Comments on: A Peek Inside the ‘Eleonore’ Browser Exploit Kit http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/ In-depth security news and investigation Thu, 09 Feb 2012 05:22:25 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Etty http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-1/#comment-24128 Etty Wed, 13 Jul 2011 15:37:10 +0000 http://www.krebsonsecurity.com/?p=729#comment-24128 Knocked my socks off with kolwnedge! Knocked my socks off with kolwnedge!

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Udbhav http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-1/#comment-23858 Udbhav Sat, 02 Jul 2011 17:39:33 +0000 http://www.krebsonsecurity.com/?p=729#comment-23858 What exactly are you trying to say ?? What exactly are you trying to say ??

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Sexyman http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-2/#comment-13374 Sexyman Wed, 08 Dec 2010 05:50:11 +0000 http://www.krebsonsecurity.com/?p=729#comment-13374 I miss the Mcdonalds Arch Deluxe :( I miss the Mcdonalds Arch Deluxe :(

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Tushar Vartak http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-2/#comment-10773 Tushar Vartak Thu, 30 Sep 2010 05:21:19 +0000 http://www.krebsonsecurity.com/?p=729#comment-10773 good analysis Brian, any info on the actual obfuscation methods used by the pack.. any source that is either live / distributing malware. i need this for my research.. here is some attempts from my end over phoenix http://tusharvartak.com/2010/09/28/underground-economy-3-phoenix-exploit-kit-fake-antivirus-and-live-cc-server/ Regards, Tushar Vartak good analysis Brian, any info on the actual obfuscation methods used by the pack.. any source that is either live / distributing malware. i need this for my research..

here is some attempts from my end over phoenix

http://tusharvartak.com/2010/09/28/underground-economy-3-phoenix-exploit-kit-fake-antivirus-and-live-cc-server/

Regards,
Tushar Vartak

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Dave Bucci http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-1/#comment-7680 Dave Bucci Thu, 22 Jul 2010 15:29:52 +0000 http://www.krebsonsecurity.com/?p=729#comment-7680 Uhhh ... unless the exploit is written in Java, JavaScript, or some other cross-platform language.

Uhhh … unless the exploit is written in Java, JavaScript, or some other cross-platform language.

Well-loved. Like or Dislike: Thumb up 5 Thumb down 0
]]> By: Frundle http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-2/#comment-6162 Frundle Wed, 26 May 2010 12:38:41 +0000 http://www.krebsonsecurity.com/?p=729#comment-6162 Norton caught this attack twice. If I have the IP address and the country of origin, is there anything I can do to stop these peeps? Norton caught this attack twice. If I have the IP address and the country of origin, is there anything I can do to stop these peeps?

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Dallas http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-1/#comment-5592 Dallas Tue, 04 May 2010 22:35:34 +0000 http://www.krebsonsecurity.com/?p=729#comment-5592 This may be true if you follow the security stance of content filtering from one end of the spectrum, however, rather than blocking certain sites that fall into various categories of questionable web surfing, why not only allow access to certain "approved" websites people need to do their job. Kind of a "deny-all" statement (for network admins) where if its not allowed, it's denied... No web proxy, including Opera's, can circumvent that type of security stance. ;-) Just my two cents. -- Dallas This may be true if you follow the security stance of content filtering from one end of the spectrum, however, rather than blocking certain sites that fall into various categories of questionable web surfing, why not only allow access to certain “approved” websites people need to do their job. Kind of a “deny-all” statement (for network admins) where if its not allowed, it’s denied… No web proxy, including Opera’s, can circumvent that type of security stance. ;-) Just my two cents. — Dallas

Like or Dislike: Thumb up 3 Thumb down 1
]]> By: Patch more, patch faster « dr0ppedpackets http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-2/#comment-3767 Patch more, patch faster « dr0ppedpackets Sat, 13 Mar 2010 00:00:08 +0000 http://www.krebsonsecurity.com/?p=729#comment-3767 [...] They don’t mention Java in the SANS article but it should be on your list as well.  This post shows how exploits are used in the real world to infect clients.  Java is near the top of the [...] [...] They don’t mention Java in the SANS article but it should be on your list as well.  This post shows how exploits are used in the real world to infect clients.  Java is near the top of the [...]

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: Browser exploit kit probe highlights need for patching, vigilance « itsec http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-2/#comment-3112 Browser exploit kit probe highlights need for patching, vigilance « itsec Wed, 03 Mar 2010 20:35:26 +0000 http://www.krebsonsecurity.com/?p=729#comment-3112 [...] Washington Post security blogger Brian Krebs took a dive into the browser exploit kit last week to reveal the holes being targeted by the kit. In addition to Adobe Reader holes, the [...] [...] Washington Post security blogger Brian Krebs took a dive into the browser exploit kit last week to reveal the holes being targeted by the kit. In addition to Adobe Reader holes, the [...]

Like or Dislike: Thumb up 0 Thumb down 0
]]> By: BLADE: Deshaciéndose de las descargas silenciosas | Shadow Security http://krebsonsecurity.com/2010/01/a-peek-inside-the-eleonore-browser-exploit-kit/comment-page-2/#comment-2980 BLADE: Deshaciéndose de las descargas silenciosas | Shadow Security Sat, 27 Feb 2010 23:19:09 +0000 http://www.krebsonsecurity.com/?p=729#comment-2980 [...] en el navegador del visitante. El mes pasado, compartí con los lectores una mirada dentro del panel de administración web del paquete de explotación Eleonore – uno de los más populares del [...] [...] en el navegador del visitante. El mes pasado, compartí con los lectores una mirada dentro del panel de administración web del paquete de explotación Eleonore – uno de los más populares del [...]

Like or Dislike: Thumb up 0 Thumb down 0
]]>