The Neutrino exploit kit has a new way to detect security researchers
The developers of the Neutrino exploit kit have added a new feature intended to thwart security researchers from studying their attacks.
The feature was discovered after Trustwave’s SpiderLabs division found computers they were using for research couldn’t make a connection with servers that delivered Neutrino.
“The environment seems completely fine except for when accessing Neutrino,” wrote Daniel Chechik, senior security researcher.
Exploit kits are one of the most effective ways that cybercriminals can infect computers with malware. They find vulnerable websites and plant code that transparently connects with another server that tries to exploit software vulnerabilities.