While the authors/support teams of some of the market leading Web malware exploitation kits are competing on their way to be the first kit to introduce a new exploit on a mass scale, others, largely influenced by the re-emergence of the DIY (do-it-yourself) trend across the cybercrime ecosystem, continue relying on good old fashioned social engineering attacks.
In this post, I’ll profile a beneath-the-radar type of DIY Java-based botnet building tool, which is served through the usual unsigned, yet malicious Java applet.
read more..........http://blog.webroot.com/2013/04/01/diy-java-based-rat-remote-access-tool-spotted-in-the-wild/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:+WebrootThreatBlog+(Webroot+Threat+Blog)