Warning

Firefox 0-Day targeting Tor-Users

Firefox 0-Day targeting Tor-Users

11/30/2016 [UPDATE: 12/01/2016] - Yesterday a Firefox 0-Day was made publicly available. We have analyzed the exploit from begin to end and talk about the different stages, including: the exploit techniques that aim to defeat general protection mechanisms like ASLR and DEP, as well as more advanced protection mechanisms like Export Address Filtering from EMET, the shellcode and its similarity to the FBI-Exploit from 3 years ago.

Author: Andreas Fobian, Carl-Benedikt Bender

World of Warcraft: one simple line of code can cost you dearly

World of Warcraft: one simple line of code can cost you dearly

07/22/2016 - A few days ago, a new type of gold/item scam made the rounds. Usually scamming in MMORPGs is done using social engineering techniques, e.g. an attacker sells a fake item code for alleged in-game items like mounts to a potential victim for in-game currency. But this most recent kind of attack does not only involve social engineering but also relies on the misuse of a previously undocumented feature...

Author: Sascha Curylo & Sabrina Berkenkopf
G DATA | SIMPLY SECURE