Insights on Data Security & Threat Intelligence
Consider a spam email that promotes an online casino site. URL check and filtering systems that block access to such sites usually run a few checks before adding the URL to the “spam” category. One of these checks is that the URL is registered. Once this is known the date
Scammers have been quick to capitalize on the death of Muammar Gaddafi by sending out emails from Ayesha Gaddafi. Ayesha (also spelled Aisha) is the daughter of Muammar Gaddafi who has reportedly fled to Algeria. The creators of the email seem to have made an error by including the message
In Late September we posted a survey where we asked you to tell us your stolen account stories. We have summarized the results in a special report “the state of hacked accounts” The data reveals that most users get hacked at high rates even when they do not think they
Compromised Facebook accounts are being used to send out scam posts promising free Apple Macbooks. The scam does not make reference to the death of Steve Jobs as others have. The link leads to marketing affiliate sites that ask for a user’s mobile phone number – users are then signed
It has been a year since we have witnessed a DLL hijacking technique which loads a malicious DLL that affects hundreds of programs. The method involves dropping a collection of normal files together with the malicious DLL from within a directory. We recently analyzed the following archive sample. Only the
An ongoing outbreak is making extensive use of stolen accounts from Yahoo, Hotmail (Live) and AOL accounts. Sample emails sent from these accounts are shown below. A wide range of accounts have been tracked by Commtouch Labs – several thousand for each provider. The emails do not have a subject
Nobody likes receiving a traffic ticket, but one with attached malware is a lot worse. We could get into a philosophical argument about which is truly more terrible – a traffic ticket that adds points to your license and raises your insurance rates, or malware that infiltrates your PC, insinuating
Get the full report at: http://www.commtouch.com/state-of-hacked-accounts
In February 2011, NACHA alerted the public about fraudulent emails being distributed that appeared to be sent from NACHA and signed by a non-existent NACHA employee. We reported this campaign back in June 2011 but it has come back in the past 2 weeks with a new twist to trick
