Neosploit is back!!!

October 2008

Hackers resurrect notorious attack tool kit. Neosploit, the notorious hacker exploit kit that some thought had been retired months ago, has not only returned from the dead, but is responsible for a dramatic increase in attacks, a security researcher claimed today. “Neosploit’s back,” said the director of security research at Aladdin Knowledge Systems Inc. In July, researchers at RSA’s FraudAction Research Lab said that they had evidence that the creators of Neosploit were abandoning the business. For proof, RSA quoted a going-out-of-business message said to have originated with Neosploit’s authors. Neosploit, which first appeared in 2007, was a follow-on to the earlier MPack and a contemporary to another infamous exploit kit, WebAttacker. Those kits, including Neosploit, were used by cybercriminals to launch attack codes aimed at new vulnerabilities in Windows, Internet Explorer or third-party software such as Apple Inc.’s QuickTime. But Neosploit also boasted features new to the click-to-attack business, including sophisticated statistical analysis and management tools.