Clik here to view.
Fake IRS emails continue to spread Gov-related Zeus
We've already seen nearly 500 copies of the new Government-related Zeus spam campaign so far this morning in the UAB Spam Data Mine. As has been typical in this campaign that we first started tracking...
View ArticleClik here to view.
Inter-company Invoice spam leads to Malware
This morning we are seeing a new spam campaign in the UAB Spam Data Mine. Volumes are still low, but the count is rising steadily, and the detection so far is horrible. When I started writing this post...
View ArticleClik here to view.
New York City "Uniform Traffic Ticket" tops spammed malware
Email attachments that contain malicious code are still being used to infect computers and steal the data found on those computers. While it is easy to find people who discount this threat, believing...
View ArticleClik here to view.
ACH spam uses intermediary sites to deliver malware punch
If you have an email address in the United States, either you or your spam filter is certainly familiar with this spam by now:The spam with the subjects "ACH Payment (random numbers) Canceled" intends...
View ArticleClik here to view.
Duqu: You're safe unless you use TrueType Fonts?
Two of the malware analysts in my lab have been complaining to me that the malware they see everyday is getting boring - the primary attacks that we see in the largest volume are the same thing over...
View ArticleClik here to view.
Operation Ghost Click: DNSChanger Malware Ring Dismantled
Since 2007 computers around the internet have been suffering from a secret ailment. Sometimes when their owners clicked on a link, they didn't go where they were supposed to go! The problem was caused...
View ArticleClik here to view.
ACH / WireTransfer Failed spam goes crazy!
Yesterday we saw two HUGE spam campaigns that continue into this morning advertising various alternatives of "your wire transfer failed" as subject lines.We saw at least 86,197 copies of this spam on...
View ArticleClik here to view.
Operation Open Market: Jonathan Vergnetti
On Friday, March 16, 2012, the United States Secret Service announced the results of "Operation Open Market" in a headquarters press release lead by A.T. Smith, the Assistant Director for...
View ArticleClik here to view.
Russian MVD announces arrest of CARBERP gang
Today the Russian MVD and FSB have announced the arrest of eight cybercriminals who have stolen more than 60 million rubles ($2 million USD) from at least ninety victim bank accounts in the charges...
View ArticleClik here to view.
Zeus still a Spam Threat
Tonight's Rock Center with Brian Williams episode talked about the September 2010 "Trident BreACH" case. One of the things that the students in the UAB Computer Forensics Research Laboratory learn is...
View ArticleClik here to view.
Operation Open Market: The Vendors
When we wrote last week about Operation Open Market the court documents had not yet been released in a major multi-agency Identity Theft case which targeted criminals who traded in the identities of...
View ArticleClik here to view.
MicrosoftDCU, FS-ISAC, and NACHA vs. Zeus
On March 24, 2012, Microsoft unveiled a joint lawsuit with the Financial Services Information Sharing and Analysis Center (FS-ISAC) and the National Automated Clearing House Association (NACHA). Based...
View ArticleClik here to view.
DNS Changer: Countdown clock reset, but still ticking
Operation Ghost ClickLast November, the main FBI.gov website headline was "DNS Malware: Is Your Computer Infected?". The story detailed the arrest of six Estonian criminals who had infected more than 4...
View ArticleClik here to view.
USPS Click-N-Ship abused in malware spam
This campaign begins with an email that looks like this:The email indicates that you have been charged a random amount of money to have a shipping label created. In this case, we were charged $47.44....
View ArticleClik here to view.
UK Zeus user G-Zero Sentenced
According to today's Daily Mail, court details have now emerged regarding Edward Pearson, a 23 year old hacker from York, England known online as "G-Zero", and his activities involving the Zeus and...
View ArticleClik here to view.
SOCA & FBI seize 36 Criminal Credit Card Stores
Today the Serious & Organised Crime Agency (SOCA) in the UK announced the completion of a joint operation targeting 36 criminal websites dealing with stolen credit card and online bank account...
View ArticleClik here to view.
Paypal "You Just Sent a Payment" spam leads to malware
A new malicious spam campaign has just launched this morning targeting Paypal users. This malware campaign attempts to "social engineer" users into clicking a link that they know they shouldn't click...
View ArticleClik here to view.
Waya Nwaki pleads guilty in globe-spanning phishing ring
We often hear complaints from our Banking friends about criminals in Nigeria. Today's story is another example of the truth that in 2012, there is no place left to hide. Back in April 2011, FBI New...
View ArticleClik here to view.
IRS Identity Theft leads to 25 year Sentence for Alabama Fraudsters
The news in Alabama today is that IDENTITY THEFT DOES NOT PAY. Veronica Dale of Montgomery, Alabama was sentenced to 334 months in prison and Alchico Grant of Lowndes County, Alabama was sentenced to...
View ArticleClik here to view.
Nichole Michelle Merzi of Operation Phish Phry gets 5 years
Back in 2009, this blog ran the story FBI's Biggest Domestic Phishing Bust documenting Operation Phish Phry and explaining what was then known of the structure of an international phishing operation...
View Article