SecurityRatty: tag: malware

Coding Spyware and Malware for Hire

2008-07-22 03:52:14 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware and spyware for hire services. What used to be a situation where the malware authors would code and then start promoting a piece of malware including features that he thinks his potential customers would want by generalizing a cybercriminal's needs, is today's "listening to the customer" win-win situation that they've reached already...

Tags: malware, malware author, malware authors, malware binaries, malware attacks, ftp, ftp user, collects, malware industry

The United Nations Serving Malware

2008-04-23 10:13:00 by HASH0x8b31c98 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware infected page, and with a reason since both the malicious URl and the injection are still active. According to WebSense This mass injection is remarkably similar to the attack we saw earlier this month. When a user browses to a compromised site, the injected JavaScript loads a file named 1.js which is ho sted on...

Tags: malware, attack, malware attack, anti-malware vendor, media malware gang, htm, nihaorr1, load nihaorr1, attack tactic

Banker Malware Targeting Brazilian Banks in the Wild

2008-08-18 07:01:03 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware, and the malware coding for hire customer tailored services, certain malware authors still believe in the product concept, namely, they build it and wait for someone to come. In this underground proposition for a proprietary banker malware targeting primarily Brazillian bank, the author is relying on the localized value added to his...

Tags: banker malware, banker malware kit, kit, popular banker malware, malware, bank itau personnalite, bank itau, malware authors, russian malware authors

A Localized Bankers Malware Campaign

2008-03-25 14:59:06 by HASH0x8b6136c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...Malware campaign that I exposed in November 2007, in this post I'll assess another targeted, but also localized to Portuguese campaign with a decent degree of cyber deception applied. It appears that the latest round has been spammed two days ago, but expanding their ecosystem reveals evidence of more bankers malware on behalf of the same...

Tags: malware, bankers malware campaign, malware malware, malware campaigns, malicious malware, banker malware, bankers malware, malware authors, campaign

Quality and Assurance in Malware Attacks

2008-04-02 11:49:20 by HASH0x8b57b3c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware authors themselves. In fact, the low detection rate is often pointed out as the quality of the crypting service by the authors themselves while advertising their malware or crypting services. And when a popular piece of malware known as Shark introduced a built-in VirusTotal submission to verify the low detecting rate of the newly...

Tags: malware authors start, malware authors, malware, authors, services, malware services, start, malware product, malware campaign

New DIY Malware in the Wild

2008-04-29 16:06:55 by HASH0x8b1f28c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware is getting pitched as one with low detection rate due to its proprietary nature , following the logic that based on the fact that few people will have it, it would somehow remain undetected for a longer period of time. The applied logic is however, excluding the possibility of used to recently purchased good as a bargain to obtain or...

Tags: diy malware, malware, diy malware droppers, do-it-yourself malware, novice malware coder, malware authors, source malware, malware loader, multi-feature malware crypter

Detection Rates for Malware in the Wild

2008-04-30 04:58:01 by HASH0x8af6948 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...Malware Threat Center is currently generating automated tracking reports in the following sections Most Aggressive Malware Attack Source and Filters Most Effective Malware-Related Snort Signatures Most Prolific BotNet Command and Control Servers and Filters Most Observed Malware-Related DNS Names Most Effective Antivirus Tools Against New...

Tags: malware, signatures based malware, malware authors, source malware, malware threat center, malware binaries, binaries, vendors, vendors infrastructure

Counting the Bullets on the (Malware) Front

2008-07-25 03:25:13 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware is your antivirus solution detecting? A million, ten million, even "worse", less than a million? Does it really matter? No, it doesn't. What's marketable can also be irrelevant if you are to consider that today's malware is no longer coded, but generated efficiently and obfuscated on the fly . Sophos's recent statistics It is...

Tags: malware samples, million malware samples, malware, samples, unique malware samples, hire malware bot, malware authors, count malware, malware variants

Cached Malware Embedded Sites

2007-12-16 18:18:26 by HASH0x8a09e44 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...malware embedded sites who were cleaned before they could be analyzed, mainly popular sites who get crawled several times daily. However, Yahoo's and MSN's search engines, with MSN providing Archive.org type of historical crawling content, have been an invaluable resource in providing the actionable historical intelligence in the form of what...

Tags: sites, sites wrongly, web sites, malware, malicious site, site, single site offers, sites notification services, popular sites

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo