Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
New browser attack lets hackers run bad code even after users leave a web page
#1
Quote:Academics from Greece have devised a new browser-based attack that can allow hackers to run malicious code inside users' browsers even after users have closed or navigated away from the web page on which they got infected.

This new attack, called MarioNet, opens the door for assembling giant botnets from users' browsers. These botnets can be used for in-browser crypto-mining (cryptojacking), DDoS attacks, malicious files hosting/sharing, distributed password cracking, creating proxy networks, advertising click-fraud, and traffic stats boosting, researchers said.
In their research paper, the research crew also describes methods through which MarioNet could avoid detected by anti-malware browser extensions and anti-mining countermeasures, and also puts forward several mitigations that browser makers could take.

The MarioNet attack will be presented today at the NDSS 2019 conference in San Diego, USA. More details about MarioNet are available in an accompanying research paper entitled "Master of Web Puppets: Abusing Web Browsers for Persistent and Stealthy Computation," available for download in PDF format from here.

[Image: nhbrlTB.png]
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  TikTok denies security breach after hackers leak user data, source code tarekma7 0 374 09-06-2022 , 10:19 AM
Last Post: tarekma7
  Chinese hackers use Windows zero-day to attack defense, IT firms mrtrout 0 331 10-12-2021 , 10:34 PM
Last Post: mrtrout
  New macOS zero-day bug lets attackers run commands remotely mrtrout 0 327 09-21-2021 , 09:48 PM
Last Post: mrtrout
  Hackers Steal FIFA 21 Source Code, Tools in EA Breach baziroll 0 478 06-11-2021 , 07:50 PM
Last Post: baziroll
  New Bugs Could Let Hackers Bypass Spectre Attack Mitigations On Linux Systems Bjyda 0 558 03-29-2021 , 05:07 PM
Last Post: Bjyda

Forum Jump:


Users browsing this thread: 1 Guest(s)