Wednesday, September 16, 2009

Koobface Botnet's Scareware Business Model

UPDATE1: TrendMicro just confirmed the ongoing double-layer monetization of Koobface . Meanwhile, the gang is rotating the scareware domains...

Koobface Botnet's Scareware Business Model

UPDATE1: TrendMicro just confirmed the ongoing double-layer monetization of Koobface . Meanwhile, the gang is rotating the scareware domains...
Monday, September 14, 2009

Ukrainian "Fan Club" Features Malvertisement at NYTimes.com

If my Ukrainian "fan club" can exploit weaknesses in the online ad publishing model for scareware serving purposes , anyone els...
Monday, September 07, 2009

News Items Themed Blackhat SEO Campaign Still Active

According to a blog post at PandaLabs , a massive and very persistent blackhat SEO campaign exclusively hijacking " hot BBC and CNN new...
Thursday, September 03, 2009

SMS Ransomware Displays Persistent Inline Ads

SMS-based micro-payments are clearly becoming the monetization channel of choice for the majority of cybercriminals engaging in ransomware c...

SMS Ransomware Displays Persistent Inline Ads

SMS-based micro-payments are clearly becoming the monetization channel of choice for the majority of cybercriminals engaging in ransomware c...
Tuesday, September 01, 2009

Summarizing Zero Day's Posts for August

The following is a brief summary of all of my posts at ZDNet's Zero Day for August. You can also go through previous summaries for July...
Monday, August 24, 2009

6th SMS Ransomware Variant Offered for Sale

" Your copy of Windows has been blocked! You're using an unlicensed version of it! In order to continue using it, you must receive ...
Wednesday, August 19, 2009

Movement on the Koobface Front - Part Two

UPDATE13 : The domain snimka31082009 .com has been suspended. Just like the domains listed in UPDATE11, it's worth pointing out that o...