According to release announcement on pastebin by unknown developers in a russianlanguage blackhole exploit kit 2. Ill spare you the details on howwhy these mostly work, but if youre interested let me know and id be happy to fill in the blanks. Active malvertising campaigns in december and the new year have kept exploit kit activity from hibernating in winter 2019. The followup features support for windows 8 and more sophisticated technologies. Blackhole exploit kit comes back from the grave zdnet. Recently it was announced via posts in underground forums and pastebin posts that a new version of the blackhole exploit kit bhek, version 2. The first version of the blackhole exploit kit bhek was released.
In addition, narrowlyfocused exploit kits such as magnitude, underminer, and greenflash sundown stayed on the same track. The blackhole exploit kit was one of the most wellknown kits available. Blackhole exploit kit v2 trustwave spiderlabs trustwave. The blackhole exploit kit is, as of 2012, the most prevalent web threat, where 29% of all web threats detected by sophos and 91% by avg are due to this exploit kit. Even malware domain list is showing quite a few domains infected with the blackhole exploit kit. Some of the top exploit kits out there with download link provided kits like crime pack, bleeding life, black hole, sakura, phoenix, fragus and lots more htt. Its now available as a free download a free version of the blackhole exploit kit has appeared online in a development that radically reduces the entrylevel costs of getting into cybercrime. Figure 22 below shows the success rate of various exploit modules involved in the kit, as we can see javaexploits have been the most successful. Newer releases and a free version of the blackhole exploit kit have since appeared on warez download sites. A few days ago a new version of the most common exploit kit was released. As far as we know, blakhole is the most successful exploit kit which includes a collection of exploits to take advantage of vulnerability in the.
Jar and pdf files show only those versions of plugins that are vulnerable if the plug is not vulnerable, sployty is issued, and not get dirty once again. Cybercrooks have unveiled a new version of the blackhole exploit kit. Paunch, the author of the black hole exploit kit, has released version 2. Black hole exploit kit available for free threatpost.
Blackhole exploit kit now available for free sc media. Exploring the blackhole exploit kit naked security. Exploit kits or exploit packs refer to a type of hacking toolkit that cybercriminals use to take advantage of vulnerabilities in systemsdevices so they can distribute malware or do other malicious activities. Moscow cops cuff suspect in blackhole crimeware bust the. Here is for download a partial blackhole 2 exploit pack. I havent found a reasonable version of the blackhole exploit kit without the ioncube annoyances. The downloaded malware displays a threatening message see image to the.
Upon installing the exploit kit a list of 2,147 tor nodesare loaded into the database and are updated automatically. Voice of greyhat is a nonprofit organization propagating news specifically related with cyber security threats, hacking threads and issues from all over the spectrum. Top leaked and cracked exploit kits with download link hd. A new version of the blackhole exploit kit is now out on the web and ready to start infecting. The blackhole exploit kit is one of the most notorious exploit kits currently in circulation among the cybercriminal underground today. A revamped version of the blackhole exploit kit version 2 was released just over a year ago in september 2012.
The kit first appeared on the crimeware market in september of 2010 and ever since then has quickly been gaining market share over its vast number of competitors. In fact, many antivirus vendors now claim that this is one of the most prevalent exploit kits used in the wild. If youre concerned with just blackhole, that might be a bit more difficult. According to trend micro the majority of infections due to this exploit kit were done in a series of high volume spam runs. Recent security advisories reveal that the web exploit kits like the blackhole exploit kit are responsible for the vast majority of web attacks and. Just a couple of weeks after the source code for the zeus crimeware kit turned up on the web, the black hole exploit kit now appears to be available for download for free, as well. The blackhole exploit kit has risen from the grave, detected online in driveby malware campaigns on compromised websites. With the latest version being more sophisticated, we are expecting to see an even more rapid growth of blackhole exploit kit v2. Blackhole, the most common of the browser exploit kits, includes a rental strategy, where individualscriminals pay for the use and maintenance of the hosted exploit kit for a specific period of time. The most wellknown blackhole exploit kit attack targeted the u. Thus, we continuously monitor for incidents and attacks involving the exploit kit itself. A third class of kit are those that focus on infecting users through web attacks, specifically attacks known as driveby downloads. Cyber weapon of mass destruction the blackhole exploit kit.
First spotted in 2010, blackhole is commercial crimeware designed to be stitched into hacked or malicious sites and exploit a variety of webbrowser vulnerabilities for the purposes of installing. We mostly observed fallout and rig with the occasional, limited grandsoft appearance for wider geotargeting. Now, just as secure and your exe, av company can not just download it, which will keep your exe as long as clean. According to trend micro the majority of infections due to this exploit kit were done in a series of. The blackhole exploit kit 2150 infection is one of the many variants of the dangerous blackhole exploit kit and is used to attempt to attack a computer system by taking advantage of numerous known vulnerabilities which can be used to download malware on the victims computer system. Blackhole is one of the most dominant exploit toolkits currently available in the underground market. The black hole exploit kit is now available for free download, just weeks after the zeus source code was leaked. The year is 2015 and a threat actor is using the defunct blackhole exploit kit in active driveby download campaigns via compromised websites. Shows what happens when visiting a site which is serving a black hole exploit kit. The advertisement for the new version of blackhole was posted on an underground forum and was written in russian. If you really just care about most exploit kits there are a couple of easy wins that ive found for finding exploit kits in general. Cool and bhek distribute reveton and other ransomware variants. Just a couple of weeks after the source code for the zeus crimeware kit turned up on the web, the black hole exploit kit now appears. This pack has been shared with me a few times over the past couple of weeks as researchers discovered an.
A few of the interesting updates to the exploit kit are noted here. Now the redirection takes place through a malicious code that redirects a user to download a. Version 2 of blackhole is expressly designed to better avoid security defences. Read latest news headlines on latest news and technical coverage on cybersecurity, infosec and. We noticed java and pdf exploits collected by our honeypot which we havent seen in ages. Blackhole exploit kit is yet another in an ongoing wave of attack toolkits flooding the underground market. A free copy of the blackhole exploit kit is available on several filesharing sites, lowering the cost of entry for budding cybercriminals. Its purpose is to deliver a malicious payload to a victims computer. With blackhole exploit kit v1, we saw an increase in malicious domains hosting exploit kits urls as the kit matured over the time. This pack has been shared with me a few times over the past couple of weeks as researchers discovered an blackhole server with open. The author of blackhole, an exploit kit that boobytraps hacked web sites to serve malware, has done so well for himself renting his creation to miscreants. Blackhole exploit kit statisticsin this section we will look at some of the interesting statistics for bek kit based on the bek exploitactivities that we have monitored in the wild over past one year.
998 882 233 1512 902 404 582 647 1109 1505 678 1361 631 586 219 1193 1540 826 707 705 747 254 818 1030 545 683 166 342 1038 707 2 485