SecurityRatty: tag: malware

A Localized Bankers Malware Campaign

2008-03-25 14:59:06 by HASH0x8b6136c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...Malware campaign that I exposed in November 2007, in this post I'll assess another targeted, but also localized to Portuguese campaign with a decent degree of cyber deception applied. It appears that the latest round has been spammed two days ago, but expanding their ecosystem reveals evidence of more bankers malware on behalf of the same...

Tags: malware, bankers malware campaign, malware malware, malware campaigns, malicious malware, banker malware, bankers malware, malware authors, campaign

The United Nations Serving Malware

2008-04-23 10:13:00 by HASH0x8b31c98 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware infected page, and with a reason since both the malicious URl and the injection are still active. According to WebSense This mass injection is remarkably similar to the attack we saw earlier this month. When a user browses to a compromised site, the injected JavaScript loads a file named 1.js which is ho sted on...

Tags: malware, attack, malware attack, anti-malware vendor, media malware gang, htm, nihaorr1, load nihaorr1, attack tactic

New DIY Malware in the Wild

2008-04-29 16:06:55 by HASH0x8b1f28c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware is getting pitched as one with low detection rate due to its proprietary nature , following the logic that based on the fact that few people will have it, it would somehow remain undetected for a longer period of time. The applied logic is however, excluding the possibility of used to recently purchased good as a bargain to obtain or...

Tags: diy malware, malware, diy malware droppers, do-it-yourself malware, novice malware coder, malware authors, source malware, malware loader, multi-feature malware crypter

Cached Malware Embedded Sites

2007-12-16 18:18:26 by HASH0x8a09e44 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware embedded sites who were cleaned before they could be analyzed, mainly popular sites who get crawled several times daily. However, Yahoo's and MSN's search engines, with MSN providing Archive.org type of historical crawling content, have been an invaluable resource in providing the actionable historical intelligence in the form of what...

Tags: sites, sites wrongly, web sites, malware, malicious site, site, single site offers, sites notification services, popular sites

Yet Another Massive Embedded Malware Attack

2008-02-27 11:42:39 by HASH0x8b05fe8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware serving domains - buytraffic.cn/in.cgi?11 is currently embedded at couple of hundred sites and forums across the web. And just like the many previous such examples, the process is automated to the very last stage. Repeated requests expose the entire domains portfolio, where once the live exploit is served with the help of a javascript...

Tags: attack, malware attack, malware, free malware cocktails, anti-malware vendor, media malware gang, massive, entire domains portfolio, domains

Quality and Assurance in Malware Attacks

2008-04-02 11:49:20 by HASH0x8b57b3c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware authors themselves. In fact, the low detection rate is often pointed out as the quality of the crypting service by the authors themselves while advertising their malware or crypting services. And when a popular piece of malware known as Shark introduced a built-in VirusTotal submission to verify the low detecting rate of the newly...

Tags: malware authors start, malware authors, malware, authors, services, malware services, start, malware product, malware campaign

Detection Rates for Malware in the Wild

2008-04-30 04:58:01 by HASH0x8af6948 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...Malware Threat Center is currently generating automated tracking reports in the following sections Most Aggressive Malware Attack Source and Filters Most Effective Malware-Related Snort Signatures Most Prolific BotNet Command and Control Servers and Filters Most Observed Malware-Related DNS Names Most Effective Antivirus Tools Against New...

Tags: malware, signatures based malware, malware authors, source malware, malware threat center, malware binaries, binaries, vendors, vendors infrastructure

Phishers, Spammers, and Malware Authors Clearly Consolidating

2007-12-09 21:14:53 by HASH0x89fa6a4 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware authors for a while The allure of being self-sufficient doesnt seem to be a relevant one when it comes to a spammers results oriented attitude. Spammers excel at harvesting and purchasing email addresses , sending, and successfully delivering the messages, phishers are masters of social engineering, while on the other hand malware...

Tags: malware, malware attachments, malware attack, malware authors, hand malware authors, spammers, modern malware, storm worm malware, emails courtesy

The Dutch Embassy in Moscow Serving Malware

2008-01-28 16:07:58 by HASH0x8af6a58 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware to its visitors at the beginning of last week Earlier this week, the site for the Netherlands Embassy in Russia was caught serving a script that tried to dupe people into installing software that made their machines part of a botnet, according to Ofer Elzam, director of product management for eSafe, a business unit of Aladdin that...

Tags: malware, attack, malware attack, media malware gang, redirector script, script, alive iframes, royal netherlands embassy, alive

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo