Articles on this Page
- 12/05/12--23:00: _Phishing For Bank A...
- 12/06/12--23:00: _Malicious ‘Security...
- 12/09/12--23:00: _A peek inside a bou...
- 12/10/12--23:00: _Fake ‘Flight Reserv...
- 12/11/12--23:00: _Malicious ‘Sendspac...
- 12/13/12--23:00: _Fake Chase ‘Merchan...
- 12/17/12--23:00: _Cybercriminals enti...
- 12/18/12--23:00: _Fake ‘Change Facebo...
- 12/19/12--23:00: _Fake ‘Citi Account ...
- 12/20/12--23:00: _Spamvertised ‘Work ...
- 12/24/12--23:00: _Pharmaceutical scam...
- 12/25/12--23:00: _Cybercriminals resu...
- 12/26/12--23:00: _Fake ‘UPS Delivery ...
- 12/27/12--23:00: _Webroot’s Threat Bl...
- 12/31/12--23:00: _Spamvertised ‘Your ...
- 01/01/13--23:00: _Fake BBB (Better Bu...
- 01/02/13--23:00: _‘Attention! Changes...
- 01/03/13--23:00: _Fake ‘You have made...
- 01/06/13--23:00: _A peek inside a bou...
- 01/07/13--09:00: _Novel Approach to M...
- 12/05/12--23:00: Phishing For Bank Account Information
- 12/09/12--23:00: A peek inside a boutique cybercrime-friendly E-shop – part five
- 12/27/12--23:00: Webroot’s Threat Blog Most Popular Posts for 2012
- 01/06/13--23:00: A peek inside a boutique cybercrime-friendly E-shop – part six
- 01/07/13--09:00: Novel Approach to Malware Discovery in today’s Threat Landscape
By Nathan Collier When you’re a threat researcher, you are always on the look out for anything that looks ‘phishy’, even if it’s on your own personal time. Today, I opened my personal email to find this: Although the email looked very convincing, I don’t bank with Smile Bank so I knew something was up. [...]
By Dancho Danchev Cybercriminals have recently launched yet another massive spam campaign attempting to trick e-banking users into thinking that their ability to process ACH transactions has been temporarily disabled. Upon clicking on the link found in the malicious email, users are exposed to the client-side exploits served by the Black Hole Exploit Kit. More [...]
By Dancho Danchev Seeking financial liquidity for their fraudulently obtained assets, novice cybercriminals continue launching new DIY cybercrime-friendly e-shops offering access to compromised accounts, harvested email databases, and accounts that have been purchased using stolen credit card data, in an attempt to diversify their portfolio and, consequently, increase the probability of a successful purchase from their [...]
By Dancho Danchev In the midst of the holidays season, cybercriminals are currently spamvertising tens of thousands of malicious “Flight Reservation Confirmations“, in an attempt to trick users into clicking on the link found in the fake emails. Once they click on the link, users are exposed to the client-side exploits served by the latest [...]
By Dancho Danchev Cybercriminals are currently attempting to trick hundreds of thousands of users into clicking on the malicious links found in the currently spamvertised bogus ‘Sendspace File Delivery Notifications‘. Upon clicking on any of the links found in the email, users are exposed to the client-side exploits served by the latest version of the [...]
By Dancho Danchev Cybercriminals are currently mass mailing tens of thousands of emails, impersonating Chase in an attempt to trick its customers into executing the malicious attachment found in the fake email. Upon execution, the sample downloads additional malware on the affected hosts, and opens a backdoor allowing the cybercriminals behind the campaign complete access [...]
By Dancho Danchev With the ever-decreasing entry barriers into the shady world of cybercrime, potential cybercriminals themselves may sometimes become the victims. A recently intercepted fraudulent email sheds more light into the process of how cybercriminals attempt to scam novice cybercriminals, and also puts the spotlight on the QA (Quality Assurance) practices within the cybercrime [...]
By Dancho Danchev Cybercriminals have recently launched a privacy-violating campaign spreading across Facebook in an attempt to trick Facebook’s users into installing a rogue Chrome extension. Once installed, it will have access to all the data on all web sites, as well as access to your tabs and browsing history. More details: Sample screenshot of [...]
By Dancho Danchev Cybercriminals are currently mass mailing hundreds of thousands of emails impersonating Citi, using two different professionally looking email templates. Upon clicking on any of the links found in the malicious emails, users are exposed to the client-side exploits served by the latest version of the Black Hole Exploit Kit. More details: Sample [...]
By Dancho Danchev Online scammers often promise you the moon in exchange for virtually nothing besides a modest financial investment. They are largely successful due to the high number of socially engineered customers. However, sometimes they tend to play by the rules in order to avoid legal responsibility for the business failure of those who [...]
By Dancho Danchev Pharmaceutical scammers are currently spamvertising a YouTube themed email campaign, attempting to socially engineer users into clicking on the links found in the legitimately looking emails. Upon clicking on the fake YouTube personal message notification, users are redirected to a website reselling popular counterfeit drugs. The cybercriminals behind the campaign then earn revenue through [...]
By Dancho Danchev British Airways customers, watch out! Cybercriminals have resumed spamvertising fake British Airways themed E-receipts — we intercepted the same campaign back in October — in an attempt to trick its customers into executing the malicious attachment found in the emails. More details: Sample screenshot of the spamvertised email: Sample detection rate for [...]
By Dancho Danchev Continuing their well proven social engineering tactic of impersonating the market leading courier services, cybercriminals are currently mass mailing tens of thousands of emails impersonating UPS, in an attempt to trick users into clicking on the malicious links found in the legitimate-looking emails. Once they click on the links, they’re automatically exposed [...]
By Dancho Danchev It’s that time of the year! The moment when we look back, and reflect on Webroot’s Threat Blog most popular content for 2012. Which are this year’s most popular posts? What distinguished them from the rest of the analyses published on a daily basis, throughout the entire year? Let’s find out. Managed [...]
By Dancho Danchev Throughout 2012, we intercepted two malicious campaigns impersonating Verizon Wireless in an attempt to trick its customers into clicking on links pointing to fake eBills. It appears that cybercriminals are back in the game, with yet another Verizon Wireless themed malicious campaign, enticing users to click on the malicious link found in [...]
By Dancho Danchev Cybercriminals have recently launched yet another massive spam campaign, impersonating a rather popular brand used in a decent percentage of social engineering driven email campaigns – the BBB (Better Business Bureau). Once users click on any of the links in the malicious emails, they’re automatically exposed to the client-side exploits served by [...]
By Dancho Danchev Cybercriminals are currently spamvertising tens of thousands of emails in an attempt to impersonate the recipients’ bank, tricking them into thinking that the Ministry of Finance in their country has introduced new rules for records keeping, and that they need to print and sign a non-existent document. Once users click on the [...]
By Dancho Danchev Over the past 24 hours, cybercriminals have launched yet another massive spam campaign, this time impersonating both eBay and PayPal, in an attempt to trick their users into clicking on the client-side exploits and malware serving links found in the malicious emails. More details: Sample screenshot of the spamvertised email: Sample compromised URLs [...]
By Dancho Danchev In 2012, we started the “A Peek Inside a Boutique Cybercrime-Friendly E-shop” series, in response to the emerging market segment largely driven by novice cybercriminals relying on ubiquitous E-shop templates to sell their fraudulently obtained assets. In this post, I’ll profile one of the most diversified (in terms of quantity and type of fraudulently [...]
By Grayson Milbourne There are a number of similarities between biological viruses and those which infect our PC’s. For one, both types of infections rely on mutations to evade detection and survive. The faster the mutations, the more difficult an infection is to combat. This is because those who spend their time and effort fighting [...]