• caglararli@hotmail.com
  • 05386281520

Campaign Leverages RFI Attacks to Deploy Phishing Kits

Çağlar Arlı      -    63 Views

Campaign Leverages RFI Attacks to Deploy Phishing Kits

A recently detected series of targeted attacks is attempting to exploit Remote File Inclusion (RFI) vulnerabilities to deploy phishing kits, Akamai has discovered.

RFI attacks attempt to exploit unchecked or improperly validated inclusion functions within vulnerable applications or websites. Most of these attacks target PHP, but these vulnerabilities can also be found in Java, ASP, and elsewhere.

Once an RFI attack is successful, the server would deliver the content of the...
Campaign Leverages RFI Attacks to Deploy Phishing Kits