SEARCH RESULTS
 
Showing 1-10 of 57 records
 
Expand article

MDAC ActiveX Code Execution Exploit Still in the Wild

The Article has images
2007-12-05 12:08:56 by HASH0x89e6630 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...courtesy of what looks like Chinese folks, and represent a good example of what malicious economies of scale are as a concept that emerged during 2007. Years ago, when a vulnerability was found and exploit released, malicious parties were quickly taking advantage of the "window of opportunity" following the myth that the more publicity the...
 
Tags: exploit, day, day vulnerabilities, htm, malware, malware exploitation kit, single exploit urls, vulnerabilities, storm worm apparently
 
 
 
 
Expand article

Romanian Script Kiddies and the Screensavers Botnet

The Article has images
2008-04-08 03:48:40 by HASH0x8ae5de0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...courtesy of Romanian script kiddies, that are currently spamming postcard.scr greeting cards? Meet the script kiddies. This botnet is going nowhere mostly because knowing how to compile an IRC bot doesn't necessarily mean you posses a certain know-how, a know-how that experienced botnet masters have been outsourcing for years . Malware is...
 
Tags: botnet, botnet masters, script kiddies, romanian script kiddies, botnet courtesy, ny2fw15, alternative botnet, irc, irc bot
 
 
 
 
Expand article

Hacker Free Site?...Yeah, right.

2008-05-09 19:51:00 by Russ McRee in HolisticInfoSec.org
 
...courtesy of the WebSafe Shield Hacker Free Site My brother in arms in the battle against BS, Rafal Los, has already called out Comodo for their Hacker Proof fluff on the Digital Soapbox I simply couldn't let this one pass without a little extra scrutiny. I Googled hacker safe to see what else popped up and bam, there's WebSafe Shield in the...
 
Tags: mcafee hacker safe, hacker safe, safe, courtesy, xss silliness courtesy, xss, websafe shield, mention xss, security vulnerabilities
 
 
 
 
Expand article

Summarizing June's Threatscape

The Article has images
2008-07-01 07:05:01 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...courtesy of a commodity web malware exploitation kit, this campaign was also using flash exploits. Even more interesting is the fact that the password stealer obtained was attempting to phone back to a misconfigured malware command and control interface, basically allowing you to assess the campaign from the eyes of the "campaigner 08....
 
Tags: site, fake youtube site, web site defacements, malware, malware hosts, web site defacer, sites, vulnerable sites, malicious
 
 
 
 
Expand article

Riders on the Storm Worm

The Article has images
2007-12-28 11:35:58 by HASH0x89eeda4 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...courtesy of US-CERT With end users getting warned about the insecurities of visiting an IP next to a domain name, this campaign is relying on descriptive domains compared to the previous one, while the use of IPs was among the few tactics that helped Storm Worm's first campaign scale so with every infected host acting as an infection vector...
 
Tags: storm worm, storm worm campaign, storm, campaign, technical contact, contact, highly descriptive domains, sample blogspot urls, descriptive domains
 
 
 
 
Expand article

Spreading Malware Around the Christmas Tree

The Article has images
2007-12-24 18:33:57 by HASH0x896b164 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...courtesy of the Neosploit attack kit attempt to load. Current binary (stripshow.exe) has an over 50% detection rate 17/32 (53.13%). Stay tuned, AV vendors will reach another milestone on the number of malware variants detected, despite that compared to the real , massive Storm Worm campaign this one is fairly easy to prevent on a large scale...
 
Tags: contact, contact postal code, technical contact, server, contact organization, contact city, contact country, contact street1, contact phone
 
 
 
 
Expand article

Pinch Variant Embedded Within RussianNews.ru

The Article has images
2007-12-23 21:01:52 by HASH0x89b2224 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...courtesy of their tool fully confirms the simple logic that once released in the wild, DIY malware builders and open source malware greatly extend their lifecycles and possibility for added innovation on behalf of the community behind them
 
Tags: variant, pinch variant, diy malware builders, russiannews, malware, popular news portal, web dropper, news, simple stupid strategy
 
 
 
 
Expand article

Pushdo - Web Based Malware as Usual

The Article has images
2007-12-19 18:01:44 by HASH0x89b80bc in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...courtesy of botnet masters circa 2004/2005 The possiblities with PHP and MySQL in respect to flexibility of the statistics, layered encryption and tunneling, and most importantly, decentralizing the command even improving authentication with port knocking are countless. Besides, with all the buzz of botnets continuing to use IRC, it's a...
 
Tags: malware, web based malware, pushdo, botnet masters circa, botnet masters, nuclear malware kit, botnet, pushdo author, botnet communication platforms
 
 
 
 
Expand article

Cyber Jihadist Hacking Teams

The Article has images
2007-12-17 20:03:29 by HASH0x847073c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...courtesy of one of his defacements Muslims are not Terrorists and U.S.A & Israel & europa are Terrorists. america and israel and europa they terrorists and we moslems not is terrorists . and It was hacked because you are supporting the war in Iraq, palestine and Afghanistan, and it was hacked because you are killing our people and our kids...
 
Tags: anti-islamic web sites, islamic web sites, web, jihad, electronic jihad program, campaign, electrnic jihad campaign, web sites, cyber jihad