Comments on: A Peek Inside the ‘Eleonore’ Browser Exploit Kit http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/ In-depth security news and investigation Fri, 30 Jul 2010 04:29:12 +0000 hourly 1 http://wordpress.org/?v=3.0 By: Dave Buccihttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-7680 Dave Bucci Thu, 22 Jul 2010 15:29:52 +0000 http://www.krebsonsecurity.com/?p=729#comment-7680 Uhhh ... unless the exploit is written in Java, JavaScript, or some other cross-platform language. Uhhh … unless the exploit is written in Java, JavaScript, or some other cross-platform language.

Like or Dislike: Thumb up 1 Thumb down 0

]]> By: Frundlehttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-6162 Frundle Wed, 26 May 2010 12:38:41 +0000 http://www.krebsonsecurity.com/?p=729#comment-6162 Norton caught this attack twice. If I have the IP address and the country of origin, is there anything I can do to stop these peeps? Norton caught this attack twice. If I have the IP address and the country of origin, is there anything I can do to stop these peeps?

Like or Dislike: Thumb up 0 Thumb down 0

]]> By: Dallashttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-5592 Dallas Tue, 04 May 2010 22:35:34 +0000 http://www.krebsonsecurity.com/?p=729#comment-5592 This may be true if you follow the security stance of content filtering from one end of the spectrum, however, rather than blocking certain sites that fall into various categories of questionable web surfing, why not only allow access to certain "approved" websites people need to do their job. Kind of a "deny-all" statement (for network admins) where if its not allowed, it's denied... No web proxy, including Opera's, can circumvent that type of security stance. ;-) Just my two cents. -- Dallas This may be true if you follow the security stance of content filtering from one end of the spectrum, however, rather than blocking certain sites that fall into various categories of questionable web surfing, why not only allow access to certain “approved” websites people need to do their job. Kind of a “deny-all” statement (for network admins) where if its not allowed, it’s denied… No web proxy, including Opera’s, can circumvent that type of security stance. ;-) Just my two cents. — Dallas

Like or Dislike: Thumb up 1 Thumb down 1

]]> By: Patch more, patch faster « dr0ppedpacketshttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-3767 Patch more, patch faster « dr0ppedpackets Sat, 13 Mar 2010 00:00:08 +0000 http://www.krebsonsecurity.com/?p=729#comment-3767 [...] They don’t mention Java in the SANS article but it should be on your list as well.  This post shows how exploits are used in the real world to infect clients.  Java is near the top of the [...] [...] They don’t mention Java in the SANS article but it should be on your list as well.  This post shows how exploits are used in the real world to infect clients.  Java is near the top of the [...]

Like or Dislike: Thumb up 0 Thumb down 0

]]> By: Browser exploit kit probe highlights need for patching, vigilance « itsechttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-3112 Browser exploit kit probe highlights need for patching, vigilance « itsec Wed, 03 Mar 2010 20:35:26 +0000 http://www.krebsonsecurity.com/?p=729#comment-3112 [...] Washington Post security blogger Brian Krebs took a dive into the browser exploit kit last week to reveal the holes being targeted by the kit. In addition to Adobe Reader holes, the [...] [...] Washington Post security blogger Brian Krebs took a dive into the browser exploit kit last week to reveal the holes being targeted by the kit. In addition to Adobe Reader holes, the [...]

Like or Dislike: Thumb up 0 Thumb down 0

]]> By: BLADE: Deshaciéndose de las descargas silenciosas | Shadow Securityhttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-2980 BLADE: Deshaciéndose de las descargas silenciosas | Shadow Security Sat, 27 Feb 2010 23:19:09 +0000 http://www.krebsonsecurity.com/?p=729#comment-2980 [...] en el navegador del visitante. El mes pasado, compartí con los lectores una mirada dentro del panel de administración web del paquete de explotación Eleonore – uno de los más populares del [...] [...] en el navegador del visitante. El mes pasado, compartí con los lectores una mirada dentro del panel de administración web del paquete de explotación Eleonore – uno de los más populares del [...]

Like or Dislike: Thumb up 0 Thumb down 0

]]> By: BLADE: Hacking Away at Drive-By Downloads — Krebs on Securityhttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-2507 BLADE: Hacking Away at Drive-By Downloads — Krebs on Security Mon, 22 Feb 2010 17:56:40 +0000 http://www.krebsonsecurity.com/?p=729#comment-2507 [...] browser for known security vulnerabilities. Last month, I shared with readers a peek inside the Web administration panel for the Eleonore exploit pack — one of the most popular at the [...] [...] browser for known security vulnerabilities. Last month, I shared with readers a peek inside the Web administration panel for the Eleonore exploit pack — one of the most popular at the [...]

Like or Dislike: Thumb up 0 Thumb down 0

]]> By: Browser exploit kit probe highlights need for patching, vigilance at ITSecurityhttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-2408 Browser exploit kit probe highlights need for patching, vigilance at ITSecurity Fri, 19 Feb 2010 13:28:46 +0000 http://www.krebsonsecurity.com/?p=729#comment-2408 [...] Washington Post security blogger Brian Krebs took a dive into the browser exploit kit last week to reveal the holes being targeted by the kit. In addition to Adobe Reader holes, the [...] [...] Washington Post security blogger Brian Krebs took a dive into the browser exploit kit last week to reveal the holes being targeted by the kit. In addition to Adobe Reader holes, the [...]

Like or Dislike: Thumb up 0 Thumb down 0

]]> By: Paris Hiltonhttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-2259 Paris Hilton Thu, 18 Feb 2010 03:06:02 +0000 http://www.krebsonsecurity.com/?p=729#comment-2259 OK I've seen dumb but then I saw this. For an exploit to work, it has to have code specific to the OS and the processor. The same malicious code that wants to put a birthday greeting in C:\Windows\System32 is not going to be able to put the same code ready to run on a different OS with a different executable architecture in /usr/bin. Take that course you've been thinking about. OK I’ve seen dumb but then I saw this. For an exploit to work, it has to have code specific to the OS and the processor. The same malicious code that wants to put a birthday greeting in C:\Windows\System32 is not going to be able to put the same code ready to run on a different OS with a different executable architecture in /usr/bin. Take that course you’ve been thinking about.

Like or Dislike: Thumb up 0 Thumb down 5

]]> By: Paris Hiltonhttp://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/#comment-2258 Paris Hilton Thu, 18 Feb 2010 03:02:40 +0000 http://www.krebsonsecurity.com/?p=729#comment-2258 No. The OS is the ultimate issue. Your examples are only the attack surface. That's where the malicious code breaks through. But once the code has broken through, it has to be able to do something. On secure systems there is not much to do except twiddle your thumbs. On Windows it's the 4th of July, a veritable smorgasbord for the hackers. You'd better take that course in security your boss offered you. And try out some other OS just for the weekend, just for the fun of it. You might learn something. Hidden due to low comment rating. Click here to see.

Poorly-rated. Like or Dislike: Thumb up 2 Thumb down 8

]]>