Something about the “rockets red glare” of July 4th must have gotten the Storm Wormers in the mood for aggressive action, and the next outbreak has been a faux invasion of Iran, with the following malware web site:
Based on a quick scan of the iran_occupation.exe malware file by VirusTotal, the results show that only 14 [...]
Trying to log in to your Chinese Gmail or Yahoo! webmail? Check carefully…. over the past few days phishers have spread a broad attack trying to entice users to give up their credentials to a fake login page for Google and Yahoo-reminiscent addresses, with a .cn (China) domain. Examples include (and there are dozens of [...]
Last month we released our new service – GlobalView Zombie Intelligence. Commtouch Zombie Intelligence is a real-time feed of data containing zombies IPs along with rich information about their activity and behavior.
As a result of our research and development in the field of zombies and bots, we are constantly gathering a vast amount of data [...]
Scammers came out with some adwords phishing scams around 1 month ago and in the last few days have started a new round. Subject lines include:
your adwords google account is stoped (sic)
account reactivation.
please re-activate your account.
please re-submit your payment information.
please submit your payment information.
please update your billing information.
reactivate your adwords google account.
submit your payment information.
update [...]
Here’s a new one provided to me yesterday by our detection center; I had to think about it for a day or so to try to figure out what they were doing. A spam outbreak contained messages driving to the following (slightly edited by me) pornography site:
Looks pretty self-explanatory. But then, if you [...]
Similar to earlier holiday messages, malware distributors are taking advantage of the atmosphere of April Fools’ Day to send “jokes” linking to malware sites. The messages are short text messages, with a hyperlink to a web site hosted at an IP address (usually indicative of a zombie outbreak).
Subject lines include:
All Fools’ Day
April Fools’ Day
Doh! All’s [...]
Scammers are always looking for new ways to hide their intentions, both from message recipients, as well as automated email filters. One new trick Commtouch has started to see recently is the use of calendar-update messages generated from legitimate sites, such as Google or Yahoo. Since these messages need to be generated manually, they only [...]
The Commtouch Detection Center just sent me a sample of the latest blended threat trying to continue to spread Storm around, being sent out by zombies:
Subject: Your ecard horoscope is waiting!
Body: Come get your personal funny postcard. You’ll bust a gut!
Following this poetic message is a hyperlink to an IP address
which shows the image [...]
It was a given that malware writers would roll out a new Valentine’s Day campaign, with the holiday of love just two days away. But who knew that they could be such creative artists with the pictures they choose to deliver their malicious software? OK, they probably stole the valentine’s pics from a legitimate site, [...]
Pharmaceutical spammers typically include a URL in their emails since they want to direct recipients to visit their site and purchase their (usually counterfeit) viagra, cialis, etc. However URLs are pretty straightforward to block in many anti-spam solutions, so spammers are always looking for new ways to hide their URLs. A [...]
