A Peek Inside a Gallery of Fake Security Software Circa 2008 Screenshots - An Analysis

An image is worth a thousand words.

Sample screenshots include:

Stay tuned!

Continue reading →

A Peek Inside the Internet Explorer Zero Day Exploits Serving Campaign Affecting Thousands of Legitimate Sites Circa 2008 - An Analysis

Takes you back doesn't it? What used to be a daily reality back in 2008 namely the use of iFrame injected scripts on major Web properties basically forwarding the redirecting legitimate traffic to client-side exploits serving web malware exploitation kits is still a valid practice in today's modern and sophisticated cybercrime ecosystem.

Stay tuned!

Continue reading →

A Peek Inside a Google AdSense Rogue and Bogus Advertisement Campaign Impersonating Legitimate Software - An Analysis

As I've recently came across several mainstream news articles on the use of Google AdSense to serve malware I've decided to share several screenshots circa 2008 which basically demonstrate the process.

Sample screenshots include:

Stay tuned!

Continue reading →

A Peek Inside a DIY iFrame Embedded DDoS Attack Script Targeting Iran-Based Web Sites - An Analysis

With basic iFrame injecting scripts making their rounds back in 2008 including their use and participation in actual crowd-sourced DDoS attack campaigns internationally I've decided to share with everyone a sample screenshot of a sample iFrame DDoS script that was actually known to have been involved in a successful DDoS attack against major Iran-based web sites back in 2008.

Stay tuned!

Continue reading →

A Peek Inside a Mass SQL Injection Scanning and Exploiting IRC Botnet - An Analysis

Who would have thought? A mass SQL injection scanning and remotely exploitable including fuzzing capabilities built-in IRC-based botnet? I've decided to share with everyone some sample screenshots on the process with the idea to raise everyone's awareness that what used to be once a rocket science is today's reality in specific back in 2008 when I originally took these screenshots.

Sample screenshots include:

Stay tuned!

Continue reading →

A Peek Inside the Spack Web Malware Exploitation Kit - An Analysis

Dear blog readers,

I've decided to share with everyone several sample screenshots of the infamous Spack web malware exploitation kit with the idea to raise everyone's awareness on the ease of use and easy to implement mass client-side exploitation tools on a mass scale.

Sample screenshots include:

Stay tuned!

Continue reading →

A Peek Inside a Milw0rm Syndicating Remote Execution Flaws Exploitable IRC Scanning Botnet - An Analysis

Who would have thought? An IRC based botnet that's directly syndicating remotely exploitable flaws and actually scanning for them using an IRC based bothet? Takes you back doesn't it? This has been a daily practice since practically 2008 and I've decided to share some sample screenshots of the process in action.

Sample screenshots include:

Stay tuned!

Continue reading →