SEARCH RESULTS
 
Showing 1-5 of 5 records
1
 
Expand article

Phishing Emails Generating Botnet Scaling

The Article has images
2008-04-18 14:57:30 by HASH0x8aef3f0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...nameservers used in the latest campaign news report-pdf content.exe Scanners result : 14/31 (45.17 Backdoor.Win32.Agent.gvk; Backdoor:Win32/Agent.ACG File size: 45056 bytes MD5...: c4849207a94d1db4a0211f88e84b0b59 SHA1..: 32ef2a074d563370f46738565ecf9bb53c75909c SHA256: 12a124cc2352f3ef68ddf06e0ed111c617d95cffd807dc502ae474960a60411c An...
 
Tags: bank, bank digital, ns1, bank bankline, ns2, bank internet, malware, malware variants signal, botnet
 
 
 
 
Expand article

Inside a Botnet's Phishing Activities

The Article has images
2008-02-25 09:34:49 by HASH0x8b44f48 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...nameservers indicating their connection. Here are some of the subdomains in the already running, and spammed phishing campaigns direct-certs9.bankofamerica.com.ssl36.net www1.update.microsoft.com.ssl36.net www7.nationalcity.com.asp29.com/consultnc/form.asp microsoft.com.sec94.in direct-certs1.bankofamerica.com.asp63.net...
 
Tags: net, botnet, bkdr agent, agent, microsoft, hosts phone, domains, hosts, ecosystem
 
 
 
 
Expand article

ZDNet Asia and TorrentReactor IFRAME-ed

The Article has images
2008-03-04 09:15:20 by HASH0x8b3f7c8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...nameservers, findhowto.net , searchhowto.net . Ppcan.net has already been assessed by Microsoft's Security Team The advantage gained by faking the Referer field is nullified when pages use client-side cloaking to distinguish between fake and real Referer field data by running a script in the clients browser to check the document.referrer...
 
Tags: iframe, zdnet asia, pages, pages redirect, iframe-ed pages, torrentreactor, iframe-ing tactic remains, seo practices, torrentreactor seo practices
 
 
 
 
Expand article

Several Vendors Including Microsoft Patch Multiplatform DNS Vulnerability

2008-07-08 22:49:43 by CyberInsecure in CyberInsecure.com
 
Deficiencies in the Domain Name System (DNS) protocol may leave affected systems vulnerable to DNS cache poisoning attacks. If an attacker can successfully conduct a cache poisoning attack, they may be able to cause a nameservers clients to contact the incorrect, and possibly malicious, hosts for particular services. This may allow an attacker...
 
Tags: dns, dns cache, cache, nameservers clients, possibly malicious, attacker, systems vulnerable, hosts, protocol
 
 
 
 
Expand article

Storm Worm's Lazy Summer Campaigns

The Article has images
2008-07-31 06:39:35 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...nameservers ns2.verynicebank .com ns3.verynicebank .com ns.likethisone1 .com ns2.likethisone1 .com ns3.lollypopycandy .com ns4.lollypopycandy .com Someone's bored, definitely, making it look like it's almost someone else managing a Storm Worm campaign on behalf of them
 
Tags: storm, campaign, storm worm campaign, storm nameservers, storm worm sample, storm fast-flux node, brprbgok6, usual social, lee chung leelikethisone1
 
 
 
 
 
Showing 1-5 of 5 records
1
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia