Brian Donohue

About

“We are what we pretend to be, so we must be careful about what we pretend to be.” ― Kurt Vonnegut

Image of the Day: SpamIt, Glavmed Models

Today’s image of the day comes from Brian Krebs’s blog, KrebsonSecurity. The image illustrates how Glavmed and other alleged players in the global spam game operate, and is part of a larger exposition of the Spamit operation that was reportedly shut down sometime last year as detailed by Krebs on his blog.

New Phishing Scam Targets PayPal Users

Customers of Internet money transfer service PayPal are being targeted in an aggressive email phishing scam that is masquerading as an urgent security warning, a familiar scam for PayPal customers.

OddJob Trojan Piggybacks On Legitimate eBanking Sessions

A new Trojan leads online banking customer into thinking they have logged out of their sessions when in fact they remain logged in. Discovered by Trusteer researchers, this completely new piece of malware represents the evolution of online attacks in the ways in which it integrates new and old hacking methodologies to subvert the should-be stalwart commercial security applications employed by financial institutions.


The next decade will see Microsoft lose its grip as the most-used and most attacked platform, as a new generation of hackers and cybercriminals diversify, launching attacks on a growing population of mobile devices and computers that run operating systems other than Windows, according to Kaspersky Lab’s 2020 cybercrime outlook.

The size and volume of spam botnets are down over the last
year, and much of this can be attributed to the effectiveness of IP-based blacklists. However,
this defense method is no panacea as scammers have found new methods like reputation
hijacking to circumvent these roadblocks, and bots continue to extend their
reach by piggybacking on existing worms and viruses.

The websites of the BBC’s 6 music and 1Xtra radio stations
have been injected with a malicious iframe and are redirecting users to a site
serving up malware according to a Websense report Tuesday.

“The marketplace for hacker exploit kits is getting more crowded according to research by Kaspersky Labs, which found that new tools with names like SEOsploit and Crimepack are challenging the dominance of legacy tools like the Phoenix, Eleonore, Neosploit, YESExploit, and Liberty kits.