Tuesday, November 30, 2021

Happy Birthday!


Happy birthday!


God bless and let's don't forget about the rest!



Stay tuned!

U.K's National Cyber Security Centre Releases Its Annual Report - An Analysis

U.K's National Cyber Security Centre has just released its 2021 annual report which includes some pretty interesting findings from what appears to be a pretty modern and relevant fraud report infrastructure in the U.K where users can report cyber fraud incidents including actual cybercrime incidents and basically get the necessary assistance where the actual Center is responsible for taking offline the majority of fraudulent campaigns and actually offering the necessary assistance to victims from within the U.K.

Some of the key findings include:

"Our pioneering Active Cyber Defence programme has taken down 2.3 million cyber-enabled commodity campaigns – including 442 phishing campaigns using NHS branding and 80 illegitimate NHS apps hosted and available to download outside of official app stores."

"Our Suspicious Email Reporting Service has received 5.4 million reports from the public of potentially malicious material – leading to the removal of more than 50,500 scams and more than 90,100 malicious URLs."

Recommended reading:

Monday, November 29, 2021

Exposing Aleksandr Zhukov from the Media Methane Rogue Fraudulent and Malicious Advertising Enterprise - An OSINT Analysis

Following the recent revelations and actual U.S DoJ bust and lawsuit against Aleksandr Zhukov from Media Methane responsible for the MethBrowser ad-fraud scheme I've decided to take a little bit deeper look inside its online infrastructure and actually elaborate more on the fraudulent practices applied by the group including to offer practical and relevant actionable intelligence in terms of exposing the group's online infrastructure.

In this post I'll discuss the group's online infrastructure and elaborate more on some of the key individuals behind the gang with the idea to empower the security community and U.S Law Enforcement with the necessary data and information to track down and prosecute the cybercriminals behind these campaigns.

Rogue Company Name: Media Methane
Rogue Company Product: MethBrowser

Rogue online infrastructure provider:

host1plus / DIGITAL ENERGY TECHNOLOGIES

inetnum: 179.61.128/17
inetnum: 181.41.192/19
inetnum: 181.214/15
inetnum: 191.96/16
inetnum: 191.101/16

Speed Home Internet LTD
US online LTD
Dallas online LTD
Home Internet Orang LTD
ATOL Intertnet
CH wireless
SecureShield LLC
HomeChicago Int
AmOL wireless Net
Verison Home Provider LTD

Rogue netblocks known to have been involved in the campaign:
45.33.224.0/20
45.43.128.0/21
45.43.136.0/22
45.43.140.0/23
45.43.144.0/20
45.43.160.0/19
64.137.0.0/20
64.137.16.0/21
64.137.24.0/22
64.137.30.0/23
64.137.32.0/20
64.137.48.0/21
64.137.60.0/22
64.137.64.0/18
104.143.224.0/19
104.222.160.0/19
104.233.0.0/18
104.238.0.0/19
104.239.0.0/19
104.239.32.0/20
104.239.48.0/21
104.239.56.0/23
104.239.60.0/22
104.239.64.0/18
104.243.192.0/20
104.248.0.0/16
104.249.0.0/18
104.250.192.0/19
160.184.0.0/16
161.8.128.0/17
165.52.0.0/14
168.211.0.0/16
179.61.129.0/24
179.61.137.0/24
179.61.196.0/24
179.61.202.0/24
179.61.208.0/24
179.61.216.0/24
179.61.218.0/23
179.61.229.0/24
179.61.230.0/23
179.61.233.0/24
179.61.234.0/23
179.61.237.0/24
179.61.239.0/24
179.61.242.0/24
181.41.199.0/24
181.41.200.0/24
181.41.202.0/24
181.41.204.0/24
181.41.206.0/23
181.41.208.0/24
181.41.213.0/24
181.41.215.0/24
181.41.216.0/24
181.41.218.0/24
181.214.5.0/24
181.214.7.0/24
181.214.9.0/24
181.214.11.0/24
181.214.13.0/24
181.214.15.0/24
181.214.17.0/24
181.214.19.0/24
181.214.21.0/24
181.214.23.0/24
181.214.25.0/24
181.214.27.0/24
181.214.29.0/24
181.214.31.0/24
181.214.39.0/24
181.214.41.0/24
181.214.43.0/24
181.214.45.0/24
181.214.47.0/24
181.214.49.0/24
181.214.57.0/24
181.214.71.0/24
181.214.72.0/21
181.214.80.0/21
181.214.88.0/23
181.214.94.0/23
181.214.96.0/19
181.214.160.0/21
181.214.168.0/22
181.214.172.0/23
181.214.175.0/24
181.214.176.0/20
181.214.192.0/21
181.214.200.0/22
181.214.214.0/23
181.214.216.0/21
181.214.224.0/20
181.214.240.0/22
181.215.5.0/24
181.215.7.0/24
181.215.9.0/24
181.215.11.0/24
181.215.13.0/24
181.215.15.0/24
181.215.17.0/24
181.215.19.0/24
181.215.21.0/24
181.215.23.0/24
181.215.25.0/24
181.215.27.0/24
181.215.29.0/24
181.215.31.0/24
181.215.33.0/24
181.215.35.0/24
181.215.37.0/24
181.215.39.0/24
181.215.41.0/24
181.215.43.0/24
181.215.45.0/24
181.215.47.0/24
181.215.50.0/23
181.215.52.0/22
181.215.56.0/21
181.215.64.0/20
181.215.80.0/21
188.42.0.0/21
191.96.0.0/24
191.96.16.0/24
191.96.18.0/24
191.96.21.0/24
191.96.23.0/24
191.96.29.0/24
191.96.30.0/24
191.96.39.0/24
191.96.40.0/23
191.96.43.0/24
191.96.44.0/22
191.96.50.0/23
191.96.52.0/22
191.96.56.0/22
191.96.60.0/23
191.96.62.0/24
191.96.69.0/24
191.96.70.0/23
191.96.72.0/23
191.96.74.0/24
191.96.76.0/22
191.96.80.0/21
191.96.88.0/22
191.96.92.0/24
191.96.94.0/24
191.96.96.0/23
191.96.108.0/23
191.96.110.0/24
191.96.113.0/24
191.96.114.0/24
191.96.116.0/23
191.96.119.0/24
191.96.120.0/23
191.96.122.0/24
191.96.124.0/22
191.96.133.0/24
191.96.134.0/24
191.96.138.0/24
191.96.140.0/24
191.96.145.0/24
191.96.148.0/24
191.96.150.0/24
191.96.152.0/21
191.96.160.0/22
191.96.164.0/24
191.96.168.0/24
191.96.170.0/24
191.96.172.0/24
191.96.174.0/24
191.96.177.0/24
191.96.178.0/23
191.96.182.0/24
191.96.185.0/24
191.96.186.0/23
191.96.189.0/24
191.96.190.0/24
191.96.193.0/24
191.96.194.0/24
191.96.196.0/22
191.96.200.0/23
191.96.203.0/24
191.96.210.0/24
191.96.212.0/23
191.96.214.0/24
191.96.221.0/24
191.96.222.0/23
191.96.226.0/23
191.96.232.0/24
191.96.234.0/23
191.96.236.0/23
191.96.239.0/24
191.96.244.0/24
191.96.246.0/24
191.101.25.0/24
191.101.36.0/22
191.101.40.0/21
191.101.128.0/22
191.101.132.0/23
191.101.134.0/24
191.101.146.0/23
191.101.148.0/23
191.101.176.0/23
191.101.182.0/24
191.101.184.0/22
191.101.188.0/23
191.101.192.0/22
191.101.196.0/23
191.101.204.0/22
191.101.216.0/22
191.101.220.0/24
191.101.222.0/23
196.62.0.0/16
204.52.96.0/20
204.52.112.0/22
204.52.116.0/23
204.52.120.0/23
204.52.122.0/24
204.52.124.0/22
206.124.104.0/21
209.192.128.0/19
216.173.64.0/18

Rogue domains known to have been involved in the campaign:
adzos.com
clickandia.com
webvideocore.com
clickservers.net
clickmediallc.net
mobapptrack.com
rtbclick.net
xmlsearchresult.com

Sample personal email address accounts known to have been involved in the campaign:
adw0rd.yandex.ru@gmail.com
clickandia@yahoo.com

Rogue Facebook profiles belonging to company employees include:
https://www.facebook.com/oleksandr.beletskyi
https://www.facebook.com/rowan.villaluz

















Stay tuned!

Sunday, November 28, 2021

Microsoft Releases Its MSRC Researcher Recognition Program Award Winners - An Analysis

Microsoft has recently released its MSRC Researcher Recognition Program Award Winners that basically covers several key areas of vulnerability research categories that are basically targeting a variety of Microsoft-based online platforms products and services where the researchers directly contribute with their knowledge and know-how for the purpose of sharing actionable intelligence and actual PoC (Proof of  Concept) code that's basically capable of exploiting various vulnerabilities in various Microsoft products and services and actually earn a reward.

 

These internal bug-bounty and actual public and private sector including crowd-sourced vulnerability and research based programs actually help Microsoft on its way to secure its products and services while the company publicly offers researcher and contributor recognition which can greatly contribute to a researcher's portfolio of research services and actually help the company secure its products and services.

 

The company is prone to make an additional impact by publicly promoting the MSRC Researcher Recognition Program Award Winners including its active collaboration with TrendMicro's Zero Day Initiative.

 

The more the marrier.

 

A Profile of a Bulgarian Kidnapper – Pavlin Georgiev (Павлин Георгиев/Васил Моев Гачевски/Явор Колев) – An Elaboration on Dancho Danchev’s Disappearance circa 2010 – An Analysis

Dear blog readers,

I've decided to let everyone know that following a successful kidnapping attempt and home molestation attempt which was successful using doctors and local police officers from the Bulgaria city of Troyan using corruption where I've lost approximately $85,000 due to home molestation and illegal doctor interference I'm about to submit an official complaint to Bulgaria's Ministry of Interior citing possible police officer crime and home molestation and illegal kidnapping attempt which was illegal and was using my stolen ID from my place where I was dragged out of my place with force by three local police officers from the Bulgaria town of Troyan following a visit and a knock on my door by two unknown people the previous day where one on them showed me a copy of his ID and the other was waiting for him in my a place.

 

Sample personally identifiable information regarding these individuals including primary contact points in case someone is concerned about my whereabouts include:

hxxp://troyan-police.com
hxxp://mbal-troyan.com
hxxp://central-hotel.com/en
hxxp://universalstroi.com



 

Personal names of Local Law Enforcement Officers from the town of Troyan, Bulgaria responsible for my illegal arrest home molestation stolen ID and holding me hostage including the loss of $85,000 five years later due to home molestation include:

 

Марин Моев Маринов
Павлин Стоянов Георгиев
Красимир Михов Колев
Тихомир Найденов Славков
Стефан Иванов Милев
Анатоли Пламенов Трифонов
Станимир Цочев Инковски
Иван Недялков Иванов
Мирослав Стойков Михайлов
Васил Моев Гачевски
Божидар Банков Петров
Веско Цветанов Минков
Момчил Стефанов Цочев
Минко Стоянов Минков
Георги Митков Илиев


Sample personally identifiable information regarding these individuals including primary contact points in case someone is concerned about my whereabouts include:

 

https://www.facebook.com/nesho.sheygunov
hxxp://www.facebook.com/hristo.radionov
hxxp://www.facebook.com/ivodivo
hxxp://www.facebook.com/dobrin.danchev
hxxp://www.sibir.bg/parachut
http://otkrovenia.com/bg/profile/innadancheva

 

Primary contact points in case someone is concerned about my well being and whereabouts include:

Troyan Police - Email: police_troyan@abv.bg
Troyan Hospital - Email: mbal_troyan@abv.bg
Lovech Psychiatry Clinic - Email: dpblovech@abv.bg
Troyan Municipality - Email: mail@troyan.bg



Primary contact points in case someone is concerned about my well being and whereabouts include:

Email: dans@dans.bg
Telefon za korupciq na slujiteli na MVR - 02 / 982 22 22
GDBOP - Signal za korupciq i izpirane na pari - gdbop@mvr.bg
Nachalnik RPU Troyan - rutr.lo@mvr.bg
Troyan Police - Email: police_troyan@abv.bg
Troyan Hospital - Email: mbal_troyan@abv.bg
Lovech Psychiatry Clinic - Email: dpblovech@abv.bg
Troyan Municipality - Email: mail@troyan.bg


Personal names of Local Law Enforcement Officers from the town of Troyan, Bulgaria responsible for my illegal arrest home molestation stolen ID and holding me hostage including the loss of $85,000 five years later due to home molestation include:

Радостина Петкова
Милен Мешевоян
Петър Банчев
Стела Севданскан
Полина Стойкова
Гадьо Миревски
Галя Иванова
Валентин Петков
Иво Божинов
Петко Колев
Александър Костов

Венцислав Дочев
Димитър Банчев
Деян Димитров
Милен Бочев
Веско Минков
Васил Гачевски
Милко Стайков

Момчил Цочев
Иван Бочев
Симеон Чавдаров

Илиян Миревски
Павлин Георгиев
Станимир Пенков
Петко Петров
Владислав Краев

Петранка Марковска



 Stay tuned!

Saturday, November 27, 2021

Israel's Spyware Vendor NSO Group Restrics Spyware Exports List to 37 Countries Only - An Analysis

Taking into consideration the recent U.S Sanctions against the infamous Israel-based Spyware vendor NSO Group the company has recently shortened the list of countries allowed to purchase its spyware products which currently include the following countries:


The current NSO Group Spyware vendor list of countries where it's allowed to sale its products in 2021 include:

 

"Australia, Austria, Belgium, Bulgaria, Canada, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Iceland, India, Ireland, Italy, Japan, Latvia, Liechtenstein, Lithuania, Luxembourg, Malta, New Zealand, Norway, Portugal, Romania, Slovakia, Slovenia, South Korea, Spain, Sweden, Switzerland, the Netherlands, the UK, and the US."

 

What should be kept into consideration about the infamous NSO Group Spyware vendor is that it's just the tip of the iceberg in terms of commercially obtainable or proprietary available spyware aiming to affect dissidents and political activists globally and that the market share shouldn't be necessarily taken into consideration when profiling one of the market leading commercial vendors of spyware targeting various restrictive governments across the globe.

 

The following are publicly accessible NSO Group Spyware vendor C&C (Command and Control) server IPs which you should definitely consider blocking in terms of protecting from yet another spyware vendor out there in terms of keeping in mind that the NSO Group Spyware vendor is just the tip of the iceberg when it comes to commercial or proprietary spyware vendors:

 

14-tracking.com
1minto-start.com
24-7clinic.com
301-redirecting.com
365redirect.co
3driving.com
456h612i458g.com
7style.org
800health.net
911hig11carcay959454.com
aalaan.tv
accomodation-tastes.net
accountant-audio.com
accountcanceled.com
accountnotify.com
accountsections.com
accounts.mx
activate-discount.com
active-folders.com
actorsshop.net
actu24.online
add-client.com
additional-costs.com
addmyid.net
addresstimeframe.com
adeal4u.co
ad-generator.net
adjust-local-settings.com
adjustlocalsettings.net
adscreator.net
adsload.co
ad-switcher.com
advert-time.com
advert-track.com
afriquenouvelle.com
agilityprocessing.net
aircraftsxhibition.com
ajelnews.net
akhbara-aalawsat.com
akhbar-aliqtisad.com
akhbar-arabia.com
alawaeltech.com
albumphotopro.biz
alignmentdisabled.net
alive2plunge.com
allafricaninfo.com
allbeautifularts.com
alldaycooking.co
allergiesandcooking.com
allfadiha.co
alljazeera.co
allladiesloveme.com
all-sales.info
allthecolorsyoulike.com
allthegamesyouneed.com
allthemakeupyouneed.com
allthesongsyoulike.com
alluneed4home.net
alpharythme.com
android-core.org
android-updates.net
apiapple.com
apigraphs.net
apiwacdn.com
appleleaveit.co
applicationcreation.net
appointments-online.com
appsgratis.com.mx
appsjuegos.com.mx
arabnews365.com
arab-share.com
arabworld.biz
arabworldnews.info
a-redirect.com
a-resolver.com
around-theglobe.co
arrowowner.com
ar-tweets.com
asrararabiya.co
asrararablya.com
asrarrarabiya.com
assembled-battery.com
atlaslions.info
audienceflake.com
auditorcast.com
authenticangry.com
authenticated-origin.com
authlovebirth.com
autodiscount.info
autoredirect.net
avocadofight.com
av-scanner.com
awardpractice.com
axis-indication.net
babies-bottles.com
bahrainsms.co
balancewreckpoint.com
banca-movil.com
bankportal.net
baramije.net
bargainservice.online
bbc-africa.com
bdaynotes.com
beanbounce.net
beautifulhousesaroundme.com
becomeiguana.com
beethoventopsymphonies.com
behindaquarium.com
benjamin-taganga.info
bestadventures4u.com
bestcandyever.com
bestday-sales.com
bestfoods.co
bestfriendneedshelp.com
bestheadphones4u.com
besthotelsaroundme.com
bestperfumesnow.com
bestpresents4all.net
bestsalesaroundme.com
beststores4u.com
bestsushiever.com
betterapplesearch.com
better-deal.info
betterhandsblack.com
bicyclerentalnow.com
biggunsarefun.com
bigseatsout.net
billednorth.com
birdbathmorning.com
biscuit-taste.net
bitanalysis.net
bitfadepens.com
bitforeat.net
bl33pon6373.com
blackberry.org.mx
black-bricks.net
blackwhitebags.com
blindlydivision.com
blockedsituation.net
blogreseller.net
boldconclusion.com
booking-tables.com
bottlehere.com
boxes-mix.net
boysrbabies.co
brand-tech.net
breakfastisgood.com
breaking-extranews.online
breakingnewsasia.com
breaking-news.co
breakthenews.net
br-hashtags.com
brighttooth.net
brownandblueeyes.com
browser-update.online
br-travels.com
bubblesmoke.net
bubblesweetcake.com
buildingcarpet.com
buildurlife.net
buildyourdata.com
bulbazaur.com
bulksender.info
bulktheft.com
bulk-theft.net
bullgame.net
bunchi.club
bundlestofear.com
businesssupportme.com
business-today.info
bussybeesallover.com
bustimer.net
butterdogchange.com
buymanuel.co
buypresent4me.net
bytlo.com
cablegirls.net
calculatesymbols.com
calendarsapp.com
candlealbum.com
carpetdignity.com
carrefour-des-affaires.com
cars-to-buy.com
cartsafer.com
cashandlife.com
cashtowebmail.com
casia-news.info
catbrushcable.com
catfoodstorage.net
catsndogsproducts.com
cdnupdateweb.com
cdnwa.com
celebrateyourdaynow.com
cell-abonnes.com
cell-mcel.info
cellphone-inside.org
cellphonesprices.com
cellular-updates.com
cellularupdates.info
cellular-updates.online
centersession.com
centrasia-news.com
changesstarted.net
chatresponses.com
cheapapartmentsaroundme.com
cheapcardonline.com
cheaphostingtoday.com
cheapmotelz.net
cheapsolutions4u.com
cheaptransporting.net
checkboxcart.com
checkboxfee.com
checkinonlinehere.com
check-my-internetspeed.com
chickenwaves.com
chistedeldia.mx
chocolateicecreamlovers.com
chocollife.me
chormnet3.com
chubaka.org
classic-furnitures.com
classstylemap.com
cleanmiddle.com
clickrighthere.online
clicktrack247.com
clients-access.com
clockmarkcoffee.com
closefly.com
cloudads.net
cloudbiggest.com
clubloading.net
clubmovistar.com
clubsforus.net
cnn-africa.co
coffecups.online
coffee2go.org
colorfulnotebooks.com
colorsoflife.online
columbus-parking.com
companybreakfast.net
computer-set.com
com-reports.net
conditionalcell.com
conference-ballroom.com
confusedmachine.com
connecting-to.com
contacting-customer.com
content-blocking.net
contentsbycase.com
convertedversion.com
cookiescom.com
cookiesoutthere.com
coolasiankitchen.com
coolbbqtools.net
coolmath4us.net
cool-smartphone-apps.com
cornclean.com
cottondecay.com
countrytrips.net
coupedumondepro.com
couponshops.info
cpr-appointments.com
crimebackfire.com
crosslocated.net
crowndecoration.net
crownsafe.net
cryptocurrecny.com
cryptokoinz.com
cryptopcoinz.com
csomagodjott.com
cssgraphics.net
cupscars.net
curiousrabbitgame.com
currentscan.net
currentwestpeople.com
daily-sport.news
damanhealth.online
dancersing.net
dancinglife.co
dashboardprompt.com
databasemeans.net
data-formula.com
deadwordsstory.com
deal4unow.com
dearlegendseed.com
delivery-24-7.com
dental-care-spa.net
deportesinfo.com
designednetwork.com
destinytool.net
detailrush.net
deter-individuals.com
devicer.co
dhcpserver.net
diagram-shape.com
diaspora-news.com
diningip.com
dinneraroundyou.com
directbegins.com
directlyforuse.com
directurl-loading.com
discountads.net
discountmarkets.info
discountstores.info
discoveredworld-news.com
displaytag.net
dns-1.co
dns-analytics.com
dnsclocknow.com
dns-direct.net
dnslogs.net
dnsmachinefork.com
dnsprotector.net
dnsroof.com
dns-upload.com
documentpro.org
dogfoodstorage.net
dogopics.com
doitformom.com
doitforthefame-now.com
do-itonyour-own.com
domain-control.net
domainloading.net
domainport.net
domain-redirect.com
domain-resolver.net
domain-routing.com
domainsearching.net
domain-security.org
domains-resolver.net
domesticwindow.com
donateabox.co
donateaflower.com
donateyouroldclothes.net
done.events
donefordeal.com
doorcoffeebrown.com
dotroomeight.com
dowhatyouneed.com
downgradeproduct.com
dramatic-challenge.com
driventicket.com
eardooraround.com
earsstrawsfive.com
easybett.online
easy-pay.info
ecommerce-ads.org
economic-news.co
editorscolumn.net
effectivespeech.net
egov-online.com
egov-segek.info
egov-sergek.info
ehistorybooks.com
elementscart.com
eliminateadjust.com
elitecarz.net
e-loading.biz
eltiempo-news.com
email-plans.com
emiratesfoundation.net
emonitoring-paczki.pl
energy-dispatch.net
enoughtoday.org
entertainmentinat.com
entire-cases.com
e-prokuror.info
equal-gravity.com
erty.online
estatearea.net
e-sveiciens.com
eura-cell.com
eurasianupdate.com
eurosportnews.info
event-reg.info
everycolor-inside.com
everyuse.org
exchangenames.net
exchangenerate.com
ex-forexlive.com
existingpass.com
exoticsendurance.com
expired-getway.net
expiredsession.com
expiringdate.com
exploreemail.net
extend-list.net
externalprivacy.com
externaltransfers.com
extractsight.com
extrahoney.net
eyestoip.com
eyesunderspray.com
ezdropshipping.net
fabric-shops.com
facebook-accounts.com.mx
face-image.com
fadewallwine.com
fadi7apress.com
fallround.com
fallsjuice.com
familyabroad.net
fantastic-gardens.com
fashioncontainer.net
fashion-live.net
fashion-online.net
fashionpark.info
fastdirect.net
fastfixs.net
fatpop.net
fb-accounts.com
fbsecurity.co
feature-publish.net
feelbonesbag.com
feeltrail.com
femmedaffaire.com
fetchlink.net
fiestamaghreb.com
files-downloads.com
filingwarranty.com
financecomments.net
findavoucher.online
findgoodfood.co
findgroupon.com
finditout-now.com
findmyass.org
findmyfriendsnow.com
findmylunch.org
findmymind.co
findmyplants.com
findouthere.org
firebulletfan.com
fishingtrickz.com
fitness-for-ever.com
flashobligation.com
flashtraininggoal.com
flights-report.com
flights-todays.com
flying-free.online
flynewfries.com
fofopiko.org
foodeveryhour.com
foodforyou.info
foodiez.online
forgetjustit.com
formatpainter.net
formattingcells.com
forward5costume.com
forward-page.com
foto-top.info
foudefoot.live
free247downloads.com
freedominfo.net
freelancers-team.org
free-local-events.info
freeshoemoon.com
freshandsoftbread.com
freshsaladtoday.com
functionalcover.com
fundum8430.com
funinat.com
funinthesun4u.com
funintheuk.com
funnytvclips.com
fwupdating.com
gadgetproof.net
gadgetsshop.info
gate-sync.net
gdfr.online
gearstereotype.com
getagift.info
getoutofyourmind.com
getphotosinstant.net
getpoints.net
getspeednows.com
gettingchances.com
gettingurl.com
girlimstill.com
girlsyoulike.com
glassesofwine.com
glasstaken.com
glittercases.net
globalcoverage.co
globalnews247.net
global-redirect.net
globalsupporteam.com
golf-news.live
goodcookingonline.com
goodflowersinside.com
good-games.org
goodthoughts4u.com
googleplay-store.com
goroskop.co
gossipsbollywoods.com
gostatspro.com
go-trip.online
greatcitymore.com
greenbusnoise.com
greensmallcanvas.com
greenwatermovement.com
growstart.net
guardnotes.com
gulfca.net
gulf-financials.com
gulf-news.info
gumclockberry.com
hairdresseraroundme.com
halal-place.com
handcraftedformat.com
handcreamforyou.com
handymanwood.com
happiness4us.com
hardthinmetal.com
hatsampledc.com
hdsoccerstream.com
health-club.online
healthyguess.com
healthykids-food.com
hearsmugglergarden.com
heavy-flood.com
hellomydaddy.com
hellomymommy.com
highclassdining.net
hillsaround.com
hitrafficip.com
hmizat.co
holdingspider.com
holdmydoor.com
holdstory.com
holecatorange.com
holiday4u.work
homeishere.co
homemadecandies.net
horsefingercoffee.com
host-one-more.com
host-redirect.net
hotelsauto.co
hotels-review.org
hotelstax.co
hotelsurvey.info
hothdwallpaperz.com
hotinfosource.com
hot-motors.com
housesfurniture.com
housing-update.com
howisurday.com
howtoexplorebirds.com
howtomakeavocadotoastandegg.com
hracingtips.com
htmlmetrics.com
htmlstats.net
httpaccess.com
humandiven.com
humblebenefit.com
hundredsofdesigns.net
icecreamlovesme.com
icloudcacher.com
icrcworld.com
ideas-telcel.com.mx
igiheonline.com
ikomek.info
ilovemybeatifulnails.com
ilovemymilf.com
in2date.com
inbox-messages.net
income-tax.online
indrive.info
industry-specialist.com
ineediscounts.com
info24.live
infospotpro.com
infospress.com
insertfilters.net
insta-foto.net
instangram.com.mx
internetmobilespeed.com
intim-media.net
investigationews.com
investormanage.net
in-weather.com
ipjackets.com
ipurlredirect.com
islamic-news-today.com
islamiyaat.com
islam-today.info
islam-world.net
istgr-foto.com
itsthebrowser.com
iusacell-movil.com.mx
iwantitallnow.com
jaimelire.net
jeeyarworld.com
judgeauthority.com
just-one-left.com
kaidee.info
karbalaeyat.com
kaspi-payment.com
keepiptext.com
keepthiseasy.com
kenyasms.org
keyindoors.com
keynotepalm.com
khaleejtimes.online
kingdom-deals.com
kingdom-news.com
klientuserviss.com
knowingfun.com
knowseminar.com
koramaghreb.com
kra.center
kurjerserviss.com
labonneforme.net
landflatheart.com
landstofree.com
laptop-parts.org
last-chainleash.net
latest-songs.com
lawlowvat.net
layerprotect.com
layoutfill.com
leadersnews.org
leavehomego.com
leggingsjustforyou.com
legsfriesears.com
legyelvodas.com
legyelvodas.net
leleader.org
leprotestant.com
lesbonnesaffaires.online
lesportail.biz
letyoufall.com
levelsteelwhite.com
liam-ryan.co
license-updater.com
lifedonor.net
lifenoonkid.com
like-the-rest.com
limitedfeature.com
link-crawler.com
linking-page.com
link-scan.net
linksnew.info
littlefrogalarm.com
live-once.net
lizzardsnail.com
loading-ads.net
loading-domain.com
loading-images.com
loadingpage1.net
loadingpage4.net
loading-page.net
loading-pag.net
loading-url.net
loadingurl.net
loadthatpage.com
localgreenflowers.com
loisiragogo.com
lonely-place.com
looking-for-two.com
lookitupnow.website
looklifewhite.com
look-outsidenow.com
loschismescalientes.com
losnegocios.biz
lost-n-found.net
loveandhatenow.com
lowervalues.com
maghrebfoot.com
maghrebfunny.biz
magicalipone.com
mailappzone.com
maingreatessay.com
mainredirecter.com
mamba-live.com
managedsnap.com
management-help.com
managingincluded.com
manoraonline.net
manydnsnow.com
maphonortea.com
mapupdatezone.com
martinipicnic.com
massagetax.co
maymknch2026.co
mcel.info
mcel-update.com
mealrentyard.com
meanspursuit.com
medicalcircle.net
medical-updates.com
megacenter.info
megaticket.info
mercedesbenz-vip.com
merchant-businesses.com
mergeandcenter.com
methodslocal.com
mgifweb.com
mideast-today.com
miles-club.com
miralo-rapidamente.com
mirrorgossip.com
mixershake.net
mixsinger.com
mobilebrowsing.net
mobilephonesme.com
mobile-softs.com
mobile-update.online
mobile-updates.info
mobileweatherweb.com
mobi-up.net
modifytimezone.net
moh-followup.com
moh-online.com
monawa3ate.org
mondaymornings.co
moneycheesecolor.com
moneycoincurrency.com
moneydigitalcurrency.com
moneyxchanges.com
moregatesthere.com
morning-maps.com
mosque-salah.com
mosque-salah.net
mosquesfinder.com
motiontastebad.com
motivation-go.com
motordeal.info
movie-tickets.online
moyfoto.net
mozillaname.com
moz-noticias.com
mozsafety.com
m-resume.com
muftyat.com
multiplecurrencies.com
music-electric.org
music-headphones.org
muslim-world.info
muzicclips.com
muziclovers.org
mybrightidea.co
mydailycooking.net
mydarkarms.com
myfiles.photos
myfreecharge.online
myfundsdns.com
mygreathat.com
mygummyjelly.com
myheartbuild.com
mykaspi.com
mylogfrog.com
mylovelypet.net
mymanagement-service.com
mymensaje-sms.com
mymobile-cell.com
mynewbesttime.com
mypostservice.online
my-privacy.co
mysadaga.com
myseesea.com
myself-dns.com
myshoesforever.com
myshop4u.net
mystulchik.com
mysuperheadphones.co
myukadventures.com
mz-vodacom.info
nation24.info
nationalleagues.net
nation-news.com
natural-ice.com
navywalls.com
nbrowser.org
nerdtvfan.com
net-protector.com
netstatistics.net
netvisualizer.com
network190.com
network-bots.com
networkinfo.org
networkingloading.com
networkingproperty.com
neutralpages.com
neverwayneck.com
newandfresh.com
newandroidapps.net
newarrivals.club
newcooking.org
newdailycoupons.com
newenvelope.net
newipconfig.com
newip-info.com
newmodel.online
newnhotapps.com
newredirect.net
news-alert.org
newscurrent.info
newsdirect.online
news-flash.net
news-gazette.info
news-news.co
newsofficial.info
newsofgames.com
newsofthemoment.net
newtarrifs.net
newworld-news.com
nicevibezaction.net
nightevents.info
nightscloudwant.com
noextramoney.com
noloveforyou.com
nomorewarnow.com
noodlegray.com
noonstore.sale
noor-alhedaya.com
normal-brain.com
normalseason.com
normal-strength.com
nosalternatives.com
nosemorningnine.com
nothernkivu.com
notificationsneeded.com
noti-global.com
noti-hot.com
noti-hoy.co
notisms.net
notresante-infos.com
nouveau-president.com
nouvelles247.com
noveletters.com
novoicenoprob.net
novosti247.com
now-online.net
nsoqa.com
nuevaidea.co
objectreduction.com
odnoklass-profile.com
offresimmobilier.com
offspringperform.net
ok-group.org
old-glasses.net
oldmywater.com
one-isnot-enough.com
oneleadingchat.com
onetreeinheaven.com
online-dailynews.com
onlinefreework.com
online-loading.com
onlineshopzm.com
onlycart.net
onlygossip.info
only-news.net
onlytoday.biz
onlywebsite.org
onthegoodtime.com
ooredoodeals.com
openingquestion.org
operatingnews.com
operations-delivery.com
operations-shifts.com
opera-van.com
oplata-shtraf.info
opposedarrangement.net
optionalshift.online
optionstoreplace.com
orange-updates.com
organicdiamonds.net
ourorder.info
ourperfume.net
outgoingurl.com
outletsaroundme.com
outletstore.tech
page-host.net
page-info.com
pageisloading.net
pageredirect.co
pageupdate.co
painruncart.com
painting-walls.com
panelbreed.com
papers2go.co
papervoice.net
park4free.info
particularmechanic.net
parties-fun.com
pastesbin.com
pathtogo.net
pay-city.com
paynfly.info
pay-penalty.info
paywithcrytpo.com
pc-views.net
performinghost.com
permalinking.com
phonemetrics.co
phonering4you.com
phonestats.net
photo-afisha.net
photo-my.net
physicalcheetah.com
pickcard.info
pickuchu.com
picture4us.com
pincattape.com
pine-sales.com
pizzatoyourplace.com
planeocean.com
playfantasticsplastic.com
playwithusonline.com
pleaseusenew.com
pleaseusenew.net
pochta-info.com
politica504.com
politicalpress.org
politiques-infos.info
popagency.net
popularmessages.net
port-connection.com
portredirect.net
possibilitytotransfer.com
postainf.net
posta.news
pourcentfilers.com
poweredbycpanel.com
poweredlock.com
ppcisdead.com
pprocessor.net
practical-basis.net
practicehazard.com
preferenceviews.com
preferring.org
presidentialagent.com
preventadmission.com
preventsusing.com
pride-industry.com
pride-industry.net
pridetomyself.net
prikol-girls.com
primarystrike.net
prioritytrail.net
privo7799add.net
productsall.net
productsview.co
projectgoals.net
promosdereve.com
promotionlove.co
proudmorale.com
pub-dns.com
publishbig.net
puffyteddybear.com
purchaseusingcoins.com
purple-enveloppe.com
puttylearning.com
qaintqa.com
qaoffers.net
qualityfeeling.net
quitmyjob.xyz
quota-reader.net
quran-quote.com
rainingcats.net
raininscreen.com
randomlane.net
rapidredirecting.com
raresound.org
raw-console.com
reachcomputer.com
readingbooksnow.com
readirectly.com
realmythtrend.com
receiptpending.net
reception-desk.net
recordinglamping.com
redcrossworld.com
redemptionphrase.com
redirect2url.net
redirectchannel.net
redirectcheck.net
redirect-connection.com
redirectconnection.net
redirectdoor.com
redirecteur.net
redirectgate.com
redirectingpage.net
redirecting-url.com
redirectingurl.net
redirectingurl.org
redirection-url.net
redirectit.net
redirectking.net
redirect-link.com
redirectload.com
redirectmotion.org
redirect-net.com
redirectnet.net
redirectool.com
redirect-protocol.com
redirectprotocol.net
redirect-service.net
redirectshare.com
redirect-systems.com
redirect-traffic.net
redirect-tunnel.net
redirect-webpage.net
redirectweburl.com
redirigir.net
redstarnews.net
reflectextension.net
regionews.net
regularhours.net
reklamas.info
related-ads.com
relatedspams.net
reloading-page1.com
reloadinput.com
reloadpage.net
reload-url.com
reload-url.net
remove-client.com
remove-from-mailing-list.com
remove-from-mailinglist.com
remove-subscription.com
renewal-control.net
rentalindustries.com
rentmotors.net
research-archive.com
reseausocialsolutions.co
reservationszone.com
reseufun.com
resolutionsbox.com
restaurantsstar.com
results-house.net
revoke-dashboard.com
revolution-news.co
rewards-club.info
rhymeshey.com
righttriangle.net
roadwide.net
robotscan.net
rockbreakdown.com
rockmusic4u.com
rockstarpony.com
rosegoldjewerly.com
rosesforus.com
russian4u.net
sabafon.info
safecrusade.com
safe-mondays.net
saladsaroundme.com
saltyapplepie.com
same-old.net
savemoretime.co
saveurday.net
scannerservices.net
scaryaudience.com
scriptincluded.com
scriptsinstallers.com
searchjustdont.net
searchunit.net
sec-checker.com
secretgirlfriend.net
secure-access10.mx
securedloading.com
securedlogin.org
secured-url.net
securesmsing.com
secureyouradd.com
securisurf.com
securlaw.com
select-edition.net
send2url.com
sendhtml.net
sendingurl.com
sendingurl.net
sergek.info
seriousprotection.net
services-sync.com
service-update.online
servingshade.com
severalheroes.com
sharepassageset.com
shia-voice.com
shipment-status.org
shoppingdailydeals.net
short-address.com
shortfb.com
shortredirect.com
shtraf.info
shuturl.com
signpetition.co
silverodgone.com
simplycode.co
site-lock.net
site-redirecting.com
skillsforest.net
smallperfumerain.com
smallridebar.com
smarttarfi.com
smokeshowshoe.com
smoothurl.com
sms-center.info
smscentro.com
smser.net
smsmensaje.mx
sms-sending.net
sms-zone.org
snoweverywhere.com
soccerstreamingstars.com
social-artist.net
social-exercise.com
social-life.info
social-rights.com
sockstubename.com
somewarmremember.com
somuchrain.com
so-this-is.com
sparepresence.com
specialgifts4all.com
speechenforce.com
speedservicenow.com
spiritualbrakes.com
sportssaint.net
sportupdates.info
sportupdates.online
sputnik-news.info
squaretables.net
sslbind.com
standartsheet.com
standstock.net
starbuckscoffeeweb.com
starreturned.com
stars4sale.co
start2playnow.com
starting-from0.com
startupsservices.net
stationfunds.net
statisticsdb.net
staysystem.net
stopmysms.com
stopsms.biz
storageseminar.net
storelive.co
strangegloom.net
strategyroles.com
suitcasesmellnice.com
summermover.com
sunday-deals.com
sunnydaylight.com
sunrise-brink.net
sunsetdnsnow.com
superlinks4u.com
supportonline4me.com
surprising-sites.com
sweetcup.co
sweet-water.org
sync-cdn.com
syncingprocess.com
syncmap.org
systemtrees.com
tablereservation.info
tahmilmilafate.com
tahmilmilafate.info
takecarhomes.com
takemallelectric.com
takethat.co
tastyteaflavors.com
teachskate.com
techhelping.net
telangana-news24.com
telecom-info.com
telephonequality.com
template-iso.net
tengrinews.co
tentrosegain.com
thainews.asia
thankstossl.com
theappanalytics.com
theastafrican.com
thebestclassicalmusic.net
thecoffeeilove.com
thefuturearticle.net
thehighesttemple.com
thehoteloffers.com
the-only-way-out.com
theredirect.net
theshopclub.org
thesimplestairs.com
thespaclub.net
theway2get.com
thoughtfulbundle.com
tibetnews365.net
ticket-aviata.info
ticket-selections.com
tiketon.info
timelesscelebrity.com
timeofflife.com
tinyurler.com
tlgr-me.org
tobepure.com
todaysdeals4u.com
todoinfonet.com
toggletools.com
tommyfame.com
tomorrowpastno.com
tookcheckout.com
top100vidz.com
top10gifts4men.com
top10leadsgen.com
topadblocker.net
topbraingames4u.com
topcontactco.com
topoems.com
topten-news.info
touristvaca.com
towebsite.net
track-your-fedex-package.com
trackyourfedexpackage.net
track-your-fedex-package.org
trade-agreement.com
tradeexchanging.com
traffic-pay.com
traffic-updates.info
transferbase.co
transferkeep.com
transferlights.com
transfer-rate.com
travel-foryou.online
travelight.online
traveltogether.link
trendsymbol.net
trialvariable.net
trianglerank.net
tricksinswiss.com
trililihihi.com
tripleclickpays.com
t-support.net
tunnelprotocol.net
turismo-aqui.com
turkeynewsupdates.com
turkishairines.info
tvshowcusting.com
twiitter.com.mx
uaenews.online
uidebol.info
umbrellacover.net
unavailableentry.com
unionofteenagers.com
uniquesite.co
univision.click
un-limitededitions.com
unlockaccount.net
unonoticias.net
unsubscribed.co
unsubscribeinhere.com
untoldinfo.net
unusualneighbor.com
updateapps.net
updatedchargers.com
updatedcharges.net
updating-link.com
updatingpage.com
updating-url.com
updating-url.net
updatingwebpage.com
upgrade-sim-card.com
upkeepno.com
upload-now.net
uptownfun.co
urbestfriends.com
url2all.net
urlconfig.net
url-configure.com
urlconnection.net
urldefender.net
url-direct.com
url-hoster.com
url-loading.com
urlpage-redirect.com
urlpush.net
url-redirect.com
url-redirect.net
urlredirect.net
urlregistrar.net
urlreload.net
urlscanner.net
urlsync.com
urlupdates.com
urlviaweb.com
urspanishteacher.net
user-registration.com
utensils.pro
vamizi.info
vanillaandcream.com
varietyjobspaid.org
varietyregistrar.com
vastdealsnow.com
vault-encryption.com
verify-app.online
videosdownload.co
videotubbe.net
vider-image.com
viedechretien.org
vie-en-islam.com
viewhdvideos.com
viewstracker.com
vipmasajes.com
viva-droid.com
vivrechezsoi.info
vkan-profile.com
volcanodistance.com
volcanosregion.com
waffleswithnutella.com
waitingtoload.com
walkerpost.net
walkhatclock.com
wallagainsthall.com
walltome.com
wasted-nights.com
waterforplants.net
watersport4u.net
weakdistance.com
weather4free.com
weatherapi.co
webadv.co
web-check.co
web-config.org
web-developper.net
web-domain.net
webexaminer.net
web-hoster.co
web-loading.com
web-loading.net
web-only.net
web-page.co
webpageupdate.co
webprotector.co
webprotocol.net
webresourcer.com
web-scanner.co
websconnector.co
websiteconnecting.com
websiteeco.com
websitereconnecting.com
websites4yourhost.com
websitetosubmit.com
web-spider.net
webstrings.net
websupporter.co
webtunnels.net
webupdater.net
web-url.net
web-viewer.online
webview-redirect.com
weddingbandsoft.com
wedding-strategy.com
welcomehosting.net
welovebigcakes.com
welovelollipops.com
welovemorningcoffees.com
wewantflowersnow.com
whatcanidowithbirds.com
whatsapp-app.com
whatsappsupport.net
whats-new.org
whereismybonus.com
whereismyhand.com
whereismytree.net
whereisthehat.com
whynotyesterday.com
whypillyellow.com
willpurpleshe.com
windyone.net
winfoxflip.com
winter-balance.com
wintertimes.co
wishdownget.com
without-additional.com
witness-delay.com
wonderfulinsights.com
woodhome4u.com
wordstore.net
working-online.net
workshopmanager.net
wraptext.net
xchange4u.net
xchangerates247.net
xn--nissn-3jc.com
xn--noki-t5b.com
xn--telegrm-qbd.com
xtremelivesupport.com
y0utube.com.mx
youaresostupid.net
youcantpass.com
youintelligence.com
youliehow.com
yourbestclothes.com
yourbestefforts.com
yourbestvaca.com
yourgreatestsmartphone.com
yourhotelreservation.info
yourlastchance.net
yousunhard.com
yummyfoodallover.com
zednewszm.com
zm-banks.com
zm-weather.com
zsports-info.com

Avast Joins the Stalkerware Coalition - An Analysis

  
According to a blog post on Avast's blog the company is among the latest information security and antivirus companies to join the Stalkerware coalition in an attempt to prevent the mass distribution and possible widespread campaigns caused by boutique stalkerware applications which are often used by end users to spy on their friends and colleagues including family and relatives.
 

According to a recently released research and presented at the Virus Bulletin conference by ESET's Lukas Štefanko the company managed to find out that on the majority of occasions stalkerware applications are poorly coded and often represent a security and privacy risk for the actual stalker and user of the application and that they fall victim to a variety of security flaws and vulnerabilities which often include the actual compromise of  already collected and gathered information by third-parties.

 

Sample actionable intelligence on some of the currently active stalkerware variants spotted in the wild by ESET's Lukas Štefanko include:

 

hxxp://aispyer.com
hxxp://alltracker.org
hxxp://androidmonitor.com
hxxp://antifurtodroid.com
hxxp://appmia.com
hxxp://appspyfree.com
hxxp://a-spy.com
hxxp://blurspy.com
hxxp://catwatchful.com
hxxp://cerberusapp.com
hxxp://clevguard.com
hxxp://cocospy.com
hxxp://copy9.com
hxxp://coupletracker.com
hxxp://ddiutilities.com
hxxp://easemon.com
hxxp://logger.mobi
hxxp://easyphonetrack.com
hxxp://flexispy.com
hxxp://fonetracker.com
hxxp://myfonemate.com
hxxp://fonemonitor.co
hxxp://foreverspy.com
hxxp://freeandroidspy.com
hxxp://guestspy.com
hxxp://highstermobile.com
hxxp://hoverwatch.com
hxxp://ikeymonitor.com
hxxp://imonitorke.com
hxxp://109.235.66.53
hxxp://ispyoo.com
hxxp://theispyoo.com
hxxp://jjspy.com
hxxp://trackmyphones.com
hxxp://letmespy.com
hxxp://androidlost.com
hxxp://callsmstracker.com
hxxp://meuspy.com
hxxp://minspy.com
hxxp://mtoolapp.net
hxxp://mobiletool.ru
hxxp://mtoolapp.biz
hxxp://mobile-tracker-free.com
hxxp://mobilespy.at
hxxp://mobistealth.com
hxxp://mspy.com
hxxp://mxspy.com
hxxp://neatspy.com
hxxp://neospy.net
hxxp://neospy.pro
hxxp://neospy.tech
hxxp://netspy.net
hxxp://en.ownspy.com
hxxp://phonesheriff.com
hxxp://phonespying.com
hxxp://trackmyphones.com
hxxp://reptilicus.net
hxxp://shadow-spy.com
hxxp://sap4mobile.com
hxxp://snoopza.com
hxxp://spappmonitoring.com
hxxp://spytomobile.com
hxxp://spycell.net
hxxp://spyhuman.com
hxxp://spyic.com
hxxp://spyier.com
hxxp://spyine.com
hxxp://spylive360.com
hxxp://spyfone.com
hxxp://spyphone.com
hxxp://phonetracker.com
hxxp://spytoapp.com
hxxp://spyzee.com
hxxp://spyzie.io
hxxp://trackview.net
hxxp://89.47.91.131
hxxp://wt-spy.com
hxxp://xnore.com
hxxp://talklog.tools
hxxp://teensafe.net
hxxp://thetruthspy.com
hxxp://tispy.net
hxxp://trackmyphones.com
hxxp://spyequipmentuk.co.uk
hxxp://usafe.ru


Sample personally identifiable information on the actual stalkerware domains which could assist in possible cyber attack attribution and cyber attribution campaigns:

 

5LLIQUIDATION@GMAIL.COM
ad20nikunj@gmail.com
bytepioneers@gmail.com
ciucaandrei@yahoo.com
dalyjohns@yahoo.com
de.russcity@gmail.com
e.tabunow@gmail.com
ernesto2020@yandex.com
gad2005@bk.ru
gooveg@gmail.com
immobilespy@yahoo.com
ispyoo@yahoo.com
itix.llc@gmail.com
jacksrow1980@gmail.com
jerry-howard@hotmail.com
jjmomanyis@gmail.com
jordanlevexier@gmail.com
karanthsrihari@gmail.com
m2mstat@gmail.com
micro.freetracker@gmail.com
mobileinnova@gmail.com
mspycotherg@gmail.com
pavel_mikhailov@mail.ru
pub144@hotmail.com
puja2rani@gmail.com
reshamkdk@gmail.com
ronaldoblumenthal@gmail.com
sqlove@gmail.com
sriharikaranth@gmail.com
theisborg@gmail.com
twhanna13@yahoo.com
wirelessha@yahoo.com
zee.zaragoza@gmail.com

U.K and Australia Launch "Think Before You Link" Counter Espionage Using Social Media Awareness Campaign - An Analysis

The U.K and Australia have recently launched an extremely popular and relevant "Think Before You Link" counter-intelligence social media link sharing security awareness building campaign that aims to spread awareness on the use of "foreign information seeking" foreign third-parties who will somehow benefit and expose sensitive national security information to third-parties.


Sample video from the "Think Before You Link" security awareness raising campaign:

 

 

Users are advised to report suspicious activity using the following portal.

Wednesday, November 03, 2021

Dancho Danchev Speaks! - Introduction to my New Daily YouTube Vlog!

Dear blog readers,

I've just launched a daily Vlog and I wanted to share the news.


Subscribe here.


Here's the first episode.





Stay tuned!