Nettitude’s security researchers are always on the lookout for attack trends and changes in the cyber threat landscape. Our team has recently found malicious content embedded in Graphics Interchange Format (GIF) image files, which when uploaded to a vulnerable server, can result in the complete or partial compromise of the host. The vulnerabilities targeted by this exploit can be found either entirely within a poorly coded web application or in a poorly configured hosting environment.
In a typical instance, a malicious file could be uploaded to a site by an attacker who has selected the image as their profile picture. Alternatively, users may have uploaded attachments to other content, such as photographic evidence on insurance forms, for instance.
Nettitude’s new Threat Advisory Report details how a host could be successfully compromised, with advice for organisations on how to mitigate the threat from this form of attack.
The full report is available to download here: Request the Threat Advisory Report
Contact Nettitude’s editor for further information by emailing firstname.lastname@example.org.