Neosploit is alive, well and infecting websites around the world

1 min read

Despite being widely believed to be ‘out of business’, cyber criminal tool Neosploit is alive, well – and is infecting hundreds of thousands of websites worldwide.

So says Ian Amit, director of security research at Aladdin Knowledge Systems, which has discovered a highly enhanced Neosploit 3.1 that uses PDF traffic. Amit says he is working with law enforcement agencies around the globe to identify infections and inform organisations. “It’s clear that Neospolit actually planned to create Neosploit 3.1 and has actually made it available for at least the last few weeks on a significant scale,” he says. He believes the eCrime tool has been under security experts’ noses for a while – basing his claim on a huge increase in PDF exploits that were not a new threat, but a key tool within the new Neosploit 3.1. It’s an instance where the business side of running cybercrime operations has pulled a fast one on the thousands of experts tasked with following the latest web threats,” says Amit.