Category Archives: Passwords

The keys to the virtual kingdom, and the holy grail of Internet thieves.

Researchers spot Citadel, a ZeuS crimeware variant

February 8, 2012 – 1:35 pm

By Dancho Danchev Security researchers from “Tracking Cyber Crime” have spotted a new ZeuS crimeware variant, that’s based on the leaked ZeuS source code from last year. Dubbed Citadel, the crimeware is positioned as a universal spyware system, whose modular nature allows cybercriminals to offer flexibly priced value-added services such as managed malware crypting, and [...]

By ddanchev | Also posted in Downloaders, Keyloggers, malware, rootkit, Threat Research, Trojans | Leave a Comment

A peek inside the Smoke Malware Loader

February 3, 2012 – 5:07 pm

By Dancho Danchev The competitive arms race between security vendors and malicious cybercriminals constantly produces new defensive mechanisms, next to new attack platforms and malicious tools aiming to efficiently exploit and infect as many people as possible. Continuing the “A peek inside…” series, in this post I will profile yet another malware loader. This time it’s [...]

By ddanchev | Also posted in Downloaders, Keyloggers, malware, Threat Research, Trojans | Comments (1)

A peek inside the uBot malware bot

January 26, 2012 – 12:18 pm

By Dancho Danchev Participants in the dynamic cybercrime underground ecosystem are constantly working on new cybercrime-friendly releases in the form of malware bots, Remote Access Tools (RATs) and malware loaders. Continuing the “A peek inside…” series, in this post I will profile yet another DIY (do-it-yourself) malware bot, available at the disposal of cybercriminals at [...]

By ddanchev | Also posted in Backdoors, Downloaders, Keyloggers, malware, Threat Research, Trojans | Comments (3)

Researchers intercept a client-side exploits serving malware campaign

January 25, 2012 – 12:14 pm

By Dancho Danchev Security researchers from Webroot have intercepted a currently active, client-side exploits-serving malicious campaign that has already managed to infect 18,544 computers across the globe, through the BlackHole web malware exploitation kit. More details:

By ddanchev | Also posted in Backdoors, Downloaders, Firefox, Google Chrome, Internet Explorer, Keyloggers, malware, rootkit, Threat Research, Trojans | Comments (7)

How phishers launch phishing attacks

January 23, 2012 – 7:27 pm

By Dancho Danchev Just like in every other industry, participants in the cybercrime ecosystem are no strangers to the concept of standardization. Standardization results in efficiencies, which on the other hand results in economies of scale. In this case, malicious economies of scale. Just how easy is it to launch a phishing attack nowadays? What tools, [...]

By ddanchev | Also posted in Online shopping threats, phishing, social engineering, spam, Threat Research | Leave a Comment

Email hacking for hire going mainstream

January 5, 2012 – 11:25 am

by Dancho Danchev Just how easy is it to hack someone’s email nowadays? Very easy as the process is offered as a managed service within the cybercrime ecosystem. Over the past couple of months, I have been monitoring an increase in managed email hacking services. These services basically offered everyone the ability to claim someone [...]

By ddanchev | Also posted in phishing, social engineering | Comments (9)

Webroot Answers Your Security Questions

April 5, 2011 – 9:05 am

By Andrew Brandt I’m very pleased to present today the first in a series of videos we’ve produced. The videos have the lofty goal of addressing the most pressing questions relating to malware, cybercrime, and online fraud. We’ll take you behind the scenes at Webroot and introduce you to some of our Threat Research team [...]

By Lisa Bongiovanni | Also posted in Destructive behavior, phishing, social engineering, spam, Stupid malware tricks, Threat Research | Comments (2)

Pinball Corp’s Appbundler Employs Malware-like Techniques

March 29, 2011 – 12:44 pm

By Andrew Brandt For a couple of weeks now, I’ve been noticing a curious (and increasingly prevalent) phenomenon: Some of the free Web hosts popular among those who engage in phishing are popping new types of multimedia ads over the tops of the pages they host. Not only does the victim, in this case, risk [...]

By Lisa Bongiovanni | Also posted in adware, Downloaders, phishing, social engineering, social networks, Stupid malware tricks, Threat Research | Comments (2)

Fishing for Phishers is a Full-Time Job

February 23, 2011 – 12:30 pm

By Ian Moyse, EMEA Channel Director We seem to take phishing attacks for granted these days, in much the same way that we’ve accepted spam as a natural, and inevitable, by-product of email. Some experts believe that one of the best solutions to thwart phishing attacks is end-user training, but I doubt training alone can [...]

By Lisa Bongiovanni | Also posted in Gaming threats, Online shopping threats, phishing, social engineering, spam | Comments (1)

Tips to Avoid Tax Season Scams

January 28, 2011 – 7:01 am

By Jeff Horne, Director, Threat Research As tax season rolls around again in the US and UK, it seems like a good time to revisit the perils taxpayers face seemingly every year at around this time. Phishing attacks against taxpayers are already in full swing — not that they haven’t been going continuously since last [...]

By Lisa Bongiovanni | Also posted in hijack search results, Internet Explorer, phishing, Phishing Trojans, social engineering, Threat Research | Comments (1)
Follow

Get every new post delivered to your Inbox.

Join 609 other followers