The Angler exploit kit took over from Blackhole as the tool of choice for the discerning malware writer, achieving a position of prominence among web exploit kits, not last due to the extreme variety of exploits used. While Angler doesn’t actually do zero-day exploitation, the team developing it tries to stay ahead of the defenses by developing working exploit code before possible targets actually get patched.
In this new Labs research paper, Bitdefender researcher Mihai Neagu takes an in-depth look at the Angler exploit kit code, detailing exploitation techniques and possible mitigation strategies for Silverlight:
Analysis of Angler Silverlight Exploit