Category Archives: The Law

We’ve been watching a long list of domains that serve up whatever filename you give them, but they provide nothing but a good old fashioned Rogueware downloader, which sometimes goes by the family name Trojan-Downloader.Renos, or Trojan.Fakealert. It’s one of … Continue reading

Posted in Online Fraud, The Law | 5 Comments

Creating, operating and expanding the Waledac botnet is an ongoing effort, similar to the Storm operation that had dwindled this past year. The Waledac operators have automated a fairly predictable registration and setup of their malicious web sites and corresponding … Continue reading

Posted in Online Fraud, The Law | Leave a comment

Unfortunately, a handful of legitimate online greeting card sites continue to be spoofed as parts of the ongoing successful Waledac threat.While it is similar to the Storm threat, the shameless ripoff of multiple greeting card sites are even more blatent … Continue reading

Posted in Online Fraud, The Law | 1 Comment

In yet another Marguerite-esque scheme, a file being presented as an mp3 codec is not a codec. Not surprisingly, the file turning up in the ThreatFire community is related to crack sites and p2p networks. When run, this little fsg … Continue reading

Posted in Online Fraud, The Law | Leave a comment

It’s been a while since the previous post discussed commercial “intelligence gathering tool”. It would have seemed ridiculous, if this time it wasn’t UK government who thinks it’s acceptable to hack into home computers, spread malware via email, log users’ … Continue reading

Posted in Online Fraud, The Law | Leave a comment

Yesterday’s presentation at the Chaos Communication Congress by a handful of researchers brought to light that the use of MD5 for secure computing (digital certificates, SSL, etc) truly is gasping its last breath. A fine summary of the MD5 algorithm … Continue reading

Posted in Online Fraud, The Law | 1 Comment

In a throwback to the Storm campaigns that we heavily reported on in 2007, another group has been spamming out links to malicious Season’s Greetings’ sites (a list of domains previously serving up “ecard.exe” variants can be found here), attempting … Continue reading

Posted in Online Fraud, The Law | Leave a comment

Zbot is the kind of malware you really don’t want to see on anyone’s computer, stealing banking passwords and financial information. We’ve been seeing more reports and ThreatFire preventions of the malware delivered along with a somewhat common email-based social … Continue reading

Posted in Online Fraud, The Law | 3 Comments

As published in the previous blog post, analysis of the current version of Koobface uncovered a very interesting part about it – its “ability” to resolve CAPTCHA protection at the Facebook web site. To put it simply, if Koobface was … Continue reading

Posted in Online Fraud, The Law | Leave a comment

The banking trojan Zbot (aka WSNPOEM/Zeus/PRG) is still circulating “in-the-wild” in various modifications. If you are tracking Zbot submissions at ThreatExpert web site, you might find useful the following tool that decrypts the contents of the configuration files downloaded by … Continue reading

Posted in Online Fraud, The Law | Leave a comment

Antivirus 360 is the new Antivirus 2009 indeed. It is spreading using the same old commodity plugin exploit techniques as AV 2009. Be sure to update any QuickTime Player or Adobe Plugins that you may be running to the latest … Continue reading

Posted in Online Fraud, The Law | Leave a comment

According to multiple forum posts, there are a number of people who seem to be infected with a mysterious virus that pops up every 10 minutes or so and displays a message “Intervalhehehe”. This threat is most likely distributed as … Continue reading

Posted in The Law | Leave a comment

But happy Pi day — 3.14 Pi. It’s transcendental, irrational, or even savory or sweet.It’s also the number that you magically arrive at when you divide a circle’s circumference by its diameter. My favorite piku example so far is by … Continue reading

Posted in Online Fraud, The Law | Leave a comment

And here I was trying to make an effort to make our research readable and entertaining for just about anyone interested in computer security… I’ll add more pictures.

Posted in Online Fraud, The Law | Leave a comment

Dear Reader, ThreatExpert is a software program that runs on multiple servers and performs an automated analysis of threat samples coming from various sources. If you want to explore ThreatExpert, read its reports, or submit your own samples for analysis, … Continue reading

Posted in Online Fraud, The Law | Leave a comment

Broadband users around the world often don’t think much about uninterrupted access to online resources, relying on the massive web of cables across the globe. But today, Egyptian, Indian and other users of the internet suffered major interruptions to their … Continue reading

Posted in Online Fraud, The Law | Leave a comment