Thursday, October 30, 2014

Reflected File Download - A New Web Attack Vector


From my Company's Blog:

On October 2014 as part of my talk at the Black Hat Europe 2014 event, I presented a new web attack vector that enables attackers to gain complete control over a victim’s machine by virtually downloading a file from trusted domains. I decided to call this technique Reflected File Download (RFD), as malware can be "downloaded" from highly trusted domains such as Google.com and Bing.com without ever being uploaded...

The full blog post, including links to the WhitePaper and exploit videos is now available:
http://blog.spiderlabs.com/2014/10/reflected-file-download-the-white-paper.html

14 comments:

  1. Y1 - Play Free Online Y1 Games for everyone. Y1 Games fun to relux. - http://www.sagagames.net/games/y1

    ReplyDelete
  2. Undoubtedly an excellent information and the article as a whole. But I can bet with you)
    Tell me, if such an attack is still the option if you're using a cloud server storage of personal and corporate data virtual data room providers?

    ReplyDelete
  3. File sharing can be defined as the practice of circularizing or allowing access to folders like audio, video, images, computer programs, documents, and electronic books.
    shareit app - the file transferring tool

    ReplyDelete
  4. You have done a great job. I will definitely dig it and personally recommend to my friends. HTTP://KCCATL.COM/ I am confident they will be benefited from this site

    ReplyDelete
  5. I utilized it for a month and saw a discernible distinction in myself. here Presently I don't short of going out with my companions and so forth.

    ReplyDelete
  6. Gscbv#wfhbawhb#46# html:$₩gffhhhh@.com

    ReplyDelete
  7. Upon finding a website that practices an adamant amount of safety you can then commence in the download process without any ailments. http://www.getintopc.co

    ReplyDelete
  8. The driver discs can become problematic as result of several factors. Get Into Pc

    ReplyDelete
  9. Incredible articles and awesome design. Your blog entry merits the greater part of the positive input it"s been getting. Getintopc

    ReplyDelete