Clik here to view.
‘Your Kindle e-book Amazon receipt’ themed emails lead to Black Hole Exploit Kit
By Dancho Danchev Kindle owners, watch what you click on! Cybercriminals are currently attempting to trick Kindle owners into thinking that they’ve received a receipt from an E-book purchase from...
View ArticleClik here to view.
Android security tips and Windows AutoRun protection
by Armando Orozco Recently, two applications designed with malicious intent were discovered within the Google Play application store. The apps were built with a façade of being utility cleaners...
View ArticleClik here to view.
New DIY HTTP-based botnet tool spotted in the wild
By Dancho Danchev What are cybercrime-facilitating programmers up to when they’re not busy fulfilling custom orders? Releasing DIY (do-it-yourself) user-friendly tools allowing anyone an easy entry...
View ArticleClik here to view.
Mobile spammers release DIY phone number harvesting tool
By Dancho Danchev Need a good reason not to connect to the public Web with your phone? Wonder where all that SMS spam is coming from? Keep reading. Mobile phone spammers have recently released a new...
View ArticleClik here to view.
New underground service offers access to thousands of malware-infected hosts
By Dancho Danchev Thanks to the success of multiple botnet aggregating malicious campaigns launched in the wild, cybercriminals are launching malware-infected-hosts — also known as loads — as a service...
View ArticleClik here to view.
Targeted ‘phone ring flooding’ attacks as a service going mainstream
By Dancho Danchev Throughout the past year, we observed an increase in the availability of malicious (DIY) tools and services that were once exclusively targeting sophisticated cybercriminals, often...
View ArticleClik here to view.
Fake ‘You’ve blocked/disabled your Facebook account’ themed emails serve...
By Dancho Danchev Cybercriminals are currently spamvertising two separate campaigns, impersonating Facebook Inc., in an attempt to trick its users into thinking that their Facebook account has been...
View ArticleClik here to view.
Spamvertised IRS ‘Income Tax Refund Turned Down’ themed emails lead to Black...
By Dancho Danchev Its tax season and cybercriminals are mass mailing tens of thousands of IRS (Internal Revenue Service) themed emails in an attempt to trick users into thinking that their income tax...
View ArticleClik here to view.
Malware propagates through localized Facebook Wall posts
By Dancho Danchev We’ve recently intercepted a localized — to Bulgarian — malware campaign, that’s propagating through Facebook Wall posts. Basically, a malware-infected user would unknowingly post a...
View ArticleClik here to view.
Malicious ‘RE: Your Wire Transfer’ themed emails serve client-side exploits...
By Dancho Danchev Over the last couple of days, we’ve been monitoring a persistent attempt to infect tens of thousands of users with malware through a systematic rotation of multiple social engineering...
View ArticleClik here to view.
New underground E-shop offers access to hundreds of hacked PayPal accounts
By Dancho Danchev On a daily basis, largely thanks to the efficiency-centered malicious campaigns circulating in the wild, cybercriminals get access to tens of thousands of accounting credentials...
View ArticleClik here to view.
Fake ‘Verizon Wireless Statement” themed emails lead to Black Hole Exploit Kit
By Dancho Danchev On a periodic basis, cybercriminals are spamvertising malicious campaigns impersonating Verizon Wireless to tens of thousands of Verizon customers across the globe in an attempt to...
View ArticleClik here to view.
DIY malware cryptor as a Web service spotted in the wild
By Dancho Danchev Just how easy is it to generate an undetected piece of malware these days? Too easy to be true, largely thanks to the rise of managed crypting services, and the re-emergence of the...
View ArticleClik here to view.
How do we use, secure, and share the information that surrounds us?
The mobile landscape has boomed in the last couple of years mostly in part because of Android devices and social networking. This has opened the door for everyone to have access to a smartphone and...
View ArticleClik here to view.
Malicious ‘Data Processing Service’ ACH File ID themed emails serve...
By Dancho Danchev A cybercriminal/gang of cybercriminals that we’ve been closely monitoring for a while now has just launched yet another spam campaign, this time impersonating the “Data Processing...
View ArticleClik here to view.
How mobile spammers verify the validity of harvested phone numbers
By Dancho Danchev Have you ever received a blank call, and no one was on the other side of the line? What about a similar blank SMS received through your mobile carrier’s Mail2SMS gateway? There’s a...
View ArticleClik here to view.
How much does it cost to buy 10,000 U.S.-based malware-infected hosts?
By Dancho Danchev Earlier this month, we profiled and exposed a newly launched underground service offering access to tens of thousands of malware-infected hosts, with an emphasis on the fact that...
View ArticleClik here to view.
Recap from RSA2013: Android Malware Exposed
On Wednesday, February 27th, Webroot threat researchers Grayson Milbourne and Armando Orozco presented at the RSA Conference in San Francisco. Their topic, Android Malware Exposed – An In-depth Look...
View ArticleClik here to view.
New DIY IRC-based DDoS bot spotted in the wild
By Dancho Danchev Thanks to basic disruptive factors like standardization, DIY (do it yourself) underground market releases, Cybercrime-as-a-Service ”value added” propositions, efficiency-centered...
View ArticleClik here to view.
Cybercriminals release new Java exploits centered exploit kit
By Dancho Danchev Yesterday, a relatively unknown group of cybercriminals publicly announced the availability of a new Web malware exploitation kit. What’s so special about it is the fact that its...
View Article