[FSec] Blackhole: Faster than the speed of patch


Before Java can release a patch for the recent zero-day exploit blogged by Sean earlier, Blackhole waltzes into the scene with an update. So the exploit kit users can now avail of the latest BH with the new zero-day exploit (CVE-2012-4681).

I wonder if this will actually put a spike on Blackhole sales.

The authors seem to be in such a hurry that they can't think of new names anymore:

There being no latest patch against this, the only solution is to totally disable Java. Since this is the most successful exploit kit + zero-day... que horror. Please, for the love of your computer disable Java on your browser.

Jar is detected as Exploit:W32/CVE-2012-4681.A (sha1: 15fde2d50fc5436aa73f3fd6b065f490259a30fd).

Post by:
Karmina and Timo

On 28/08/12 At 04:10 PM