cybercrime « Webroot Threat Blog

Spamvertised Verizon-themed ‘Your Bill Is Now Available’ emails lead to ZeuS crimeware

March 29, 2012 – 11:16 am

By Dancho Danchev Cybercriminals newest spamvertised malware campaign is brand-jacking Verizon Wireless in an attempt to trick end users into clicking on the malicious links embedded in the email. More details:

By ddanchev | Posted in Downloaders, Exploits, Keyloggers, malware, Passwords, spam, Threat Research, Trojans | Tags: Client-Side Exploits, cybercrime, Exploits, Malicious Software, malware, security, Spam Campaign, Verizon, ZeuS Crimeware | Comments (1)

Spamvertised LinkedIn notifications serving client-side exploits and malware

March 23, 2012 – 10:14 am

By Dancho Danchev Cybercriminals are currently spamvertising LinkedIn themed messages, in an attempt to trick end and corporate users into clicking on the malicious links embedded in the emails. The campaign is using real names of LinkedIn users in an attempt to increase the authenticity of the spamvertised campaign. More details:

By ddanchev | Posted in Downloaders, Exploits, Keyloggers, malware, Rogue Security Products, social networks, spam, Threat Research, Trojans | Tags: Client-Side Exploits, cybercrime, LinkedIn, Malicious Software, malware, security | Comments (5)

Malicious USPS-themed emails circulating in the wild

March 23, 2012 – 3:00 am

By Dancho Danchev Cybercriminals are currently spamvertising malicious USPS-themed emails, that entice end and corporate users into clicking on malicious links found in the emails. More details:

By ddanchev | Posted in Downloaders, Exploits, Keyloggers, malware, spam, Threat Research, Trojans | Tags: Client-Side Exploits, cybercrime, Exploits, Malicious Campaign, Malicious Software, malware, security, USPS, vulnerabilities | Comments (3)

Spamvertised ‘Your tax return appeal is declined’ emails serving client-side exploits and malware

March 22, 2012 – 9:13 am

By Dancho Danchev Cybercriminals are currently spamvertising with IRS (Internal Revenue Service) themed emails, enticing end and corporate users into downloading and viewing a malicious .htm attachment. More details:

By ddanchev | Posted in Downloaders, Keyloggers, mal-effects, malware, social engineering, Threat Research, Trojans | Tags: cybercrime, internal revenue service, IRS, Malicious Attachment, Malicious Software, malware, security, spam | Comments (2)

Millions of harvested U.S government and U.S military email addresses offered for sale

March 16, 2012 – 4:47 pm

By Dancho Danchev Remember the underground service offering millions of harvested emails for sale profiled at the Webroot Threat Blog in January? It appears that cybercriminals are continuing to innovate in this underground market segment by offering geolocated databases of millions of harvested emails for better targeting in their upcoming spam campaigns. In this post, I’ll [...]

By ddanchev | Posted in spam | Tags: cybercrime, Harvested Emails, security, spam, Spamming, Underground Service | Comments (5)

Research: U.S accounts for 72% of fraudulent pharmaceutical orders

March 16, 2012 – 4:41 pm

By Dancho Danchev Just how profitable is spam? Who’s buying the counterfeit pharmaceutical items advertised so heavily in a huge percentage of the spam campaigns currently circulating in the wild? According to a newly released report by the University of California at San Diego, although hundreds of thousands of people visit the fraudulent pharmaceutical scam sites, only [...]

By ddanchev | Posted in social engineering, spam | Tags: cybercrime, Pharmaceutical, Pharmaceutical Scams, Scams, security, spam | Leave a Comment

Spamvertised ‘Google Pharmacy’ themed emails lead to pharmaceutical scams

March 15, 2012 – 2:01 pm

By Dancho Danchev Cybercriminals are currently spamvertising a Google-themed email campaign that’s enticing home and corporate PC users into clicking on bogus link leading to pharmaceutical scams. More details:

By ddanchev | Posted in spam | Tags: cybercrime, Google, Google Pharmacy, Pharmaceutical, security, spam, Spam Campaign | Leave a Comment

Research: proper screening could have prevented 67% of abusive domain registrations

March 9, 2012 – 12:14 pm

By Dancho Danchev On a daily basis, spammers register thousands of new domains across multiple domain registrars, and take advantage of WHOIS privacy services to ensure that security researchers and anti-spam fighters will have hard time taking them down. So what can we do about it? According to a newly released research by Knujon.com, proper screening could [...]

By ddanchev | Posted in spam | Tags: cybercrime, Domain Name, Domain Name Abuse, phishing, security, spam | Comments (1)

A peek inside the Darkness (Optima) DDoS Bot

March 8, 2012 – 12:09 pm

By Dancho Danchev With politically motivated DDoS (distributed denial of service attack) attacks proliferating along with the overall increase in the supply of managed “DDoS for hire” services, it’s time to get back the basics, and find out just what makes an average DDoS bot used by cybercriminals successful. Continuing the “A peek inside…” series, in this [...]

By ddanchev | Posted in Downloaders, Keyloggers, malware, Threat Research, Trojans | Tags: cybercrime, DDOS, DDoS Bot, Malicious Software, malware, Optima DDoS Bot, security | Comments (2)

Spamvertised ‘Temporary Limit Access To Your Account’ emails lead to Citi phishing emails

March 8, 2012 – 11:18 am

By Dancho Danchev Cybercriminals are currently spamvertising a fraudulent email campaign impersonating Citi, using ‘Temporary Limit Access To Your Account‘ themed emails as a social engineering attempt to trick end users into clicking on the link found in the phishing emails. More details:

By ddanchev | Posted in Passwords, social engineering, spam | Tags: Citi, cybercrime, Phishing Campaign, Phishing Email, security | Comments (5)

INSIGHTS INTO THREATS AND TRENDS FROM OUR INTERNET SECURITY EXPERTS
Archives
Referral Program

Talk about a win win. Free security for your friends AND a donation to charity
Free tools

Haven’t tried Webroot SecureAnywhwere to remove an infection? Download a free trial

Webroot SecureAnywhere program/malware assistance?
Open a support ticket

Concerned about a specific URL or IP? Check the reputation of a URL or IP address
Connect with us!
Subscribe by email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 609 other followers
Send Us Feedback

blog@webroot.com
Blogroll

BizFeed
PConline Belgium
Security Alert
Security Cats
Krebs on Security
Security Watch
The Last Watchdog
Privacy

Privacy Statement
Navigation
topnav1
- Home
topnav2
- About the Bloggers
topnav3
- Webroot.com
topnav4
- RSS Feed
Site Meter
RSS
- RSS - Posts

Webroot Threat Blog

Spamvertised Verizon-themed ‘Your Bill Is Now Available’ emails lead to ZeuS crimeware

Malicious USPS-themed emails circulating in the wild

Millions of harvested U.S government and U.S military email addresses offered for sale

Spamvertised ‘Google Pharmacy’ themed emails lead to pharmaceutical scams

Research: proper screening could have prevented 67% of abusive domain registrations

A peek inside the Darkness (Optima) DDoS Bot

« Home

Pages

Categories

Archives

INSIGHTS INTO THREATS AND TRENDS FROM OUR INTERNET SECURITY EXPERTS

Archives

Referral Program

Free tools

Connect with us!

Subscribe by email

Send Us Feedback

Blogroll

Privacy

Navigation

topnav1

topnav2

topnav3

topnav4

Site Meter

RSS

Follow “Webroot Threat Blog”