The Latest in IT Security

Posts Tagged ‘ip’

USPS Spam / 184.82.202.46

27
Mar
2012

From WeAreSpammers: This link goes to malware via baumanmarketing.com (195.78.33.120, Croatia.. most likely a hacked legitimate site) the it goes to billdirect.jiffyinc.com (184.106.64.60, Slicehost UK) until it hits a malware page on 184.82.202.46 (HOSTNOC, US). Originating IP is 111.242.113.138 (HINET, Taiwan). A Wepawet report is available here. — From: Damon Mcneill USPS_Shipping_Services@usps.com To: donotemail@wearespammers.com Date: […]

Category Security Written by Dynamoo's Blog 0 Comments

Read more ...

AICPA spam / themeparkoupons.net

09
Mar
2012

Another AICPA spam run is also doing the rounds with a malicious payload on: themeparkoupons.net/main.php?page=89cd1f8b9fb67fbc themeparkoupons.net/content/ap2.php?f=4f07a The IP appears to be 41.64.21.71 (Dynamic ADSL, Egypt). This IP has been seen many times before, so blocking it would be a very good idea.

Category Security Written by Dynamoo's Blog 0 Comments

Read more ...

Intuit spam / sony-zeus.net

07
Mar
2012

Another fake INTUIT spam run is in progress, this time using the domain sony-zeus.net to deliver the payload. The malware is hosted on sony-zeus.net/content/ap2.php?f=ef572 and sony-zeus.net/main.php?page=fac4e861546108ef on 213.179.193.132 (Solidhost, Netherlands). We’ve seen this IP before, so it is well worth blocking.

Category Security Written by Dynamoo's Blog 0 Comments

Read more ...

« Older Entries
Newer Entries »

Categories

SUNDAY, APRIL 20, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments