The Latest in IT Security

Posts Tagged ‘payload’

Injection attack: malavasso.com, migraviro.com and montenegrorio.com

14
Sep
2011

Three more domains being used in injection attacks today: malavasso.com migraviro.com montenegrorio.com The payload is the Sinowal trojan. Malicious software is hosted on 95.64.45.43 which is well-known very dark grey hat host Netserv Consult SRL of Romania. Blocking 95.64.0.0/17 (95.64.0.0 – 95.64.127.255) will probably do no harm. The (possibly fake) registrant for these domains is: […]

Category Security Written by Dynamoo's Blog 0 Comments

Read more ...

Fake AV network steps up its game with rootkit

20
Aug
2011

This looks like it could be a new series of blog posts. The infamous redspacetube.com (80.91.176.192) shows yet another payload using a more sophisticated technique. I’ve been monitoring the situation closely and observed a change in today’s malware behaviour. The previous payload was the XP Home Security 2012 rogue which created a randomly named file […]

Category Security Written by Malware Diaries 0 Comments

Read more ...

Fake AV Propels Visa Card Scams

17
Aug
2011

More old wine in a new bottle: Spammers have used the same payload that we saw in an earlier UPS scam to target more victims. Looks like the spammers ran out of new binaries. Last weekend McAfee observed scams spread across the world that claimed to have come from Visa Customer Services. The mail had […]

Category General Written by Blog Central > McAfee Labs 0 Comments

Read more ...

« Older Entries
Newer Entries »

Categories

SUNDAY, MAY 04, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments