This content has been marked as final. Show 1 reply
A malware package orginating from China now offers an exploit for Windows MS08-067 security vulnerability patched in October. This product is sold in the underground markets for around $37.80, although the license notes this tool is for pentesting only. All corporate and home users must stay up-to-date on security patches, as some vulnerabilities are being actively exploited.
MS08-067 Exploit - Featured in Chinese commercial malware kit
QUOTE: Probably the most widely reported topic in the Chinese Security community this month will be the availability of a commercial MS08-067 attack pack, customized for Chinese users. On October 26th, 2008, exploit code was posted on to a well-known public repository site. In a few days, malware kit author, WolfTeeth, was quick to sell a MS08-067 port scanning tool with attack capability to his “customers”, using free code from the Internet.
Both kits offers a free version, and a commercial version with enhanced features including:
• Kernel rootkit.
• Anti-virus software termination.
• Weekly anti-virus detection monitoring and evasion service.
• Web DDOS attack option