SEARCH RESULTS
 
Showing 1-10 of 120 records
 
Expand article

Fake Porn Sites Serving Malware - Part Two

The Article has images
2008-07-08 03:24:00 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...fake porn sites. And since some of the fake sites are actual redirectors, periodically revisting them leads to more fake codecs and even more actionable intelligence into the nature of their practices, and which are the ISPs proving them with hosting services for several consecutive years The main redirector in this campaign...
 
Tags: net, malware, porn-party, porn-contact, fake porn sites, porn-play, porn-plus, porndrive, pornhelp
 
 
 
 
Expand article

Impersonating StopBadware.org to Serve Fake Security Warnings

The Article has images
2008-07-21 03:30:51 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...fake security warnings that ultimately lead to fake security software stopbadware2008 .com (58.65.238.171) is one of these examples, where stopbadware2008 .com/antivirus.php redirects to infectionscanner .com and attempts to trick the user into installing download.infectionscanner.com /AntvrsInstall.exe . The message used Reported Insecure...
 
Tags: fake security, fake security software, insecure internet activity, internet activity, insecure internet, insecure, lead, fake video codecs, portfolio
 
 
 
 
Expand article

Fake Porn Sites Serving Malware

The Article has images
2008-06-25 12:16:20 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...fake porn sites, consisting of over twenty different domains serving the usual Zlob malware variants, we have a decent abuse of a template for a porn site The easy of management of such domain farms and the availability of templates for high trafficked topic segments such as celebrities and pornography, continue contributing to the...
 
Tags: net, fake porn sites, malware, about-adult, scan-porn, zlob malware variant, name-adult, useporn, porn-the
 
 
 
 
Expand article

Localized Fake Security Software

The Article has images
2008-04-14 08:04:53 by HASH0x8ae5d20 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...fake security software in a one-to-many communication channel by using a single language in a combination with cybersquatted domains , and entirely another to do the same in different languages. Localization for anything malicious is already taking place , as ori ginally anticipated as an emerging trend back in 2006. The following currently...
 
Tags: avsystemcare, antiworm2008, malicious, fake security applications, portfolio, malicious campaigns, sample fake brands, antivirusforall, one-to-many communication channel
 
 
 
 
Expand article

A Diverse Portfolio of Fake Security Software

The Article has images
2007-12-07 15:16:07 by HASH0x89688e0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...fake security software was literally just the tip of the iceberg in this ongoing practice of distributing spyware and malware under the shadow of software that's positioned as anti-spyware and anti-malware one . The domain farm of fake security software which I'll assess in this post is worth discussing due to the size of its portfolio, how...
 
Tags: domains portfolio, domains, portfolio, sample domains portfolio, fake security software, software, onerateld, content, exe
 
 
 
 
Expand article

Fake Directory Listings Acquiring Traffic to Serve Malware

The Article has images
2008-04-30 03:17:00 by HASH0x8b233c0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...fake directory indexes with hundreds of thousands of popular or segment specific keywords in the filenames, while attempting to trick the impulsive leecher by forcing a direct loading of anything malicious? Creative, at least according to someone who's released such a fake directory listing, and is what looks like planning to come up with an...
 
Tags: fake directory, malicious, fake directory indexes, non-malicious download, live exploit urls, file, malicious magic, load image files, image files
 
 
 
 
Expand article

Fake Celebrity Video Sites Serving Malware

The Article has images
2008-06-20 06:58:44 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...fake codecs, it's about time we spill some coffee on several campaigns in order to get a better understanding of the way the campaigns function These campaigns are also starting to get so sophisticated, that analyzing a single one will expose another massive SQL injection, reveal several blackhat SEO domain farms, let you obtain fresh Zlob...
 
Tags: malware, blackhat seo-ers, blackhat seo, net, malware authors, malware authors efficiency, blackhat seo operation, info, blackhat
 
 
 
 
Expand article

Malware Install Hides Behind Fake Blue Screen Of Death

The Article has images
2008-07-09 18:42:24 by Christopher Boyd in SpywareGuide Greynets Blog
...fake - to be more accurate, the bad guys have taken Sysinternals blue screen of death screensaver and bundled it in with the hijack files. This is what the .scr file looks like on the PC And this is what you see if you explore the code It seems the bad guys are not without a sense of humour. Hiding a blizzard of infection file...
 
Tags: fake, death, blue, file, scr file, infection file installs, hijack files, hijack, death screensaver
 
 
 
 
Expand article

A Portfolio of Fake Video Codecs

The Article has images
2008-03-19 17:27:56 by HASH0x8b5b564 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...fake/rogue video codecs hosting the same Zlob variant on each and every of the domains, thereby acting as a great example of what malicious economies of scale means? But of course. As I've pointed out in a previous post, on the tactical warfare front the output of a malicious IFRAME campaign is often neglected from the perspective of lacking...
 
Tags: single zlob variant, zlob variant, zlob, zlob malware variant, net, malware, domains, huge domains portfolio, dvdaccess