Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
 
Showing 1-10 of 225 records
 
Expand article

Summarizing Zero Day's Posts for August

The Article has images
2008-09-04 07:40:10 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...security vulnerabilities, demands 20,000 euros to release details 09. Intel proactively fixes security flaws in its chips 10. 1.5m spam emails sent from compromised University accounts 11. Fortune 500 companies use of email spoofing countermeasures declining 12. China busts hacking ring, managed to penetrate 10 gov't databases 13. Scammers...
 
Tags: georgia cyber attack, adobe flash exploits, malware, flash exploits, undetectable malware, inside india, day, million personal records, clientside developer blog
 
 
 
 
Expand article

The Commoditization of Anti Debugging Features in RATs

The Article has images
2008-09-03 07:46:00 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Is it a Remote Administration Tool (RAT) or is it malware ? That's the rhetorical question , since RATs are not supposed to have built-in Virustotal submission for the newly generated server, antivirus software "killing" and firewall bypassing capabilities Taking a peek into some of commodity features aiming to make it harder to analyze the...
 
Tags: anti, anti vmware, anti norman sandbox, common malware tools, malware, anti virtualpc, malware coders, anti anubis sandbox, malware modulators
 
 
 
 
Expand article

Copycat Web Malware Exploitation Kits are Faddish

The Article has images
2008-09-03 07:18:08 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
For the cheap cybercriminals not wanting to invest a couple of thousand dollars into purchasing a cutting edge web malware exploitation kit -- a pirated copy of which they would ironically obtained several moths later -- with all the related and royalty free updates coming with it, there are always the copycat malware kits like this one offered...
 
Tags: malware kits, web malware kits, kits, copycat malware kits, proprietary kits, term, long-term growth strategy, icepack, icepack exploitation kit
 
 
 
 
Expand article

A Diverse Portfolio of Fake Security Software - Part Five

The Article has images
2008-09-02 05:04:58 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...security software propositions are not just starting to take park them at up to three different locations, localize the sites to different languages and introduce client-side exploits , just in case the end user gets suspicious and doesn't install it, but also, the natural evasive practices. For instance, once some of their domains get...
 
Tags: fake security software, net, diverse portfolio, introduce client-side exploits, malicious isps, exploits, sql injection attack, lazy summer days, domains
 
 
 
 
Expand article

Exposing Indias CAPTCHA Solving Economy

The Article has images
2008-08-29 17:03:37 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Are you a Human?" - once asked the CAPTCHA, and the question got answered by, well, a human, thousands of them to be precise. Speculations around one of the main weaknesses of CAPTCHA based authentication in the face of human CAPTCHA solvers, seems to have evolved into a booming economy in India during the past 12 months, with thousands of...
 
Tags: captcha, microsofts captcha, indias major captcha, hotmails captcha, unbreakable captcha, human captcha solvers, human, inside indias captcha, captcha based authentication
 
 
 
 
Expand article

Fake Security Software Domains Serving Exploits

The Article has images
2008-08-28 06:41:10 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...security software's site, may in fact start receiving so much traffic due to the combination of traffic acquisition tactics, that introducing client-side exploits courtesy of a third-party affiliate network , may in fact prove more profitable then the revenue sharing partnership with the rogue security software's vendor at the first place ...
 
Tags: exploits, domains, client-side exploits courtesy, client-side exploits start, start, fake security software, antivirus, google adwords, fake domains portfolio
 
 
 
 
Expand article

Facebook Malware Campaigns Rotating Tactics

The Article has images
2008-08-27 10:04:51 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Trust is vital, and coming up with ways to multiply the trust factor is crucial for a successful malware campaign spreading across social networks . Excluding the publicly available malware modules for spreading across popular social networking sites , using the presumably, already phished accounts for the foundation of the trust factor, the...
 
Tags: malware campaign, successful malware campaign, facebook, facebook malware campaign, campaigns, campaign, campaigns based, trust factor, trust
 
 
 
 
Expand article

Fake Porn Sites Serving Malware - Part Three

The Article has images
2008-08-26 09:02:26 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Continue the Fake Porn Sites Serving Malware and Fake Porn Sites Serving Malware - Part Two series, in part three we'll take a peek at the emerging trend of parking a single domain at up to three different hosting locations, re-establishing connections between malicious ISPs for yet another time in between exposing the domains and the download...
 
Tags: fake porn sites, net, info, codec, malware, php, sample codec, locations, fake porn site
 
 
 
 
Expand article

Automatic Email Harvesting 2.0

The Article has images
2008-08-26 08:01:51 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Just when you think that email harvesting matured into user names harvesting in a true Web 2.0 style with the recently uncovered harvested IM screen names , and Youtube user lists for spammers, phishers and malware authors to take advantage of, someone has filled in the gap that's been around as long as email harvesting has been a daily routine...
 
Tags: email, email addresses