Comments on: ‘Regarding your Friendster password’ themed emails lead to Black Hole exploit kit

By: Bogus ‘End of August Invoices’ themed emails serve malware and client-side exploits « Webroot Threat Blog – Internet Security Threat Updates from Around the World

Fri, 30 Nov 2012 19:00:43 +0000

[...] – seen in – “‘Regarding your Friendster password’ themed emails lead to Black Hole exploit kit“; “‘Fwd: Scan from a Xerox W. Pro’ themed emails lead to Black Hole Exploit [...]

By: Bogus ‘Intuit Software Order Confirmations’ lead to Black Hole Exploit Kit « Webroot Threat Blog – Internet Security Threat Updates from Around the World

Fri, 30 Nov 2012 15:12:04 +0000

[...] emails lead to Black Hole Exploit Kit“ limonadiksec.ru – seen in – “‘Regarding your Friendster password’ themed emails lead to Black Hole exploit kit“; “‘Fwd: Scan from a Xerox W. Pro’ themed emails lead to Black Hole Exploit [...]

By: Multiple ‘Inter-company’ invoice themed campaigns serve malware and client-side exploits « Webroot Threat Blog – Internet Security Threat Updates from Around the World

Tue, 27 Nov 2012 07:35:33 +0000

[...] The first sample obtained from the attached archive, MD5: 03f5311ef1b9f7f09f6e13ff9599f367- is detected by 40 out of 44 antivirus scanners as Worm:Win32/Cridex.E. Upon execution the sample phones back to 95.142.167.193:8080/mx/5/A/in/ (AS29169). We’ve seen another malware campaign also phoning back to the same IP – “‘Regarding your Friendster password’ themed emails lead to Black Hole exploit kit“. [...]

By: ‘Fwd: Scan from a Xerox W. Pro’ themed emails lead to Black Hole Exploit Kit « Webroot Threat Blog – Internet Security Threat Updates from Around the World

Wed, 07 Nov 2012 07:01:48 +0000

[...] already seen one of these domains (sonatanamore.ru) used in the recently profiled “‘Regarding your Friendster password’ themed emails lead to Black Hole exploit kit” campaign, indicating that these campaigns have been launched by the same malicious [...]