Where Are We A Year After McColo Shutdown?

In the year since the shutdown of notorious Web hosting firm McColo, spammers are growing strong. Part of this is the result of improvements by botnet operators. Like anyone who is successful what they do, the people controlling the most powerful botnets in cyber-space learn from their mistakes...

Update Protection against Recent Malware Threats (2-Nov-09)

The update includes new protections against 10 recent malware threats: Botnet: Backdoor.Win32.Httpbot.yiTrojan: Packed.Win32.Krap.wTrickler: Trojan.Win32.Agent2.kxuTrickler: Trojan-Downloader.Win32.Pher.ijTrickler: Trojan-Downloader.Win32.SillyFDC-DSWorm: W32.FnumbotWorm:...

Facebook Password-Reset Spam is Botnet Attack

Virus hunters are raising the alarm for a large-scale spam attack that uses fake Facebook password-reset messages to trick PC users into downloading a dangerous piece of malware. The malicious executable is linked to the Bredolab botnet, which has been linked to massive spam runs and identity-the...

Botnet-Infected Computers Powering Click Fraud

According to new data from ClickForensics, botnet-infected computers are behind the majority of click-fraud attacks against advertisers and publishers. For the third quarter this year, about 43 percent of all fraudulent clicks came from computers within botnets. The figure is the highest in four...

Dave Dittrich on Botnets, Conficker and the Evolution of Malware

Dennis Fisher talks with Dave Dittrich of the University of Washington, one of the top botnet and malware researchers in the industry, about the evolution of botnets and malware, the innovations of the Nugache botnet and the monetization of large-scale botnets. Download Subscribe to the Digital...

On the Outlook Web Access Attacks, Adobe and Microsoft Patch Releases

In this episode, Ryan and Dennis discuss the Outlook Web Access phishing attacks, the huge Microsoft and Adobe patch releases and the massive scope of the botnet problem. Download SHOW NOTES: Zeus Trojan Part of New Outlook Web Access Phishing Scam Microsoft Ships Largest Batch of Security Patche...

Outlook Web Access Attack Using Pushdo Botnet

Here are some technical details on the Outlook Web Access phishing scheme. 1. The Spam According to our preliminary research, the spam emails which attacked OWA users, including Kaspersky, were sent using the pushdo botnet – which is based on malware from the Backdoor.Win32.NewRes family. These...

New Koobface Campaign Spoofs Adobe's Flash Updater

The botnet masters behind the most efficient social engineering driven botnet, Koobface, launched a new campaign currently spreading across Facebook with a new template spoofing Adobe’s Flash updater embedded within a fake YouTube page. Read the full story zdnet.com/Dancho Danchev...

Comcast Alerts Customers to PC Infections

CNet’s Elinor Mills has the scoop on a Comcast trial of a new automated service that will warn broadband customers of possible virus infections, if the computers are behaving as if they have been compromised by malware. For instance, a significant overnight spike in traffic being sent from a...

Botnet Caught Red Handed Stealing From Google

A recently discovered botnet has been caught siphoning ad revenue away from Google, Yahoo! and Bing and funneling it to smaller networks. According to researchers at Click Forensics, computers that are part of the so-called Bahama Botnet are infected with malware that sends them to counterfeit...

Malware Economy is Thriving

TORONTO — The legitimate economy may be in rough shape right now, but the same cannot be said for the underground economy. Malware authors and botmasters are thriving, experts say, with some online criminals charging as much as $3,500 for their attack toolkits. But don’t be intimidated by the hig...

Inside the URLZone Trojan Network

Security researchers tracking the URL Zone malware/botnet have stumbled upon a new tactic being used by cyber-criminals to hide information on the money mules being used to transfer stolen funds from compromised online bank accounts. URLZone, which targets computer users in Western Europe, is a...

Botnet Hiding Commands as JPEG Images

Security researchers have stumbled on a new botnet that uses an interesting technique to mask its nefarious intentions. The Monkif/DIKhora botnet, which is pushing out Trojan downloaders to infected machines, is encoding the instructions to appear as if the command-and-control server is returning...

From Gimmiv to Conficker: MS08-067 Under The Microscope

GENEVA — The critical MS08-067 vulnerability used by the Conficker worm to build a powerful botnet continues to be a lucrative security hole for cybercriminals. During a presentation at the Virus Bulletin 2009 conference here, a trio of Microsoft researchers dissected the malware attacks linked t...

Koobface, Twitter Attacks Growing More Sophisticated

GENEVA — The attacks and scams that have been affecting users of Facebook, Twitter and other popular social networking sites are continuing to evolve and improve, as the attackers learn more about their victims and refine their tactics, experts say. The poster child for these attacks has been the...

A Peek at the 'Bahama' Click Fraud Botnet

A new botnet, codenamed the ‘Bahama’ botnet has been linked to the recent surge in click-fraud and scareware attacks. This video by researchers at Click Forensics shows the Bahama Botnet in action. More on this botnet in this report...

Sophisticated Botnet Causing a Surge in Click Fraud

A new botnet has caused a sharp spike in click fraud because it is skirting the most sophisticated filters of search engines, Web publishers and ad networks, according to Click Forensics. The company, which provides services to monitor ad campaigns for click fraud and reports on click fraud...

Linux Botnet Discovered

From The H Security A network of hijacked Linux servers is apparently being used to distribute malicious software to Windows PCs. According to an analysis by web developer Denis Sinegubko, the comprised systems all have one thing in common: the light weight web server nginx is running and serving...

The Global Illicit Economy

Nils Gilman, an author and entrepreneur, details the common themes and techniques that connect the actors in the illicit economies around the world, including the malware and botnet economies...

Botmasters Holding Summer Clearance Sale

How much does a bot cost these days? Like everything else in our economy, the price of a bot-infected PC fluctuates significantly, based on supply, demand, volume purchased and any number of other factors. But according to research done by the folks at Cisco, bots can be had for as little as 10...