For HomeFor BusinessFor Partners
Industry News
2 min read

Rent Custom Cool Exploit Kit for 10,000 Bucks a Month

Loredana BOTEZATU

January 08, 2013

Promo Protect all your devices, without slowing them down.
Free 30-day trial
Rent Custom Cool Exploit Kit for 10,000 Bucks a Month

The author of the world`s most popular exploit kit – the BlackHole – decided to expand his business and demand huge sums of money for a high-end crime pack dubbed Cool Exploit Kit. Unlike others, this pack is pitched as exclusive clientele and will contain fresh, unmitigated exploits.

Exploit packs are collections of browser and browser plug-in exploits hosted on compromised or malicious websites. When victims land on these websites, the visitor`s browser and plugins are probed for known vulnerabilities and then malicious code targeting these vulnerabilities is executed in order to plant malware without user`s interaction.

While renting a basic BlackHole crime pack costs a crook up to $1,500 a year plus an optional monthly $500 for hosting, the Cool Exploit Kit framework is appraised at $10,000 a month.

According to KrebsOnSecurity, an associate of Paunch (the leader of the online crime gang that created BlackHole) made a bold announcement on an underground cybercrime forum, saying that he and his team will venture into a new project that involves unique browser plugin exploits and vulnerabilities.

“We are setting aside a $100K budget to purchase browser and browser plug-in vulnerabilities, which are going to be used exclusively by us, without being released to public (not counting the situations, when a vulnerability is made public not because of us)” the forum posting reads. “Not only do we purchase weaponized (ready) exploits, but also their descriptions and proof of concepts (with subsequent joint work with our specialists).”

A French researcher calling himself Kafeine found the worrisome connection between exploit packs and some ransomware-type attacks, and linked the BlackHole exploit pack to the new Cool Exploit Kit.

With exclusive new exploits, fresh vulnerabilities and improvements of existing vulnerabilities that are not released to public, this project means business. Despite its costs, it appears at least two buyers have already subscribed to this new weaponized exploit pack to use it in ransomware-type attacks.

We may hear a whole lot about this exploit kit in the months to come.

tags

Industry News

Author

Loredana BOTEZATU

Loredana BOTEZATU

A blend of product manager and journalist with a pinch of e-threat analysis, Loredana writes mostly about malware and spam. She believes that most errors happen between the keyboard and the chair.

View all posts

Right now Top posts

Spam trends of the week: Crypto giveaways, false prophets, Fintech phishing scams and more hit user inboxes worldwide
Scam Spam

Spam trends of the week: Crypto giveaways, false prophets, Fintech phishing scams and more hit user inboxes worldwide

April 19, 2024

5 min read
Start Cyber Resilience and Don’t Be an April Fool This Spring and Beyond
Scam How to Tips and Tricks

Start Cyber Resilience and Don’t Be an April Fool This Spring and Beyond

April 01, 2024

2 min read
Spam trends of the week: Cybercrooks phish for QuickBooks, American Express and banking accounts
Spam Industry News Threats

Spam trends of the week: Cybercrooks phish for QuickBooks, American Express and banking accounts

November 28, 2023

4 min read
Protecting your important: Stick to these 8 cybersecurity tips for safe Black Friday and Cyber Monday deal hunting
Protecting Your Important How to Tips and Tricks

Protecting your important: Stick to these 8 cybersecurity tips for safe Black Friday and Cyber Monday deal hunting

November 08, 2023

4 min read

FOLLOW US ON SOCIAL MEDIA

You might also like

How to keep your Android device immune to malicious vaccine themed apps
Archive

How to keep your Android device immune to malicious vaccine themed apps
Cristina POPOV

April 22, 2021

2 min read
Facebook Takes Down Two Hacking Groups Operating out of Palestine
Archive Industry News

Facebook Takes Down Two Hacking Groups Operating out of Palestine
Silviu STAHIE

April 22, 2021

2 min read
Ransomware attack causes supermarket cheese shortage in the Netherlands
Archive

Ransomware attack causes supermarket cheese shortage in the Netherlands
Graham CLULEY

April 13, 2021

2 min read

Bookmarks

loader