“This technique uses AES encryption instead of B64 or simple XOR routines write new content to the page at load time,” said a Ring 0 Labs representative in an email to Threatpost. “Since this is a newer technique, it can be fairly effective at avoiding scanning services and crawlers that aim to detect these types of sites. But like anything, these services will surely catch on to this technique and adapt accordingly.”
https://threatpost.com/researchers-find-phishing-site-encrypted-with-aes/127424/
Leave a Comment
You must be logged in to post a comment.