Feedly:Securelist - Information about Viruses, Hackers and Spam. Attacking Diffie-Hellman protocol implementation in the Angler Exploit Kit

from Securelist - Information about Viruses, Hackers and Spam

In Angler, threat actors used the Diffie-Hellman protocol to creating difficulties in firewall detection of the exploit and also making it harder for the analysts to get the exploit code. However, the experts from Kaspersky Lab managed to perform a successful attack against Diffie-Hellman protocol implementation and decipher the shellcode.