Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

In the overwhelming sea of information, access to timely, insightful and independent open-source intelligence (OSINT) analyses is crucial for maintaining the necessary situational awareness to stay on the top of emerging security threats. This blog covers trends and fads, tactics and strategies, intersecting with third-party research, speculations and real-time CYBERINT assessments, all packed with sarcastic attitude

Thursday, February 05, 2009

Summarizing Zero Day's Posts for January

The following is a brief summary of all of my posts at ZDNet's Zero Day for January. You can also go through previous summaries for December, November, October, September, August and July, as well as subscribe to my personal RSS feed or Zero Day's main feed.

Notable articles for January include Microsoft study debunks phishing profitability; Legal concerns stop researchers from disrupting the Storm Worm botnet and Google Video search results poisoned to serve malware.

01. Thousands of Israeli web sites under attack
02. Bogus LinkedIn profiles serving malware
03. Microsoft study debunks phishing profitability
04. Paris Hilton's official web site serving malware
05. Malware author greets Microsoft's Windows Defender team
06. 3.5m hosts affected by the Conficker worm globally
07. GoDaddy hit by a DDoS attack
08. Legal concerns stop researchers from disrupting the Storm Worm botnet
09. Malware-infected WinRAR distributed through Google AdWords
10. New mobile malware silently transfers account credit
11. GPU-Accelerated Wi-Fi password cracking goes mainstream
12. Google Video search results poisoned to serve malware

Posted by Dancho Danchev at Thursday, February 05, 2009  

Newer Post Older Post Home

About Me

My Photo
Dancho Danchev
Independent Security Consultancy, Threat Intell Analyses and Competitive Intelligence research on Demand. Insightful, unbiased, and client-tailored assessments, neatly communicated in the form of interactive reports - because anticipating the emerging threatscape is what shapes the big picture at the end of the day. Approach me at dancho.danchev@gmail.com
View my complete profile

Add Feed to RSS Reader

AddThis Feed Button

FeedBurner FeedCount

Readers Online

hit counter

Subscribe to this Blog

Your email address:


Powered by FeedBlitz

Blog Archive

  • ▼  2009 (108)
    • ►  December (4)
      • Celebrity-Themed Scareware Campaign Abusing DocSto...
      • Keeping Reshipping Mule Recruiters on a Short Leas...
      • Celebrity-Themed Scareware Campaign Abusing DocSto...
      • Pushdo Injecting Bogus Swine Flu Vaccine
    • ►  November (9)
      • Summarizing Zero Day's Posts for November
      • Koobface Botnet Starts Serving Client-Side Exploit...
      • Scareware Campaign Using Google Sponsored Links
      • "Your mailbox has been deactivated" Spam Campaign ...
      • Massive Scareware Serving Blackhat SEO, the Koobfa...
      • Keeping Money Mule Recruiters on a Short Leash
      • Koobface Botnet's Scareware Business Model - Part ...
      • Pricing Scheme for a DDoS Extortion Attack
      • Summarizing Zero Day's Posts for October
    • ►  October (6)
      • Ongoing FDIC Spam Campaign Serves Zeus Crimeware
      • Koobface Botnet Redirects Facebook's IP Space to m...
      • Scareware Serving Conficker.B Infection Alerts Spa...
      • Koobface Botnet Dissected in a TrendMicro Report
      • Standardizing the Money Mule Recruitment Process
      • Summarizing Zero Day's Posts for September
    • ►  September (7)
      • Dissecting September's Twitter Scareware Campaign
      • The Ultimate Guide to Scareware Protection
      • Koobface Botnet's Scareware Business Model
      • Ukrainian "Fan Club" Features Malvertisement at NY...
      • News Items Themed Blackhat SEO Campaign Still Acti...
      • SMS Ransomware Displays Persistent Inline Ads
      • Summarizing Zero Day's Posts for August
    • ►  August (9)
      • 6th SMS Ransomware Variant Offered for Sale
      • Movement on the Koobface Front - Part Two
      • Dissecting the Ongoing U.S Federal Forms Themed Bl...
      • U.S Federal Forms Blackhat SEO Themed Scareware Ca...
      • Blackhat SEO Campaign Hijacks U.S Federal Form Key...
      • Scareware Template Localized to Arabic
      • Movement on the Koobface Front
      • Managed Polymorphic Script Obfuscation Services
      • Summarizing Zero Day's Posts for July
    • ►  July (12)
      • Social Engineering Driven Web Malware Exploitation...
      • 5th SMS Ransomware Variant Offered for Sale
      • A Diverse Portfolio of Fake Security Software - Pa...
      • Koobface - Come Out, Come Out, Wherever You Are
      • From Ukraine with Bogus Twitter, LinkedIn and Scri...
      • 4th SMS Ransomware Variant Offered for Sale
      • Dissecting Koobface Worm's Twitter Campaign
      • Transmitter.C Mobile Malware in the Wild
      • Legitimate Software Typosquatted in SMS Micro-Paym...
      • The Multitasking Fast-Flux Botnet that Wants to Ba...
      • A Diverse Portfolio of Fake Security Software - Pa...
      • Summarizing Zero Day's Posts for June
    • ►  June (10)
      • A Peek Inside the Managed Blackhat SEO Ecosystem
      • From Ukraine with Scareware Serving Tweets, Bogus ...
      • Iranian Opposition DDoS-es pro-Ahmadinejad Sites
    • ►  May (8)
    • ►  April (11)
    • ►  March (10)
    • ▼  February (12)
      • Inside a DIY Image Spam Generating Traffic Managem...
      • Help! Someone Hijacked my 100k+ Zeus Botnet!
      • The Cost of Anonymizing a Cybercriminal's Internet...
      • Fake Celebrity Video Sites Serving Malware - Part ...
      • Pharmaceutical Spammers Targeting LinkedIn
      • Community-driven Revenue Sharing Scheme for CAPTCH...
      • Fake Codec Serving Domains from Digg.com's Comment...
      • Quality Assurance in a Managed Spamming Service
      • Summarizing Zero Day's Posts for January
      • A Diverse Portfolio of Fake Security Software - Pa...
      • Crimeware in the Middle - Adrenalin
      • The Template-ization of Malware Serving Sites - Pa...
    • ►  January (10)
  • ►  2008 (262)
    • ►  December (9)
    • ►  November (15)
    • ►  October (25)
    • ►  September (17)
    • ►  August (25)
    • ►  July (34)
    • ►  June (19)
    • ►  May (33)
    • ►  April (30)
    • ►  March (19)
    • ►  February (22)
    • ►  January (14)
  • ►  2007 (333)
    • ►  December (21)
    • ►  November (34)
    • ►  October (32)
    • ►  September (27)
    • ►  August (25)
    • ►  July (22)
    • ►  June (20)
    • ►  May (30)
    • ►  April (20)
    • ►  March (41)
    • ►  February (32)
    • ►  January (29)
  • ►  2006 (313)
    • ►  December (14)
    • ►  November (20)
    • ►  October (28)
    • ►  September (40)
    • ►  August (27)
    • ►  July (28)
    • ►  June (29)
    • ►  May (33)
    • ►  April (20)
    • ►  March (19)
    • ►  February (23)
    • ►  January (32)
  • ►  2005 (5)
    • ►  December (5)

Featured Publications/Articles

  • Phishing Metamorphosis in 2007 - Trends and Developments
  • Popular Spammers Strategies and Tactics
  • Malware - Future Trends - 2006
  • Building and Implementing a Successful Information Security Policy

Infowar Blogosphere

  • Anti-Malware Engineering Team
  • Anti-Virus Rants
  • Anton Chuvakin
  • Arbor Network's Blog
  • BoingBoing
  • CERIAS
  • Chinese Hacking Community
  • Counterterrorism Blog
  • Darknet Hackers
  • DefenseTech
  • Determina Security Blog
  • Errata Security
  • Exploit Prevention Labs
  • F-Secure Labs Blog
  • FAS on Secrecy
  • FAS Strategic Security Blog
  • Fergie's Tech Blog
  • Finjan's MCRC Blog
  • Frequency X Blog
  • GNUCitizen's Blog
  • Honeyblog
  • Internet Anthropologist T.T.
  • Internet Haganah
  • Internet Storm Center
  • Jeremiah Grossman
  • Jihad Watch
  • Kaspersky Labs Blog
  • Lance Spitzner
  • McAfee Avert Labs Blog
  • Mike Davis
  • PandaSecurity Labs
  • Prevx's Blog
  • Richard Bejtlich's TaoSecurity
  • RSA's Security Blog
  • Russian Business Network
  • Ryan Naraine's Security Watch
  • ScanSafe's Blog
  • Secure Works Labs
  • Sophos Labs Blog
  • SpywareGuide Greynets Blog
  • Sunbelt Labs
  • Symantec Security Response
  • The Black Flag
  • The Jawa Report
  • Threat Level
  • Trend Micro Labs
  • UK Honeynet Project's Blog
  • Web Application Security Labs
  • WebSense labs
  • Wired's Danger Room
  • ZDNet's Zero Day

Jiglu - Topical Tag Cloud


Random Infowar Videos

Loading...