The RIG Exploit Kit is currently experiencing its most successful period, with around 2,000 attempted intrusions every day, and a success rate of approximately 30%, the highest ratio in the exploit kit's long history of operation. Exploiting older vulnerabilities in Internet Explorer, the RIG EK has been distributing various types of malware, such as Dridex, SmokeLoader, and RaccoonStealer. Researchers from Prodaft, who gained access to the service's backend web panel, provided a detailed report, indicating that the exploit kit continues to pose a significant threat to individuals and organizations on a large scale. RIG EK, which was introduced in 2014, has been marketed as an “exploit as-a-service” that can be leased by malware operations to distribute their malware on susceptible devices. RIG exploit kit compromises malicious JavaScript's that have been inserted into hacked in malicious websites by threat actors. These scripts are then disseminated trough malvertising tactics.
Read more here.
