Wednesday, March 04, 2009

Russian Homosexual Sites Under (Commissioned) DDoS Attack

From Russia with homophobia? A week long DDoS attack launched against Russia's most popular commercial homosexual sites has finally ende...

Summarizing Zero Day's Posts for February

The following is a brief summary of all of my posts at ZDNet's Zero Day for February. You can also go through previous summaries for Ja...
Thursday, February 26, 2009

Inside a DIY Image Spam Generating Traffic Management Kit

Whatever the spammer/pharma master or plain simple cybercriminal requires - the spamware vendors deliver so that a win-win-win scenario take...

Help! Someone Hijacked my 100k+ Zeus Botnet!

I've been looking for a similar chatter for a while now, given the existence of a remotely exploitable vulnerability in an old Zeus crim...
Tuesday, February 24, 2009

The Cost of Anonymizing a Cybercriminal's Internet Activities - Part Two

With VPN-enabled malware infected hosts easily acting as stepping stones thanks to modules within popular malware bots, next to commercial ...
Monday, February 23, 2009

Fake Celebrity Video Sites Serving Malware - Part Three

In the overwhelming sea of template-ization of malware serving sites , (naked )celebrities would always remain the default choice offered in...
Wednesday, February 18, 2009

Pharmaceutical Spammers Targeting LinkedIn

Following January's malware campaign relying on bogus LinkedIn profiles , this time it's pharmaceutical spammers' turn to target...
Tuesday, February 17, 2009

Community-driven Revenue Sharing Scheme for CAPTCHA Breaking

What follows when a system that was originally created to be recognizable by humans only, gets undermined by low-waged humans or grassroots ...
Wednesday, February 11, 2009

Quality Assurance in a Managed Spamming Service

Following previous coverage of the managed spam services offered by the Set-X mail system and a copycat variant of it, a newly introduce...
Thursday, February 05, 2009

Summarizing Zero Day's Posts for January

The following is a brief summary of all of my posts at ZDNet's Zero Day for January. You can also go through previous summaries for Dec...
Tuesday, February 03, 2009

A Diverse Portfolio of Fake Security Software - Part Fifteen

Descriptive fake security software domains speak for themselves, and what follows are the very latest ones currently active in the wild : sp...

Crimeware in the Middle - Adrenalin

What is Adrenalin? Adrenalin is an alternative to the Zeus crimeware kit that never actually managed to scale the way Zeus did. Following r...
Monday, February 02, 2009

Copycat Web Malware Exploitation Kits Are Still Faddish

The oversupply of web malware exploitation kits is in fact

The Template-ization of Malware Serving Sites - Part Two

The growing use of "visual social engineering" in the form of legitimately looking codecs, flash player error screens, adult web s...
Wednesday, January 28, 2009

Poisoned Search Queries at Google Video Serving Malware

UPDATE: A recently published article at the Register by John Leyden incorrectly states that " researchers at Trend Micro discovered t...
Tuesday, January 27, 2009

Embassy of India in Spain Serving Malware

The very latest addition to the "embassies serving malware" series is the Indian Embassy in Spain/Embajada de la India en EspaƱa (...
Wednesday, January 21, 2009

Exposing a Fraudulent Google AdWords Scheme

UPDATE: Conduit's Director of Strategic Marketing Hai Habot contacted me in regard to the campaign. Comment published at the bottom of ...
Monday, January 19, 2009

A Diverse Portfolio of Fake Security Software - Part Fourteen

The following currently active fake security software domains have been included within ongoing blackhat SEO campaigns, among the many other...