Author: tetiana.vashchenko@data443.com

So now you’re on LinkedIn: What’s next?

By far the most common theme for malware emails over the last few weeks has been “interbank payment rejected” or similar. The emails refer to a cancelled or rejected interbank transaction and are alternatively from:  Electronic Payments Association ACH (Automated Clearing House) NACHA (National Automated Clearing House Association) These are

The Effectiveness of DNSBLs in an IPv6 world

It is certain that the future of the Internet communication belongs to the Internet Protocol version 6, or IPv6. Even though some people might think it is new, it’s been around for quite a while; the first document describing basics of IPv6 (RFC 2460) was published in 1998. The protocol

Compromised Websites unknowingly host malware

The email shown below is a current example of “payment rejected” emails that have circulated in large numbers in the past 3 weeks. The links in the email lead to malware similar to that described a previous post .  In the example above the malicious JavaScript files were hidden within the

Phony Delta, American Airlines itineraries lead to malware

A malware-email outbreak in the past 24 hours uses phony Delta airline itineraries to entice users to click on the embedded links.  The social engineering of an attack such as this is very effective – particularly since the email looks very authentic: If you are planning a trip then you

The “stop-419″ 419

We have previously described the tell-tale signs of a 419 (advance fee fraud email). Refresher: recipients of an email are offered a large amount of money. Actually getting “the money” involves several advance payments (for customs duties, bank charges, bribes etc.) – and of course the only ones who actually

A study of malicious attacks on Facebook

VB2011 was held from October the 3rd till the 7th in Barcelona, Spain. We were privileged to be part of the conference where we presented “A study of malicious attacks on Facebook” (abstract here). Being fully committed to the security industry, we felt compelled to do this research that summarizes

Creative Chinese spam hides inside resized HTML textarea tags

You’ll have to take our word for it – the text below comes from Chinese spam. The text asks recipients to view the attached Excel sheet and forward it on to any relevant staff.  Of course this sort of text is bound to trigger content-based spam filters, so creative spammers

Increased usage of unregistered spam domains

Consider a spam email that promotes an online casino site. URL check and filtering systems that block access to such sites usually run a few checks before adding the URL to the “spam” category. One of these checks is that the URL is registered. Once this is known the date