Can the Nuclear exploit kit dethrone Blackhole?
Posted on 31.10.2012
In a market dominated by the mega-popular Blackhole exploit kit (newly upgraded to version 2.0) and the somewhat less sought-after Eleonore and Phoenix exploit packs, can the developer of a fourth one hope to compete?

The Nuclear exploit pack has been present for a while now, and its author has recently released version 2.0. He (or she?) advertises it on its own page, likely linked to from a number of underground forum entries (click on the screenshot to enlarge it):


As evidenced from the page, the exploit pack is currently being used in several more or less successful malicious campaigns, which end up delivering onto the compromised computers information-stealing Trojans and ransomware.

But what differentiates this offer from others is that the cybercriminal is determined not to be blamed for the criminal actions performed by his customers, and he tries to achieve this by introducing Terms of Service that everyone must agree to before using the kit.

According to Dancho Danchev, the Nuclear exploit pack's TOS forbid actions that violate the law of the Russian Federation, acquisition of traffic using spam emails, iFrame-based traffic acquisition practices, testing the software on public services such (VirusTotal and others), offering Cybercrime-as-a-Service business services using the kit, and developing an affiliate program using the exploit kit.

The kit also lacks operational security features which would make the campaigns harder to detect and analyze, so it definitely can't compete with the Blackhole exploit kit.






Spotlight

Leveraging network intelligence and deep packet inspection

Posted on 26 November 2014.  |  Tomer Saban, CEO of WireX Systems, talks about how deep packet inspection helps with identifying emerging threats, the role of network intelligence, and more.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Nov 28th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //