Clik here to view.
Bogus Better Business Bureau themed notifications serve client-side exploits...
By Dancho Danchev Cybercriminals are currently spamvertising millions of emails impersonating the Better Business Bureau (BBB), in an attempt to trick users into clicking on a link to a non-existent...
View ArticleClik here to view.
Cybercriminals spamvertise bogus eFax Corporate delivery messages, serve...
By Dancho Danchev Cybercriminals are currently mass mailing millions of emails trying to trick recipients into executing malicious attachments pitched as recently arrived fax messages. Upon running the...
View ArticleClik here to view.
Bogus IRS ‘Your tax return appeal is declined’ themed emails lead to malware
By Dancho Danchev In March 2012, we intercepted an IRS themed malicious campaign that was serving client-side exploits to prospective users in an attempt to drop malware on the affected hosts. This...
View ArticleClik here to view.
‘Copies of Missing EPLI Policies’ themed emails lead to Black Hole Exploit Kit
By Dancho Danchev Attempting to achieve a higher click-through rate for their exploits and malware serving malicious campaign, cybercriminals are currently spamvertising millions of emails attempting...
View ArticleClik here to view.
Cybercriminals spamvertise bogus ‘Microsoft License Orders’ serve client-side...
By Dancho Danchev Cybercriminals are currently mass mailing millions of emails impersonating Microsoft Corporation in an attempt to trick users into clicking on a link in a bogus ‘License Order”...
View ArticleClik here to view.
Cybercriminals resume spamvertising ‘Payroll Account Cancelled by Intuit’...
By Dancho Danchev Cybercriminals have resumed spamvertising the Intuit Direct Deposit Service Informer themed malicious emails, which we intercepted and profiled earlier this month. While using an...
View ArticleClik here to view.
Cybercriminals spamvertise millions of FDIC ‘Your activity is discontinued’...
By Dancho Danchev A currently ongoing spam campaign attempts to trick users into thinking that their ability to send Domestic Wire Transfers has been disabled. Impersonating the Federal Deposit...
View ArticleClik here to view.
Cybercriminals release stealthy DIY mass iFrame injecting Apache 2 modules
By Dancho Danchev What would an attacker do if they were attempting to inject malicious iFrames on as many Web sites as possible? Would they rely on search engines’ reconnaissance as a foundation fo...
View ArticleClik here to view.
Multiple ‘Inter-company’ invoice themed campaigns serve malware and...
By Dancho Danchev Over the past few weeks, cybercriminals have been persistently spamvertising ‘Inter-company invoice’ themed emails, in an attempt to trick users into viewing the malicious .html...
View ArticleClik here to view.
Bogus Facebook ‘pending notifications’ themed emails serve client-side...
By Dancho Danchev Facebook users, watch out! A recently launched malicious spam campaign is impersonating Facebook, Inc. in an attempt to trick its one billion users into thinking that they’ve received...
View ArticleClik here to view.
Cybercriminals target U.K users with bogus ‘Pay by Phone Parking Receipts’...
By Dancho Danchev U.K users, beware! Cybercriminals are currently mass mailing yet another malicious spam campaign, enticing users into viewing a bogus list of parking transactions. Upon executing the...
View ArticleClik here to view.
Bogus DHL ‘Express Delivery Notifications’ serve malware
By Dancho Danchev From UPS, USPS to DHL, bogus and malicious parcel tracking confirmations are a common social engineering technique often used by cybercriminals to trick users into clicking on...
View ArticleClik here to view.
Cybercriminals impersonate Vodafone U.K, spread malicious MMS notifications
By Dancho Danchev Over the past couple of days, cybercriminals have launched yet another massive spam campaign, once again targeting U.K users. Time time, they are impersonating Vodafone U.K, in an...
View ArticleClik here to view.
Cybercriminals impersonate T-Mobile U.K, serve malware
By Dancho Danchev Cybercriminals are currently impersonating T-Mobile U.K, in an attempt to trick its customers into downloading a bogus billing information report. Upon execution, the malware opens a...
View ArticleClik here to view.
Bogus ‘Meeting Reminder” themed emails serve malware
By Dancho Danchev Cybercriminals are mass mailing malicious emails about a meeting you wouldn’t want to attend – unless you want to compromise the integrity of your computer. Once executed, the...
View ArticleClik here to view.
Bogus ‘Intuit Software Order Confirmations’ lead to Black Hole Exploit Kit
By Dancho Danchev Sticking to their well proven practice of systematically rotating impersonated brands, the cybercriminals behind a huge majority of the malicious campaigns that we’ve been profiling...
View ArticleClik here to view.
Bogus ‘End of August Invoices’ themed emails serve malware and client-side...
By Dancho Danchev Cybercriminals have recently launched yet another massive spam campaign attempting to trick users into clicking on malicious links or executing malicious attachments found in the...
View ArticleClik here to view.
DIY malicious domain name registering service spotted in the wild
By Dancho Danchev Security researchers and security vendors are constantly profiling and blocking the malicious operations launched by organized crime groups on the Internet. In an attempt to increase...
View ArticleClik here to view.
Fake ‘FedEx Tracking Number’ themed emails lead to malware
By Dancho Danchev At the end of October, a cybercriminal or group of cybercriminals launched three massive spam campaigns in an attempt to trick users into clicking on a deceptive link and downloading...
View ArticleClik here to view.
Bogus ‘Facebook Account Cancellation Request’ themed emails serve client-side...
By Dancho Danchev Facebook users, watch what you click on! Cybercriminals are currently mass mailing bogus “Facebook Account Cancellation Requests“, in an attempt to trick Facebook’s users into...
View Article