Jump to content

How to Snort your Quantum insert!

atiustira

By atiustira
in Security & Networking

 Share

Recommended Posts

atiustira

atiustira

Posted
Posted (edited)

Source: Wired

"Quantum Insert is useful for getting at machines that can’t be reached through phishing attacks. It works by hijacking a browser as it’s trying to access web pages and forcing it to visit a malicious web page, rather than the page the target intend to visit. The attackers can then surreptitiously download malware onto the target’s machine from the rogue web page."

 

Interesting but I am sure it is only in rare cases! And besides we are talking about the NSA. I mean real hackers would not have access to his stuff right?

 

"But now security researchers with Fox-IT in the Netherlands, who helped investigate that hack against Belgacom, have found a way to detect Quantum Insert attacks using common intrusion detection tools such as Snort, Bro and Suricata."

 

Well I will be darned what will those techies think of next!

 

Git hub link to the snort code.

Edited by atiustira
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...