Clik here to view.
Malcovery Examines GameOver Zeus
What is this graphic about? Read on, Gentle Reader!Malcovery: Email Based Threat Intelligence and GameOver ZeusAt Malcovery Security we have become EXTREMELY familiar with GameOver Zeus. Our malware...
View ArticleClik here to view.
Microsoft, njRat, and No-IP
Microsoft's Digital Crimes Unit is claiming their 10th major botnet action, this time targeting the malware known as Bladabindi, or more popularly njRAT, and Jenxcus, better known as H-worm. To do so,...
View ArticleDisk57.com, Cutwail, and Tearing Down Offending Infrastructure
Sometimes I am so impressed by the things my employees at Malcovery discover as they work through the various email-based threats we process and report about for our customers. Brendan, Wayne, and J...
View ArticleClik here to view.
E-ZPass Spam leads to Location Aware Malware
Jump to bottom for update list of malicious URLs If you drive in a city with toll roads, you are familiar with the E-Z Pass System. If you are, you may have been tempted to click on an email that...
View ArticleRoman Seleznev (AKA Bulba, AKA Track2, AKA NCUX) appears in US Court in Guam
The media is buzzing about the arrest of hacker and stolen credit card vendor Roman Seleznev who has appeared in court in the US territory of Guam after being arrested in the Maldives. We wrote about...
View ArticleClik here to view.
New GameOver Zeus Variant uses FastFlux C&C
Over on the Malcovery Security Blog yesterday we covered a new version of GameOver Zeus (see: GameOver Zeus Mutates, Launches Attack ) that was distributed in three spam campaigns on July 10, 2014. At...
View ArticleClik here to view.
Urgent Court Notice from GreenWinick Lawyers delivers malware
I spent some time yesterday in the Malcovery Security Spam Data Mine looking at the E-Z Pass malware campaign. The ASProx spammers behind that campaign have moved on to Court Notice again . . ....
View ArticleClik here to view.
.pif files, Polish spam from Orange, and Tiny Banker (Tinba)
Tonight I was looking at my Twitter feed and saw @SCMagazine talking about ZBerp. It was actually a tweet back to a story from July 11th where Danielle Walker wrote ZBerp Evolves: Spreads through...
View ArticleClik here to view.
SFR phish: the Gateway to all French banks
Back in April, we wrote about the French power company, EDF, being used as a universal phishing target in our article, Multi-Brand French Phisher uses EDF Group for ID Theft. Since that time we are...
View ArticleCounterfeit Legal Notices continue to spread malware
Counterfeit legal notices continue to spread malware Today a friend mentioned that they had seen several ASProx messages being distributed by domains that looked like law firm names warning of court...
View ArticleClik here to view.
Darkode guilty pleas: Phastman, Loki, & Strife
So far there have been three guilty pleas related to the Darkode hacking forum. Although the case, which used the name "Operation Shrouded Horizon" resulted in 70 arrests worldwide, only twelve...
View ArticleClik here to view.
The Case of Spamford Wallace: Guilty at Last!
My anti-spam community friends were all abuzz today with the news that Spamford Wallace had pleaded guilty in a Las Vegas court to "compromising approximately 500,000 Facebook accounts" in order to...
View ArticleClik here to view.
Hackers vs. Drones: ISIS Cyber Caliphate Leader Junaid Hussain
In what may be a first move in the new escalation of cyber warfare with kinetic results, Junaid Hussain, the 20-something hacker who fled to ISIS after being charged with hacking Tony Blair's email...
View ArticleClik here to view.
Hillary's Email Server and the New York City malware
Wednesday night (September 30th) I had a strange Tweet in my notifications from a journalist at ForeignPolicy:Elias explained that he was wanting some quotes in response to a "hyperbolic AP story" by...
View ArticlePasswords, Password Cracking, and Pass Phrases
Yesterday I was contacted by a journalist who had questions about passwords. I tried to convey some concepts to her, but when her response was "Wow. You must really like math!" I knew I had failed...
View ArticleClik here to view.
Vovnenko / Fly / MUXACC1 pleads guilty
Sergey Vovnenko pleads guiltyThis week a Ukrainian hacker made famous for attempting to frame security journalist Brian Krebs by sending him heroin purchased on the Silk Road, had his day in court and...
View ArticleClik here to view.
"Unlimited" ATM Mastermind Ercan Findikoglu pleads guilty
One of the most fascinating types of cybercrime, in my opinion, is the Unlimited ATM attack. There have been several such attacks over the years, as we've written about in this blog previously,...
View ArticleClik here to view.
Spammers for Donald Trump!
As we all know by now, Donald Trump is all about Winning, and whether you like him or hate him, if you quote him in a news story you are going to generate a lot of traffic. Apparently spammers are...
View ArticleClik here to view.
University "Paperless W2" Phish
Please visit my blog post at PhishMe to see information about a wide-spread campaign of "Paperless W2" phish that have been observed by at least twenty different...
View ArticleClik here to view.
Is the Bank of Bangladesh ready for the Global Economy?
On February 4, 2016, more than $100 Million USD were stolen from the Bank of Bangladesh's foreign exchange reserves housed at the Federal Reserve Bank in New York. The hackers had actually attempted to...
View Article