “the number of infected clients, percentage of clients that have been infected, and a breakdown by country, operating system, and browser,” says Websense’s security alerts page. One of the bugs compromised 1,773 computers by using a three-year-old flaw in IE.

“Everyone knows they should patch their browsers,” Hubbard said, “but this is further evidence that that’s not happening as much as it should be.”

In its research, Websense has calculated that there have been more than 10,000 successful infections, which registers a 3 to 13 percent overall success rate.

Copyright © 2025 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

AEBN Announces Peter Green as Top Male Boy/Girl Performer for Summer 2025

AEBN has revealed its top 10 male Boy/Girl performers for summer 2025, with Peter Green landing atop the leaderboard.

Spicey AI Relaunches Site, Debuts $Spicey Tokens

Interactive voice chat platform Spicey AI has relaunched its website and introduced $Spicey tokens.

FSC: Missouri Age Verification Rule Will Not Take Effect August 30

The Free Speech Coalition (FSC) announced that Missouri's proposed age verification legislation will not take effect on August 30, as it had originally estimated.

Little Caprice, Marcello Bravo to Co-Host 2025 XMA Europa Awards

XBIZ is pleased to announce that husband-and-wife duo Little Caprice and Marcello Bravo will co-host adult’s biggest night in Europe: the 2025 XMA Europa Awards on Sept. 4, in the epic climax to XBIZ’s fall events series.

Germany Will Block Payments to AV-Noncompliant Adult Sites as of Dec. 1

Starting Dec. 1, Germany will implement new rules prohibiting financial institutions from providing payment services to adult sites deemed to have inadequate age verification systems and making it easier for the government to target websites mirroring the content of such sites.

Jerkmate Joins Pineapple Support as Partner-Level Sponsor

Jerkmate has joined the ranks of over 70 adult businesses and organizations committing funds and resources to Pineapple Support.

FSC Launches Age Verification Toolkit for Adult Websites

The Free Speech Coalition (FSC) announced today that it has launched a comprehensive toolkit to help adult websites navigate age verification laws.

Romero Mr. Alien to Present XBIZ Talk at Amsterdam Conference

XBIZ is pleased to announce that noted producer/director Romero Mr. Alien, the impresario of the XMAs award-winning studio Hentaied, will present an exclusive talk at next month’s Amsterdam conference.

New Fansly Analytics Platform 'SlyKiwi' Launches

SlyKiwi, a new analytics platform exclusively designed for Fansly content, has officially launched.

FPNCash Appoints Kimi Evans Head of Business Development

FPNCash has appointed Kimi Evans as its new head of business development.

Show More