Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Rare Steganography Hack Can Compromise Fully Patched Websites
#1
Quote:Attackers are hiding PHP scripts in EXIF headers of JPEG images to hack websites, just by uploading an image.

An unusual steganographic technique that an attacker can use to implant a malicious webshell on unsuspecting websites has been spotted in Latin America. According to research from Trustwave shared exclusively with Threatpost, a forensic investigation showed that an adversary is implanting PHP code into JPEG files’ EXIF headers in order to upload malware onto targeted websites.

Hiding malware in an image file is a well-known way to circumvent detection –many filters and gateways let image file formats pass without too much scrutiny. But the unique benefit of this specific technique is that it can be used to compromise even a fully patched, up-to-date website with no obvious vulnerabilities – just by uploading an image to a website.

“PHP provides a nice function that allows you to read out and parse EXIF data, so if you target a website that allows you to upload images and also uses PHP scripts, you can essentially upload any malware you want,” explained Karl Sigler, a security research manager at Trustwave SpiderLabs.

Continue reading HERE
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Critical RCE bug patched in Netgear ProSAFE Plus switches Bjyda 0 2,265 03-11-2021 , 10:29 PM
Last Post: Bjyda
  Three New Vulnerabilities Patched in OpenSSL Bjyda 0 639 02-18-2021 , 12:26 AM
Last Post: Bjyda
  Google Discloses Poorly-Patched, Now Unpatched, Windows 0-Day Bug Bjyda 0 820 12-25-2020 , 12:43 AM
Last Post: Bjyda
  Microsoft Teams patched against image-based account takeover tarekma7 0 1,247 04-27-2020 , 11:24 PM
Last Post: tarekma7
  Here’s the Netflix account compromise Bugcrowd doesn’t want you to know about sidemoon 0 1,315 03-20-2020 , 07:17 PM
Last Post: sidemoon

Forum Jump:


Users browsing this thread: 1 Guest(s)