Slashdot Mirror

← Back to Stories (view on slashdot.org)

An Up-to-Date Browser Should Keep Users Safe From Most Exploit Kits (bleepingcomputer.com)

Posted by msmash on from the a-notable-victory dept.

Exploit kits, once a preferred choice of attackers to invade a victim's browser and find way to their computer, are increasingly diminishing in their effectiveness. If you have an updated browser, chances are it packs adequate resources to fight such attacks. Catalin Cimpanu, writing for BleepingComputer: Exploit kits (EK) have been around on the criminal underground for more than a decade and were once pretty advanced, often being a place where researchers found zero-days on a regular basis. But as browsers got more secure in recent years, exploit kits started to die out in 2016-2017. Most operators were arrested, moved to other things, and nobody developed new exploits to add to the arsenal of EK left on the market, which slowly began falling behind when it came to their effectiveness to infect new victims.

A Palo Alto Networks report published yesterday details statistics about the vulnerabilities used by current exploit kits in the first three months of the year (Q1 2018). According to the gathered data, researchers found 1,583 malicious URLs across 496 different domains, leading to landing pages (URLs) where an EK attempted to run exploits only for only a meager eight vulnerabilities. All eight were old and known bugs, with the newest dating back to 2016. Seven of the eight vulnerabilities targeted Internet Explorer, meaning that using a more modern browser like Chrome and Firefox is a simple, yet effective way of avoiding falling victim to exploit kits.

53 comments

  1. Re: browser is inherently insecure by Anonymous Coward · · Score: 0

    it is... I have no clue why I see articles like this at /.

    Are we preaching to children now?

  2. Really? by Anonymous Coward · · Score: 0, Informative

    âoeSeven of the eight vulnerabilities targeted Internet Explorer, meaning that using a more modern browser like Chrome and Firefox is a simple, yet effective way of avoiding falling victim to exploit kits.âoe

    No shit! In other news, water is wet and Trump is a fucking moron!

    1. Re:Really? by DontBeAMoran · · Score: 0

      No shit! In other news, water is wet and Trump is a fucking moron!

      Oh shit! Somebody better stop Trump, he's trying to make copies of himself!

      --
      #DeleteFacebook
    2. Re:Really? by Anonymous Coward · · Score: 0

      The sad part is the statement is WRONG. it avoids that particular kit. Firefox is so fucking riddled with security bugs that I would never recommend it to anyone. Use Chrome or in a pinch Edge, never firefox if security matters.

    3. Re:Really? by arglebargle_xiv · · Score: 1

      Also, with Chromefox you've got a choice between an up to date browser or a browser where your extensions still work. If you want an up to date browser where your extensions don't work you may as well switch to the real Chrome, not a crappy, buggy clone of it. So your options are an old copy of Chromefox with working extensions or actual Chrome.

  3. Re: browser is inherently insecure by Anonymous Coward · · Score: 0

    Seven of the eight vulnerabilities targeted Internet Explorer, meaning that using a more modern browser like Chrome and Firefox is a simple, yet effective way of avoiding falling victim to exploit kits.

    Browsers aren't the only problem.

    I constantly encounter websites that don't work properly unless you use Internet Explorer.

    Fucking morons.

  4. Re: by kurkosdr · · Score: 3, Interesting

    Browser exploit kits are not profitable anymore because browsers auto-update, it's that simple. OSes on the other hand don't always auto-update (or update at all for the case of mobile devices and IoT ) which is where the exploit underground has moved...

  5. Re: browser is inherently insecure by Anonymous Coward · · Score: 1

    Really? IE only sites today? I haven't seen one in years, with the exception of corporate intranet sites.
    Today you're far more likely to see sites that mandate the use of Google Chrome.
    Chrome is the new IE.

  6. Re: browser is inherently insecure by sexconker · · Score: 2

    I fucking hate the fact that a lot of sites are only tested in Chrome (if at all). Not only is Chrome not the only browser, it's not a particularly good one.

  7. Re: browser is inherently insecure by sexconker · · Score: 2

    If they tested with ANYTHING other than Chrome they'd see that half the styling and design hacks they slap on don't fucking work anywhere BUT Chrome.

  8. Re: browser is inherently insecure by Anonymous Coward · · Score: 0

    I use three IE-only sites several times a week. Two of them are SharePoint so we have to still run XP with MSIE 6. The other is the time clock software I have to use twice a day since I work for a Microsoft vendor. They certainly still exist.

  9. Registered /.ers opinions of the Win64 model by Anonymous Coward · · Score: 0

    Your software is just fine - well written, functional... I'm going to continue using the Host File Engine by mmell February 17, 2017

    (APK's work), I've flat out said it's good by BronsCon February 11 2016

    his hosts program is actually pretty good by xenotransplant August 10 2015

    his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources by alexgieg September 25 2015

    I like your host file system by Karmashock September 09 2015

    I do use APK's host file on all my systems at home by OrangeTide December 01 2017

    I personally use a HOSTS file blocker produced from a genius called APK by 110010001000 October 27 2017

    * See subject: Best part's the Linux 64-bit model's faster & more efficient (does 2x the work in 1/2 the time)

    APK

    P.S.=> Enjoy a faster/safer/more reliable internet... apk

    1. Re: Registered /.ers opinions of the Win64 model by Anonymous Coward · · Score: 0

      You're in your mid-50s and all you've done with your life is write a dinky piece of shit program and act like an asshole all over the internet. I am in my mid-30s, have a net worth over $50 million, and own a company with over 1,000 employees. If you were relevant at all, I'd buy Slashdot from whipslash, then ban your ass from this site. Of course, you're a nobody, and I've got better things to do with my money.

  10. Re: browser is inherently insecure by bobby · · Score: 2

    And which browesrs are we supposed to test with, apart from Chrome?

    https://validator.w3.org/nu/

    http://jigsaw.w3.org/css-validator/

  11. Re: browser is inherently insecure by bobby · · Score: 1

    and even then it's iffy

  12. Re: browser is inherently insecure by Required+Snark · · Score: 1
    Absolutely. Just like you don't have to treat a disease if less then 50% percent of the population is vulerable. Who cares if they die, if it's statistically insignificant?

    As for FireFox/Mozilla, give up on that Pocket crap and whatever the halfassed social network is called and MAKE FIREFOX SECURE. No one who uses FF gives a rat's ass about your dreams of internet glory, just like they didn't care about that other idiot scheme to make a Mozilla version of Linux.

    Stop being so dumb.

    --
    Why is Snark Required?
  13. This does best job possible (blocking 'em) by Anonymous Coward · · Score: 0

    See subject & APK Hosts File Engine 2.0++ 64-bit for Linux h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r L i n u x . z i p (remove spaces between characters & download).

    Yields more security/speed/reliability/anonymity vs. any SINGLE solution (99% of threats = hostnames vs. IP address that most firewalls use) more efficiently/FASTER + NATIVELY 4 less!

    (Vs. "Bolt on 'MoAr' illogic-logic" competitors slowing you, hosts speed you up 2 ways (adblocks + hardcodes u spend most time @) vs. competition loaded w/ bugs (DNS/AntiVir) + their overheads (messagepass ('souled-out' to advertiser addons) + filtering drivers) & their complexity leads to exploitation).

    * ONLY 1 of its kind in GUI on Linux/BSD!

    APK

    P.S.=> Much better vs. Windows model in speed & efficiency + new merge feature... apk

  14. Registered /.ers opinions of the Win64 model by Anonymous Coward · · Score: 0

    Your software is just fine - well written, functional... I'm going to continue using the Host File Engine by mmell February 17, 2017

    (APK's work), I've flat out said it's good by BronsCon February 11 2016

    his hosts program is actually pretty good by xenotransplant August 10 2015

    his hosts tool is actually useful for those cases in which one does indeed want to locally block stuff outright while consuming minimum system resources by alexgieg September 25 2015

    I like your host file system by Karmashock September 09 2015

    I do use APK's host file on all my systems at home by OrangeTide December 01 2017

    I personally use a HOSTS file blocker produced from a genius called APK by 110010001000 October 27 2017

    * See subject: Best part's the Linux 64-bit model's faster/more efficient (does 2x the work in 1/2 the time)

    APK

    P.S.=> Enjoy a faster/safer/more reliable internet... apk

  15. Re: browser is inherently insecure by DigiShaman · · Score: 1

    Be brave, get Brave! The Brave browser.

    --
    Life is not for the lazy.
  16. Try to exploit my Lynx by Anonymous Coward · · Score: 0

    Go on, I want to see you fail :N

  17. Re: browser is inherently insecure by DontBeAMoran · · Score: 1

    100% valid answer, I do use those tools but they're not browsers.

    --
    #DeleteFacebook
  18. Re: browser is inherently insecure by Anonymous Coward · · Score: 0

    It used Blink the last time so tried it. That pretty much makes it Chrome, with a slightly different UI. It's also quite telling that a very influential former Mozilla developer and executive would choose Blink over Gecko!

  19. Just turn off JavaScript by Anonymous Coward · · Score: 0

    And allow only when necessary.
    For Firefox, I use this.

  20. Palemoon 26.5 by Anonymous Coward · · Score: 0

    Well, I'm running Pale Moon 26.5 released in 2015 as my main browser, so, I should be perfectly secure!

  21. TFS/TFA Misleading by ElizabethGreene · · Score: 2

    The article and summary implies that a currently patched version of IE would be vulnerable. This is not the case. :/

    Microsoft, who in full disclosure is my employer, fails at a lot of things. You don't have to make up new ones on our behalf.

    (This is obviously my opinion and not that of the company that buys my groceries. I understand that working for Microsoft means my opinion is invalid.)

    1. Re:TFS/TFA Misleading by jon3k · · Score: 1

      Don't worry no one uses IE so it doesn't matter.

    2. Re:TFS/TFA Misleading by Tukz · · Score: 1

      Your "employer" discontinued Internet Explorer, who cares if it's vulnerable? Don't use a discontinued product if you care about security.

      --
      - Don't do what I do, it's probably not healthy nor safe. -
    3. Re: TFS/TFA Misleading by Anonymous Coward · · Score: 0

      Why don't you show us why this isn't the case? Throw us some links to back up your assertions. Sorry, just because you work for Microsoft, doesn't mean we believe you. Actually, to be honest, we believe you LESS because you work for Microsoft.

      Are all Microsoft employees this arrogant? No wonder the company produces shit spyware now a days. It's own employees are smug fanboys.

      We don't care that you work at Microsoft, prove the article wrong or stfu. You replied saying "not uhh!!!, they are lying", and provided us with no proof to back up your assertions.

      Besides, IE has been discontinued by Microsoft anyway. And I'm pretty sure the new browser you guys are deploying and developing has been owned over and over again at competitions. Even being the most exploited browser. So if they can't keep their bread and butter browser secured, why would they bother trying to secure a discontinued browser no one gives a shit about? Edge is and and always will be a POS.

      Links: https://www.tomshardware.com/news/pwn2own-2017-microsoft-edge-hacked,33940.html

      https://windowsreport.com/pwn2own-edge-hacked/

      https://www.tomshardware.com/news/pwn2own-chrome-ie-browser-security,28797.html

  22. Re: browser is inherently insecure by bobby · · Score: 1

    100% valid answer, I do use those tools but they're not browsers.

    I think that's obvious. The point is: if everyone would adhere to the actual standards, much less testing, kludging, and wheel-spinning would be needed and we'd all be more productive.

  23. Re:This does best job possible (blocking 'em) by Zontar+The+Mindless · · Score: 1

    "(remove spaces between characters & download)"

    That's just sad.

    --
    Il n'y a pas de Planet B.
  24. Re: browser is inherently insecure by drinkypoo · · Score: 1

    I am using Brave on Android and it sucks rocks in many ways, I will probably switch back to Firefox. It is very bad at javascript and lots of things don't work correctly on it. I have a lot of problem with "intelligent" text entry fields, for example. They deselect, or text going into them isn't entered correctly.

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  25. Zontar you're the saddest w/ proof... apk by Anonymous Coward · · Score: 0

    Going to make more sockpuppets to stalk & troll me with you loon https://slashdot.org/comments.... ?

    Sending me postcards with threats too https://slashdot.org/comments.... ??

    Take your meds mentalcase https://slashdot.org/comments....

    You're also a druggie too https://slashdot.org/comments....

    * You're a butthurt loon freak, plain & simple - you did it to yourself, loser... see below for proof.

    APK

    P.S.=> Still trying to live down how I shot you to pieces in the art & science of computing Mr. Butthurt https://slashdot.org/comments.... ?

    How about proving hosts & my program that builds them are useless too https://slashdot.org/comments.... ? ... apk

    1. Re: Zontar you're the saddest w/ proof... apk by Anonymous Coward · · Score: 0

      APK demonstrates once again that he's been stalking Zontar The Mindless for years. APK is an idiotic spammer who's been posting bullshit and attacking users for years to try to cover up the fact that he's a dumbass who can't code worth a shit.

    2. Re: Zontar you're the saddest w/ proof... apk by Anonymous Coward · · Score: 0

      Do you think we are all stupid or blind? I see Zontar the Mindless gave apk crap so apk put out times Zontar stalked him with sockpuppets and like a crazo sent him a postcard with a threat. After reading zontar saying that he takes drugs and is in mental care we know it is you stalking Apk Zontar. Get psychiatric help. You really need it.

    3. Re: Zontar you're the saddest w/ proof... apk by Anonymous Coward · · Score: 0

      It is OK AlecStaar we know you and APK are butt buddies and that you fist his asshole all the time but with how often you just randomly post shit to him it seems he has every right to correctly criticize APK retarded ass.

    4. Re: Zontar you're the saddest w/ proof... apk by Anonymous Coward · · Score: 0

      We know you stalk Apk by unidentifiable anonymous. He dismantles you and it's why you post ac since he tore up your registered sockpuppets of yours too.

    5. Re: Zontar you're the saddest w/ proof... apk by Anonymous Coward · · Score: 0

      It's okay AlecStaar we know you are a bigger retarded shit stain that APK which is why to try to defend him when his ass is getting beaten hard but really APK doens't need your help. Maybe you should stick to fisting APK's asshole.

  26. Prove that about you & I prove you wrong by Anonymous Coward · · Score: 0

    Windows NT Magazine April 1997 "BACK OFFICE PERFORMANCE" pg 61

    (For SuperSpeed.com PAID CONTRACT (wrote SuperCache 40% performance boost) & SuperDisk finalist @ MS Tech Ed 2x in a row 2000-2002 HARDEST CATEGORY: SQLServer Performance Enhancement)

    WINDOWS MAGAZINE 1997 "Top Freeware & Shareware of the Year" issue pg 210 #1 entry

    PC-WELT FEB 1998 pg 84

    WINDOWS MAGAZINE, WINTER 1998 pg 92 MUST HAVE WARE

    PC-WELT FEB 1999 - pg 83

    CHIP Magazine 7/99 - pg 100

    GERMAN PC BOOK Data Becker "PC Aufrusten und Repairen" 2000

    HOT SHAREWARE #46 issue pg. 54 2001

    Paid for article @ PCPitstop in 2008 http://pcpitstop.com/news/winn...

    UltraDefrag64 Process Priority Control credited by lead devs of it in the programs credits section.

    APK Hosts File Engine 10++ 32/64-bit is hosted & RECOMMENDED by Malwarebytes' hpHosts http://hosts-file.net/?s=Downl...

    APK

    P.S.=> What's that you said about me? AND see subject (prove what you say about yourself - you can't)... apk

    1. Re: Prove that about you & I prove you wrong by Anonymous Coward · · Score: 0

      LOLOLOOL. Now you make up stories about yourself? You have no proof you've done any of that. Hell, you are an AC. You might not even be the real person who wrote any of that code.

      Actually, I am Alexander, the child goat raping maniac. How dare you impersonate me. Maybe that's why you claim people impersonate you, because you are guilty of impersonating someone else. So your conscious won't let you live it down:

      TLDR: you didn't do any of that. All lies with no solid proof it was YOU. You are an AC troll just like I am with no creditbility.

      You are a sad sack of shit imposter, I know the real Alexander. And he isn't a soyboy like his AC trolls try to impersonate. You are a soy boy troi hoi big boy. Faggot, to stuff your cock back up moms asshole.

  27. Re: browser is inherently insecure by Anonymous Coward · · Score: 0

    Invented by the same guy who invented javascript. Has a bad javascript engine. That doesn't seem surprising at all.

    Pre-ECMAScript5 (ES5) (some would say ES6/ES2015), javascript sucked. Just find out what was the reason, why was there a huge interval between ES3 and ES5?

  28. Re: browser is inherently insecure by Anonymous Coward · · Score: 0

    You think browsers adhere 100% to the standards?

    That's cute.

  29. Re: This does best job possible (blocking 'em) by Anonymous Coward · · Score: 0

    I know right, the real APK would have wrote a script in Delphi to convert spaces to nothing. This guy is an imposter and not the real APK.

    The "real apk" died a couple years ago, sad really. 2000 if I remember correctly. That was the last time any of us saw the real APK. After that he just died.

  30. Pollywannacracker by Anonymous Coward · · Score: 0

    " An Up-to-Date Browser Should Keep Users Safe From Most Exploit Kits"

    New stuff will keep you safe. Pollywannacracker!
    Buy new stuff! Buy new stuff! *squawk!*

  31. All fact Mr. unidentifiable anonymous stalker by Anonymous Coward · · Score: 0

    All fact Mr. unidentifiable anonymous stalker - easily verified no less (some idiots here ATE THEIR WORDS like yours on it in the past). We're not all "ne'er-do-well" DO-NOTHING trolling and STALKING by anonymous posts like you, you know!

    * That's WHY I call you what you are: JEALOUS "Lil' Jowie" (rotflmao), as you clearly are & nothing more (since you're pitiful, disgusting, lazy & reprehensible).

    APK

    P.S.=> Of course, YOU ARE WELCOME to show you've done MORE, BETTER & EARLIER than my PARTIAL ONLY LIST (only a fraction of what I can put out, some personal favs not even NEAR my 'best' in others' eyes), ok? Go for it (RUN, Forrest: RUN is what you'll do - you always do)... apk

  32. I beat Whipslash/Logan Abbott's bs w/ it easily by Anonymous Coward · · Score: 0

    I do it to beat Whipslash/Logan Abbott's bs (he tries filter blocking me out unfairly but let's my competition thru since they're crippled addons souled-out to advertisers like GOOGLE his MAIN briber who FEAR HOSTS like no tomorrow) & it works.

    Oh, he tries to say "you're spamming" yet it's "OK" for OpenSORES or competing crippled less efficient & less capable browser addon makers to SPAM THEIR SHIT - fuck him, lol & I do, easily & daily HUMILIATING his sorry ass everyday.

    * It's EASY to get the best of SUBPAR substandard UNDEREDUCATED chattering DOLTS who are "lil' TIN plated dictators in their PRIVATE PLAYPENS" online (webmasturbators).

    APK

    P.S.=> It's also "OK" for him to spam his SOURCEFORGE bullshit (Honestly? WTF does ANYONE NEED that shit for anyhow?? What's wrong w/ working on YOUR OWN CODE (vs. RIPPING OFF THE HARD WORK OF OTHERS as the "OpenSORES" crowd does when you come right down to it - minus that. 3/4 of them couldn't have a job minus the place they STEAL OTHERS' HARD WORK FROM calling it "their own"))... apk

  33. Exploit kits? by Anonymous Coward · · Score: 0

    Exploit kits? Exploit kits??

    The issue is not exploit kits. Whether they are effective or not is essentially a footnote in computer security history. The issue is, can we make computers safe for average people, on the internet? We need security by default, without turning our users into security "experts", or "situationally aware users". Think "grandma". Is the computer safe enough for grandma?

    Exploit kits are simply a means to an end for hackers. If the exploit kits lose effectiveness, hackers simply move on to the next thing. The entire history of computing on the internet proves that. There are always enough soft targets for the criminals so they can get their dirty business done. The situation is ripe enough for exploitation that our fearless Sooper Seekrit Agencies also conduct operations, on a global scale, to spy on as many people as they can.

    If we negated the effectiveness of exploit kits, we threw one rock in a river. One rock! The river isn't affected at all and doesn't even notice the rock.

  34. Re: This does best job possible (blocking 'em) by Anonymous Coward · · Score: 0

    I thought the real APK died from rectal bleeding while making one of his underground man moose love videos.

  35. Khyber there's no bigger trash than you by Anonymous Coward · · Score: 0

    Khyber there's no bigger trash than you https://news.slashdot.org/comm... & quit stalking me by anonymous posts loser.

    * You screwed up your own life so don't try take it out on others like myself JEALOUS "Lil' Jowie"...

    APK

    P.S.=> Beaten hard? You beat your future into the grave with that rapsheet of yours you recidivistic nutjob felon... apk

  36. Khyber if anyone has rectal bleeding it's you by Anonymous Coward · · Score: 0

    Khyber if anyone has rectal bleeding it's you from your homosexual deviant activities (with proof) https://news.slashdot.org/comm... doing your "jailhouse rock" time felon.

    * You stuck your own fist up your own ass yourself.

    APK

    P.S.=> Quit stalking me by anonymous unidentifiable posts - I know it's you after that thread link up there loser... apk