SEARCH RESULTS
 
Showing 1-9 of 9 records
1
 
Expand article

More Required Reading: Mike R

2008-01-16 00:24:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...Mal)ware it well Report Card: 2007 Incite #8 - Identity Everywhere Report Card: 2007 Incite #9 - Help Wanted: Fortune Teller and while we are at it: this bit from Mike on security management trends in 2008 is fun too (especially check his reference to log management About me: http://www.chuvakin.org
 
Tags: report card, mike, incite, security management trends, log management, fun, fortune teller, mal, extra-hot
 
 
 
 
Expand article

Rogue RBN Software Pushed Through Blackhat SEO

The Article has images
2008-03-05 08:19:46 by HASH0x8b39d2c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malicious attacker Keep it Simple Stupid (KISS) approach for anything starting from Rock Phishing, to maintaining a huge live exploits domains portfolio hosted on a single IP. This is yet another example of the KISS strategy uncovering another huge IFRAME campaign, again taking advantage of locally cached pages generated upon searching for a...
 
Tags: rbn, huge iframe campaign, iframe campaign, iframe, rbn coverage, single rbn, russian business network, campaign, antivirus
 
 
 
 
Expand article

Holiday Storm Part 3

2007-12-26 23:43:00 by Russ McRee in HolisticInfoSec.org
 
...Malware.FMH@mmign.55A134E9 ClamAV - Trojan.Zhelatin DrWeb - Trojan.Spambot.2387 Fortinet - W32/Tibs.G@mm F-Prot - W32/StormWorm.R F-Secure - Email-Worm.Win32.Zhelatin.pl Ikarus - Virus.Win32.Zhelatin.ASX Kaspersky - Email-Worm.Win32.Zhelatin.pl Microsoft - Backdoor:WinNT/Nuwar.B!sys NOD32v2 - Win32/Fuclip.AW Panda - Suspicious file Prevx1 -...
 
Tags: kernel31 api log, log, api, zhelatin-asx, sys, asx, rootkit, helios rootkit detector, zhelatin
 
 
 
 
Expand article

Storm keeps coming (4th variant)

2007-12-27 10:43:00 by Russ McRee in HolisticInfoSec.org
 
...Mal/Dorf-H Symantec - Trojan.Peacomm VirusBuster - Trojan.DR.Zhelatin.AS Webwasher-Gateway - Trojan.Crypt.XDR.Gen Aside from the inherent value of keeping an eye on the ISC Diary , please refer to the US-CERT alert They'll keep coming, we'll keep watching
 
Tags: trojan, sys, kernel31 api log, api, zhelatin-asx, zhelatin, config, helios rootkit detector, driver file company
 
 
 
 
Expand article

The Whitehouse.org Serving Malware

The Article has images
2008-05-21 02:38:02 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware. From TrendMicro's blog According to Trend Micro Advanced Threats Researcher David Sancho, whitehouse.org has been compromised to harbor some malicious, obfuscated JavaScript code which background downloads code to unsuspecting visitors of the site, where a malicious file is downloaded (which is detected by Trend Micro as TROJ...
 
Tags: whitehouse, malware, malicious, malicious domains, original whitehouse, org, malicious file, parody site, site
 
 
 
 
Expand article

Yet Another Massive SQL Injection Spotted in the Wild

The Article has images
2008-05-26 10:58:01 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malicious domain is not in a fast-flux. As I've already pointed out, the upcoming SQL injection attacks for the next couple of months, will be primarily executed by copycats, where among the few differentiation factors left is increasing the survivability of the domain In the particular attack, the injected domain chliyi.com /reg.js loads an...
 
Tags: domain, domain chliyi, attack, sql injection attack, vbs script attempts, chliyi, malicious domain, sql injection attacks, differentiation factors
 
 
 
 
Expand article

Fake YouTube Site Serving Flash Exploits

The Article has images
2008-06-12 07:12:58 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...malware kit. And although I've been aware of its existence for a while now, it's the first time I see it in action Upon analyzing yout ube-r.com (211.95.79.57) a couple of days ago, it's now returning a 403 forbidden message, however, copies of the malware have already been obtained and analyzed. In between attempting to infect with MDAC at...
 
Tags: site, fake youtube site, flash exploit loads, flash exploit, mdac, ubiquitous mdac exploit, exploit, malware, real youtube site
 
 
 
 
Expand article

Bubblicious

The Article has images
2008-07-15 21:26:02 by Gunnar Peterson in 1 Raindrop
...mals. It is now pretty clear (in experimental social psychology) that people on the horns of a dilemma, which is where our system has placed our bankers, are extra likely to react unwisely to the example of other peoples' conduct, now widely called "social proof". So, once some banker has apparently (but not really) solved his cost-pressure...
 
Tags: bad, widespread bad loans, letter, charlie munger, charlie, system, social proof, munger, volatile combination
 
 
 
 
Expand article

BusinessWeek Online Content Hit By SQL Injection, A Total Of 721 Scripts Attempted To Infect Visitors

2008-09-15 22:25:40 by CyberInsecure in CyberInsecure.com
 
Malicious hackers have broken into several sections of BusinessWeek.com and as a result the content has been infected by Mal/Badsrc-C via SQL injection. The infected pages are related to to jobs and recruitment. Currently hundreds of pages on BusinessWeek.com are being rigged with malicious JavaScript pointing to third-party servers. Visitors to...
 
Tags: sql injection, businessweek, malicious javascript, malicious hackers, content, third-party servers, site execute, visitors, pages