News / Threat Reports

NEW: Disdain Exploit Kit

• A new exploit kit, “Disdain”, is currently being advertised on an underground Russian-language forum, by a threat actor named ‘Cehceny’.

• Disdain is believed to be largely based on the Beps exploit kit, the source code of which was leaked online earlier this year.

• Disdain’s toolkit includes browser, IP tracking and geolocations for infected devices, RSA key exchange for exploits, and domain rotation.

• The exploit kit supposedly leverages several vulnerabilities in Flash, Internet Explorer and Mozilla Firefox, and is targeting countries in South America and Western Europe, as well as India and China.

Let’s have a look below at how Silobreaker monitors and analyses mentions of Disdain Exploit Kit.

Screenshot 1 – Silobreaker Network – Real time link analysis leveraging unstructured open source data.

Click the Network above to enlarge it.

Screenshot 2 – Silobreaker Time Series – Monitoring “Disdain Exploit Kit” stories breaking and developing over time.


 

Screenshot 3 – Silobreaker Heat measure – Finding and monitoring associated indicators of compromise. 

To see further analysis of Disdain and other cyber threats to your organisation in Silobreaker, book an online demo today.

 

Disclaimer: Although Silobreaker has relied on what it regards as reliable sources while compiling the content herein, Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of such content and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content herein.

More News

  • Silobreaker Daily Cyber Digest – 20 November 2019

      Malware Malware-as-a-service Phoenix keylogger gains popularity with cybercriminals Researchers at Cybereason have identified keylogger malware, named Phoenix, which is gaining popularity among cybercriminals. ...
  • Silobreaker Daily Cyber Digest – 19 November 2019

        Malware New ACBackdoor targets Windows and Linux devices Researchers at Intezer identified a new backdoor, named ACBackdoor, which can be used to...
  • Silobreaker Daily Cyber Digest – 18 November 2019

      Malware NextCloud Linux Servers hit with new NextCry ransomware BleepingComputer and security researcher Michael Gillespie analysed a newly spotted malware, named NextCry, which...
View all News

Request a demo

Get in touch