Can the Nuclear exploit kit dethrone Blackhole?
Posted on 31.10.2012
In a market dominated by the mega-popular Blackhole exploit kit (newly upgraded to version 2.0) and the somewhat less sought-after Eleonore and Phoenix exploit packs, can the developer of a fourth one hope to compete?

The Nuclear exploit pack has been present for a while now, and its author has recently released version 2.0. He (or she?) advertises it on its own page, likely linked to from a number of underground forum entries (click on the screenshot to enlarge it):


As evidenced from the page, the exploit pack is currently being used in several more or less successful malicious campaigns, which end up delivering onto the compromised computers information-stealing Trojans and ransomware.

But what differentiates this offer from others is that the cybercriminal is determined not to be blamed for the criminal actions performed by his customers, and he tries to achieve this by introducing Terms of Service that everyone must agree to before using the kit.

According to Dancho Danchev, the Nuclear exploit pack's TOS forbid actions that violate the law of the Russian Federation, acquisition of traffic using spam emails, iFrame-based traffic acquisition practices, testing the software on public services such (VirusTotal and others), offering Cybercrime-as-a-Service business services using the kit, and developing an affiliate program using the exploit kit.

The kit also lacks operational security features which would make the campaigns harder to detect and analyze, so it definitely can't compete with the Blackhole exploit kit.






Spotlight

How security analytics help identify and manage breaches

Posted on 30 July 2014.  |  Steve Dodson, CTO at Prelert, illustrates the importance of security analytics in today's complex security architectures, talks about the most significant challenges involved in getting usable information from massive data sets, and much more.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Thu, Jul 31st
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //