Exploits browsers
A GROUP of hackers has built a new attack pack which is designed to help them exploit 14 holes in various browsers.
Dubbed Tornado, the web-based toolkit, is may have been used in several iframe injection attacks during the end of last year.
According to security researcher Liam O'Murchu, Tornado use shows how complex attacks are getting. A hacker buys the software and installs it on a server and then leases it to other attackers.
The hacker collective harvests HTML files by stealing the data from FTP accounts and then uses the information to redirect victims to the Tornado server. The Tornado server looks for browser vulnerabilities and, if it finds them, injects the malware.
Insecurity outfit Symantec said that Tornado provided the hacker with presentations of statistical information that was really useful and its developers seem to have a really good business plan.
A GROUP of hackers has built a new attack pack which is designed to help them exploit 14 holes in various browsers.
Dubbed Tornado, the web-based toolkit, is may have been used in several iframe injection attacks during the end of last year.
According to security researcher Liam O'Murchu, Tornado use shows how complex attacks are getting. A hacker buys the software and installs it on a server and then leases it to other attackers.
The hacker collective harvests HTML files by stealing the data from FTP accounts and then uses the information to redirect victims to the Tornado server. The Tornado server looks for browser vulnerabilities and, if it finds them, injects the malware.
Insecurity outfit Symantec said that Tornado provided the hacker with presentations of statistical information that was really useful and its developers seem to have a really good business plan.