Threat Category: Spam and Phishing | Page 29

Who’s №1?

Halloween’s almost here

Last month on our Russian blog we talked about how the Zbot Trojan was being spread via spam messages which looked as though they came from the US Federal Tax authorities

Eugene discusses in brief his position regarding anonymity on the INternet and the potential benefits of epassports.

Here are some technical details to expand on the previous post from Darya.

Yesterday we saw a phishing attack targeting users of Outlook Web Access (OWA) service – used worldwide to access email from Microsoft Exchange Servers via the Internet.

How to fight corruption

Today I got a ‘Anti-virus notification message’ from our mail server
(protected by kav4lms) so naturally I was interested in what the
content was. Examining the quarantined mail on the server revealed
some interesting details starting from the mail header itself:

“X-PHP-Script:…

This article is a study of one spam email and illustrates the methods employed by today’s cyber criminals to create botnets and conduct mass spam mailings.

The amount of spam detected in mail traffic averaged 85.1% in August 2009. A low of 76.3% was recorded on 1 August with a peak value of 90.8% being reached on 16 August.

Cybercriminals are unlikely to reinvent the wheel, so once you’ve encountered a scam or threat, and have learnt, you can use this information in the future. This article therefore focuses on some typical examples, and explains how you can protect yourself.

Social networks are one of the hottest things on the Internet at the moment, so it’s not surprising that spammers and malware writers love them.

You might think if you don’t use Internet banking, you’re not going to be targeted by phishers

How much does a credit card cost?

Twitter and Adobe – what’s the difference?

Reports

According to Kaspersky, Librarian Ghouls APT continues its series of attacks on Russian entities. A detailed analysis of a malicious campaign utilizing RAR archives and BAT scripts.

Kaspersky GReAT experts uncovered a new campaign by Lazarus APT that exploits vulnerabilities in South Korean software products and uses a watering hole approach.

MysterySnail RAT attributed to IronHusky APT group hasn’t been reported since 2021. Recently, Kaspersky GReAT detected new versions of this implant in government organizations in Mongolia and Russia.

Kaspersky researchers analyze GOFFEE’s campaign in H2 2024: the updated infection scheme, new PowerModul implant, switch to a binary Mythic agent.

Spam and Phishing

Who’s №1?

Trick or treat?

Malware taxes users

Epassports and anonymity – what I think

OWA Phish – a new vector (2)

OWA Phish – a new vector

How to fight corruption

All your phish are belong to me

The Cash Factory

Spam evolution: August 2009

Traps on the Internet

Social networking is sexy!

Would you answer this email?

How much does a credit card cost?

Twitter and Adobe – what’s the difference?

Reports

Sleep with one eye open: how Librarian Ghouls steal data by night

Operation SyncHole: Lazarus APT goes back to the well

IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia

GOFFEE continues to attack organizations in Russia

Subscribe to our weekly e-mails