Wednesday, March 25, 2009

Embassy of Portugal in India Serving Malware

Yet another embassy web site is falling victim into a malware attack serving Adobe exploits to its visitors. As of last Friday, the official...
Thursday, March 19, 2009

Crimeware in the Middle - Limbo

While you were out - " Cybercrime-as-a-Service is finally taking off " and a $400 will get you in the hacking business. Such a men...
Wednesday, March 18, 2009

Ethiopian Embassy in Washington D.C Serving Malware

Oops, they keep doing it again and again. The web site of the Ethiopian Embassy in Washington D.C ( ethiopianembassy.org ) has been compromi...
Thursday, March 12, 2009

Who's Behind the Estonian DDoS Attacks from 2007?

The rush to claim responsibility for 2007's DDoS attacks against Estonia
Wednesday, March 11, 2009

Azerbaijanian Embassies in Pakistan and Hungary Serving Malware

The very latest addition to the "Compromised International Embassies Series" are the Hungarian and Pakistani embassies of the Repu...
Monday, March 09, 2009

Inside (Yet Another) Managed Spam Service

Several years ago, getting into the spam business used to involve the process of harvesting emails , figuring out ways to segment the databa...
Wednesday, March 04, 2009

Russian Homosexual Sites Under (Commissioned) DDoS Attack

From Russia with homophobia? A week long DDoS attack launched against Russia's most popular commercial homosexual sites has finally ende...

Summarizing Zero Day's Posts for February

The following is a brief summary of all of my posts at ZDNet's Zero Day for February. You can also go through previous summaries for Ja...
Thursday, February 26, 2009

Inside a DIY Image Spam Generating Traffic Management Kit

Whatever the spammer/pharma master or plain simple cybercriminal requires - the spamware vendors deliver so that a win-win-win scenario take...

Help! Someone Hijacked my 100k+ Zeus Botnet!

I've been looking for a similar chatter for a while now, given the existence of a remotely exploitable vulnerability in an old Zeus crim...
Tuesday, February 24, 2009

The Cost of Anonymizing a Cybercriminal's Internet Activities - Part Two

With VPN-enabled malware infected hosts easily acting as stepping stones thanks to modules within popular malware bots, next to commercial ...
Monday, February 23, 2009

Fake Celebrity Video Sites Serving Malware - Part Three

In the overwhelming sea of template-ization of malware serving sites , (naked )celebrities would always remain the default choice offered in...
Wednesday, February 18, 2009

Pharmaceutical Spammers Targeting LinkedIn

Following January's malware campaign relying on bogus LinkedIn profiles , this time it's pharmaceutical spammers' turn to target...
Tuesday, February 17, 2009

Community-driven Revenue Sharing Scheme for CAPTCHA Breaking

What follows when a system that was originally created to be recognizable by humans only, gets undermined by low-waged humans or grassroots ...
Wednesday, February 11, 2009

Quality Assurance in a Managed Spamming Service

Following previous coverage of the managed spam services offered by the Set-X mail system and a copycat variant of it, a newly introduce...
Thursday, February 05, 2009

Summarizing Zero Day's Posts for January

The following is a brief summary of all of my posts at ZDNet's Zero Day for January. You can also go through previous summaries for Dec...
Tuesday, February 03, 2009

A Diverse Portfolio of Fake Security Software - Part Fifteen

Descriptive fake security software domains speak for themselves, and what follows are the very latest ones currently active in the wild : sp...

Crimeware in the Middle - Adrenalin

What is Adrenalin? Adrenalin is an alternative to the Zeus crimeware kit that never actually managed to scale the way Zeus did. Following r...