SecurityRatty: tag: rogue

Rogue RBN Software Pushed Through Blackhat SEO

2008-03-05 08:19:46 by HASH0x8b39d2c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...rogue XP AntiVirus are relying on a much more diverse set of domains loading the IFRAME. One factor remains the same, both campaigns continue pushing the rogue XP AntiVirus. XP AntiVirus's pitch, note the downloads success rate mentioned and how they forgot to change the template used in the campaign by putting the rogue's name XP antivirus...

Tags: rbn, huge iframe campaign, iframe campaign, iframe, rbn coverage, single rbn, russian business network, campaign, antivirus

Blackhat SEO Redirects to Malware and Rogue Software

2008-06-05 07:59:47 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...rogue codecs (Zlob malware variants) and fake security software phoning back to UkrTeleGroup Ltd's network - could it get even more interesting? Of course, as the current state of Zlob malware serving tactics can be seperated in two distinct groups, those abusing the "sort of" zero day Flash exploit , as the currently active SQL injection...

Tags: sites, profile sites, multimedia sites, codec sites, zlob variants, zlob, zlob malware variants, rogue codec sites, domains

Windows stalked by rogue packets?

2008-02-28 00:00:00 by Jason Meserve in Network World on Security

...rogue" packets and that any 'Net connected PC could be affected. Sounds scary, but I am sure it's just another day in the Redmond Patch Department. One thing that does scare me, given my "Out of office" message is on this week, is a story about how spammers are using such auto-reply messages as means to relay Spam. Hopefully, I am not...

Tags: redmond patch department, windows, packets, security team, rogue, sounds scary, relay spam, auto-reply messages, story

What are the best methods for handling rogue access points?

2008-05-08 13:49:02 by Michael Gregg in WhatIs: Enterprise IT tips and expert advice

Our network security expert, Michael Gregg, explains how to enforce network policy and handle rogue access points (APs) in this expert response

Tags: handle rogue access, network security expert, enforce network policy, michael gregg, expert response, aps, explains

Opinion: How to protect your network from rogue IT employees

2008-07-21 13:00:00 by Editor in Computerworld Security News

Several basic network security principles appear to have been ignored in the city of San Francisco's IT department, resulting in a rogue network admin creating a "superpassword" that blocked everyone else's administrative functions -- and his arrest

Tags: rogue network admin, administrative functions, san francisco, department, city, superpassword

Why San Francisco's network admin went rogue

2008-07-21 00:00:00 by HASH0x8473438 in Network World on Security

...rogue admin taking a network hostage for reasons unknown, but new information from a source close to the situation presents a different picture

Tags: san francisco, terry childs, network administrator, network hostage, rogue admin, reasons unknown, news reports, source close, million bail

Lazy Summer Days at UkrTeleGroup Ltd

2008-07-22 07:12:02 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...rogue security software nexto to the codecs served, always represent a decent sample of malicious activities to analyze UkrTeleGroup Ltd ( 85.255.112.0-85.255.127.255 UkrTeleGroup UkrTeleGroup Ltd. 27595 ASN ATRIVO ), a personal favorite due to its historical connection with the Russian Business Network, and hosting provider for a countless...

Tags: ukrtelegroup, codecs, fake codecs simultaneously, rogue security software, ukrtelegroup ukrtelegroup, fake codecs, home, home stat, scammy ecosystem

More CNET Sites Under IFRAME Attack

2008-03-06 10:50:57 by HASH0x8b1424c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...rogue XP AntiVirus , the rogue Spyshredderscanner, as well as another fake codec MediaTubeCodec.exe , hosted and distributed under two new domains Which sites are currently targeted ZDNet Asia - currently has 51,900 injected pages TV.com - 49,600 locally hosted IFRAME injected pages News.com - 167 locally hosted pages, injection is ongoing...

Tags: iframe, cnet sites, sites, iframe-ed pages, pages, cnet, iframe redirects, iframe campaign, campaign

Massive IFRAME SEO Poisoning Attack Continuing

2008-03-27 21:12:29 by HASH0x8b4fa7c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...rogue software and malware, remain the same, and are still active. The very latest high profile sites successfully injected with IFRAMES forwarding to the rogue security software and Zlob malware variants USAToday.com , ABCNews.com , News.com , Target.com , Packard Bell.com , Walmart.com , Rediff.com , MiamiHerald.com , Bloomingdales.com ,...

Tags: massive, single massive seo, profile sites, profile sites iframe, attack, seo, malware, malware attack, massive blackhat seo

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo