Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
 
Showing 1-10 of 183 records
 
Expand article

Money Mule Recruiters use ASProx's Fast Fluxing Services

The Article has images
2008-07-18 06:23:49 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...information The fast-flux infrastructure they're currently using is also providing services to domains that are currently used, or have been used in previous SQL injection attacks. Some info on the current DNS servers used in the fast-flux ns10.cashtransfers.tk ns11.cashtransfers.tk ns1.cashtransfers.tk ns12.cashtransfers.tk...
 
 
 
 
 
Expand article

The Ayyildiz Turkish Hacking Group VS Everyone

The Article has images
2008-07-18 05:48:38 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...information's and the dates which are there, for example credit card dates, will be policed in this page. (Don't worry, we wouldn't taste one cent of your moneys, we aren't thieves like you. However we don't take care of what happens, if other hackers see this dates and empty your account While this may sound inspiring, some of the group's...
 
 
 
 
 
Expand article

The Unbreakable CAPTCHA

The Article has images
2008-07-17 17:05:54 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
In response to the continuing evidence of how spammers are efficiently breaking the CAPTCHAs of popular free email service providers in order to abuse their clean IP reputation, and already validated authenticity through the use of DomainKeys and SenderID frameworks , someone has finally came up with an unbreakable CAPTCHA If it only weren't a...
 
 
 
 
 
Expand article

Obfuscating Fast-fluxed SQL Injected Domains

The Article has images
2008-07-17 15:31:06 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...security software Redmond Magazine Successfully SQL Injected by Chinese Hacktivists
 
 
 
 
 
Expand article

The Neosploit Malware Kit Updated with Snapshot ActiveX Exploit

The Article has images
2008-07-15 17:18:32 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Raising Symantec's ThreatCon based on a newly introduced exploit within a (random) copy of a popular web malware exploitation kit? Now that's interesting given that there are other modified versions of the publicly available malware kit empowered with exploits as they get released, the single most logical move a administrator of such kit would...
 
 
 
 
 
Expand article

Are Stolen Credit Card Details Getting Cheaper?

The Article has images
2008-07-15 15:36:12 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...information becoming "commoditized" - account details with PIN codes that once fetched $100 or more each might now go for $10 or $20. In its latest quarterly survey of Web trends, the California-based company said cybercrime had evolved into "a major shadow economy ruled by business rules and logic that closely mimics the legitimate business...
 
 
 
 
 
Expand article

Malware and Office Documents Joining Forces

The Article has images
2008-07-14 11:20:34 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...information and take into consideration the time of their attack if the social engineering campaign is either going to be based on a current/upcoming event, or on an event anticipated due to information gathered through open source intelligence, often make it through common signature based scanning solutions Despite the relatively easy to...
 
 
 
 
 
Expand article

Monetizing Compromised Web Sites

The Article has images
2008-07-14 03:26:24 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Despite that pure patriotic hacktivism is still alive and kicking, compromised sites are largely getting monetized these days, starting from hosting blackhat SEO junk pages, to redirecting to live exploit URLs and fake codecs where revenue is earned through their participation in an affiliate business model With The Africa Middle Market Fund's...
 
 
 
 
 
Expand article

Violating OPSEC for Increasing the Probability of Malware Infection

The Article has images
2008-07-11 19:39:32 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...security) for the sake of increasing the probability of successful malware infection by on purposely lowering down the security settings of Internet Explorer, by adding their malicious netblocks and domains into "Trusted Sites"? You bet The infamous Smitfraud or PSGuard Desktop Hijacker, has been cooperating with known malicious parties for...
 
 
 
<