Posts Tagged Phishing
Cybercriminals had a phishing Attack on .gov and .mil
Posted by Mourad Ben Lakhoua in Cybercrime, News on February 8, 2010
Criminals are conducting spam attacks on email addresses related to .gov and .mil domain name. According to Brian Krebs Blog post the fake messages includes a link leads to a Trojan Zeus which helps to steal Banking system passwords.
The reason of success of such attacks that the phishing message looks quit legitimate, Recipients are invited to download a report 2020 Project which exist and recently published by the National Intelligence Council of the United States.
At the same time after investigating the email headers the real sender is nobody@sh16.ruskyhost.ru which is a Russian email address.
16 out of 39 Antiviruses detected the malicious software as a dangerous Trojan. Because Cybercriminals are upgrading their Bot Network to cheat on different AV products (F-Secure detected the Trojan as Suspicious:W32/Riskware!Online).
make sure you subscribe to my RSS feed!
Hacking Cocktail for the Halloween!
Posted by Mourad Ben Lakhoua in Cybercrime & Hacking, Internet, News on October 31, 2009
Cybercriminals are not leaving any chance or event without trying to gain more illegal incomes or distribute their Malware. Here there are some cases of Internet scam and other mail tricks are detected by viruslist regarding the Halloween. Cheap software:
Emails not from legitimate sources for advertising costumes and personalized gifts:
E-cards for the Halloween:
Another case which is unusual that this site provides a browser utility you need to install on your browser to send a wishing card, if the victim in US, Canada or other countries than the spammer will be paid by the toolbar developer, here the toolbar can be any kind of malicious code which can be used to take control over the pc:
If the victim is coming from Russian IP he will be redirected to a lottery site:
This is actually fully expected, Hackers are always optimizing thier website links by spam’s and website redirection accompanied with text intended to attract interest. These kinds of attack are intended to spread malicious software or gain more illegal money or to have more personal credentials. Happy Halloween!
Screen shot sources from Viruslist website.
make sure you subscribe to my RSS feed!
Google search contain millions of compromised Webpages
Posted by Mourad Ben Lakhoua in News, Search Engine on October 3, 2009
Nowadays some fake companies forced Google and other search engines to list millions of compromised website in their web search results. These links lead to infected websites that can damage computer system and theft of sensitive information.
This kind of attack aims to redirect the victims to download fake copies of popular programs. For example if you search “cheap vista for student” you can find about 19 million pages and among them some URL for soft4pcs.com which is not a trusted source for windows operating system to download.
Another phishing attack that has been very popular and now is back is ASProx botnet. Many vulnerable IIS can allow hackers to inject malicious javascript link to Microsoft SQL server so on the search engine if you look for used corvette parts it brings you site ads-t.ru/ads.js which spreads a dangerous malicious file in the Adobe flash player.
This kind of attack can allow hackers to take control on millions of machine, to build zombies network that is instructed remotely or to get some sensitive information like bank credentials….
So be very careful with the links in your emails or on search engine and do not click unless you are sure from the source.
make sure you subscribe to my RSS feed!
SUBSCRIBE
