Threat Category: Spam and Phishing | Page 27

In recent spam mails we have often noticed links to *.html files with random names. Another trend is that the cybercriminals do not even bother to register domains for their dirty deeds but simply plant their malicious code on compromised hosts. “Simply?” one may ask and sadly the answer seems to be “yes” based on our observations.

As part of our general information sharing activity, we have launched a series of webcasts on YouTube.

At last! What every football fan has been dreaming of. The start of World Cup 2010!

In the last two weeks thousands of Facebook users fell for a so-called likejacking scam. A link on Facebook invites you to see for example the 101 hottest women in the world and leads you to an external website.

Backdoors distributed as fake YouTube toolbars.

Some months ago my colleague Roel Schouwenberg wrote a blog post about a money mule recruitment campaign through Facebook. We’ve been monitoring this activity and found new, quite active and successful campaigns of the same recruitment purpose and in the same social network but with a bit different approach: creating groups to follow.

In the first quarter of 2010, the percentage of spam in email traffic averaged 85.2%. This figure coincides with the final result for 2009.

Today our spam traps detected a letter like this in which the fraudsters were trying to swindle users out of out their activation codes for…Kaspersky Lab products!

This week I received a letter from American Express which stated that my credit card had been temporarily blocked because of potential fraudulent activity.

Yesterday we received a very enticing email offering users the chance to earn loads of money for just one hour of work per day.

For over a week users of Gmail have been exchanging stories about incidents of email accounts being compromised and the uncontrolled distribution of spam.

For the second day in a row the topic of Nigerian spammers has cropped up

Last week we received a mass mailing that at first glance appeared no different from the usual mailbox clutter

This year, Christians all over the world will be celebrating Easter Day on 4 April.

Yesterday it was the Haiti Earthquake, Alberto Gonzalez or any other trendy topic and today cyber criminals are using the Moscow bombing. The aim is the same – to infect as more people as it’s possible.

The criminals base their targets on the trend topics. Right now Twitter has the next…

Reports

Kaspersky GReAT experts dive deep into the BlueNoroff APT’s GhostCall and GhostHire campaigns. Extensive research detailing multiple malware chains targeting macOS, including a stealer suite, fake Zoom and Microsoft Teams clients and ChatGPT-enhanced images.

Kaspersky researchers discovered previously unidentified commercial Dante spyware developed by Memento Labs (formerly Hacking Team) and linked it to the ForumTroll APT attacks.

Kaspersky GReAT experts describe the latest Mysterious Elephant APT activity. The threat actor exfiltrates data related to WhatsApp and employs tools such as BabShell and MemLoader HidenDesk.

According to Kaspersky, Librarian Ghouls APT continues its series of attacks on Russian entities. A detailed analysis of a malicious campaign utilizing RAR archives and BAT scripts.

Spam and Phishing

Spammers hacked pool

Lab Matters

World Cup 2010 has kicked off

The 101 hottest women in the world?

YouTube Toolbars

Easy money, social networks and prison as the reward

Spam evolution: January-March 2010

“I want your clothes, shoes, and motorbike”

Checking your credit card

A newfangled pyramid scheme?

Mass hack attack or a Gmail bug?

Continuing the Nigerian theme

German spammers broaden their repertoire

It’s an Easter Spam Eggs-traviganza!

Moscow bombings lead to Twitter malware ‘bombings’

Reports

Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs

Mem3nt0 mori – The Hacking Team is back!

Mysterious Elephant: a growing threat

Sleep with one eye open: how Librarian Ghouls steal data by night

Subscribe to our weekly e-mails