This week M86 Security Labs released a report that looks into growing problem – Web Exploit kits. These off-the-shelf kits are used by attackers to automatically exploit vulnerabilities when users visit web pages infected with malicious code. This sort of “drive-by” attack is particularly insidious, as the user can be browsing legitimate websites and will usually have no clue that they have been compromised.
Exploits used in the wild tend to be well known ones where there is publically available code, such as you might find on various security forums. There are many different exploit kits available and we have seen at least a dozen new kits appear over the last six months alone. This report covers some of the most popular kits today, how they are obtained and used, how they work and how cybercriminals make money from them. You can download a copy of the report here, and further information can be found in the press release.