SEARCH RESULTS
 
Showing 1-10 of 127 records
 
Expand article

Over 80 percent of Storm Worm Spam Sent by Pharmaceutical Spam Kings

The Article has images
2008-07-29 03:29:54 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Stormy Wormy, according to IronPort whose " Researchers Link Storm Botnet to Illegal Pharmaceutical Sales Our previous research revealed an extremely sophisticated supply chain behind the illegal pharmacy products shipped after orders were placed on botnet-spammed Canadian pharmacy websites. But the relationship between the...
 
Tags: storm worm, storm worm malware, storm, hardcore storm worm-ers, storm worm-ers, malware, botnet, botnet masters, botnet spam
 
 
 
 
Expand article

All You Need is Storm Worm's Love

The Article has images
2008-05-20 07:46:40 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Storm Worm malware launched yet another spam campaign promoting links to malware serving hosts, in between a SQL injection related to Storm Worm These are Storm Worm's latest domains where the infected hosts try to phone back cadeaux-avenue.cn (active polkerdesign.cn (active tellicolakerealty.cn (active and SQL injected at vulnerable sites...
 
Tags: storm worm, storm worm malware, malware, likenewvideos, campaign, valentine campaign, orthelike, domains, sql injection
 
 
 
 
Expand article

Storm Worm's U.S Invasion of Iran Campaign

The Article has images
2008-07-08 20:07:39 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Storm Worm-ers are keeping themselves busy, with two campaigns in less than a week, following the latest on the 4th of July . Now, they are spreading rumors of a U.S invasion in Iran Just now US Army's Delta Force and U.S. Air Force have invaded Iran. Approximately 20000 soldiers crossed the border into Iran and broke down the Iran's Army...
 
Tags: storm worm, storm worm malware, storm worm-ers, storm worm domains, iran, campaign, iran occupation, domains, malware
 
 
 
 
Expand article

Storm Worm Hosting Pharmaceutical Scams

The Article has images
2008-05-30 14:50:06 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Storm's recent SQL injection and introduction of several new domains within, the very latest additions to their domain portfolio are the following domains (naturally in a fast-flux provided by already infected hosts) hosting pharmaceutical scams producemorning.com pressrose.com posestory.com picturewe st.com lowsmell.com catsharp.com...
 
Tags: storm worm, storm, storm worm malware, malware, ssl encryption, ssl, lock, key lock, key
 
 
 
 
Expand article

Riders on the Storm Worm

The Article has images
2007-12-28 11:35:58 by HASH0x89eeda4 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Storm Worm have started using several new, and highly descriptive domains. It seems they've also changed the layout as well, and despite that the exploit IFRAME is now gone, automatically registered Blogspot accounts are also disseminating links to the domains. Some of these have been registered as of recently, others have been around in a...
 
Tags: storm worm, storm worm campaign, storm, campaign, technical contact, contact, highly descriptive domains, sample blogspot urls, descriptive domains
 
 
 
 
Expand article

Storm Worm's Lazy Summer Campaigns

The Article has images
2008-07-31 06:39:35 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Storm Worm-ers seem to be lacking their usual creativity in respect to the usual social engineering attacks taking advantage of the momentum we're used to seeing. These days they're not piggybacking on real news items, they're starting to come up with new ones Storm's latest "FBI vs Facebook" campaign is an example of very badly executed...
 
Tags: storm, campaign, storm worm campaign, storm nameservers, storm worm sample, storm fast-flux node, brprbgok6, usual social, lee chung leelikethisone1
 
 
 
 
Expand article

The Cyber Storm II Cyber Exercise

The Article has images
2008-04-03 12:29:03 by HASH0x8b6d0a8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Storm" Cyber Exercise aiming to evaluate the preparedness for cyber attacks of several governments two years ago, and pointed out that Frontal attacks could rarely occur, as cyberterrorism by itself wouldn't need to interact with the critical infrastructure, it would abuse it, use it as platform. However, building confidence within the...
 
Tags: cyber warfare, passive cyber warfare, cyber warfare tensions, offensive cyber warfare, cyber warfare exercise, warfare, econonomic warfare, cyber warfare attacks, broader information warfare
 
 
 
 
Expand article

Visualized Storm fireworks for your 4th of July

The Article has images
2008-07-03 20:54:00 by Russ McRee in HolisticInfoSec.org
...Storm botnet maestros have queued up some pwnage for your 4th of July See the SANS diary for all the details Upon receipt of my first fireworks.exe sample this evening, I went through the standard routine and ran it through the analysis mill. Like the ISC said, not much new here, but if you'd like the nitty-gritty, I've put the analysis...
 
Tags: 4th, fireworks, july, security visualization, happy 4th, peers config list, afterglow, visualization workshop slides, raffael marty
 
 
 
 
Expand article

Storm Worm delivering coal this Christmas

2007-12-26 16:30:06 by Editor in Digg / Security
 
Less than a day until Christmas, the Storm worm has appeared with a little holiday joy for all. The Storm botnet is on the prowl for new users to infect, and has a new set of holiday-themed messages
 
Tags: storm worm, christmas, storm botnet, holiday joy, messages, infect, users, prowl, day