Over at IT Business they are reporting that Internet Relay Chat or IRC is again a popular place for Cyber Criminals to hang out and market their ill-gotten gains. With a market estimated at 7 Billion dollars you can be sure that they aren’t going away anytime soon.
Brief respite from spam could be over as McColo hands off Command and Control of Botnets to a Russian network.
The recent big news is about the Washington Post being involved in the shutting down of a Co-Location hosting provider (McColo Corp.- AS26780) that has as customers some of the biggest spammers on the Internet
Drug Administration and 6 other organizations under the direction of World Health Organizations
The recent release of the Microsoft Security Bulletin MS08-067
The US Federal Trade Commission along with their counterparts in New Zealand and Australia have finally made a dent in the spam volume. As reported by the The Register and IT Brief, a two month investigation involving international cooperation has resulted in the laying of charges against Shane Atkinson …
- Shaun
Original article: http://blogs.techrepublic.com.com/networking/?p=620&tag=nl.e102
In the world of botnets, Storm isn
A warning that we are seeing he beginning of a new spam campaign with a possible exploit vector. The e-mails claim to be from CNN based on the subject line but the from e-mail address are not at CNN. They also have links to videos and will probably either silently install malware or prompt you to install the
With so many people cutting back on travel because of the high fuel prices the chance of getting a ‘free’ airline ticket anywhere will surely entice some percentage of people to open this attachment and get infected. If it sounds too good to be true… you know the saying.
CudaMail is currently blocking these as Trojan.Zbot variation.
- Shaun
US-CERT Current Activity
Airline E-ticket Email Attack
Original release date: July 31, 2008 at 9:15 am Last revised: July 31, 2008 at 9:15 am
US-CERT is aware of public reports indicating that a new email attack is circulating. This attack uses email messages that appear to be from legitimate airlines and contain information about a bogus e-ticket.
These email messages instruct the user to open the attachment to obtain the e-ticket. If a user opens this attachment, a file may be executed to infect the user’s system with malicious code.
Reports, including a posting by Sophos, indicate that these messages have the following characteristics. Please note that these attributes may change at any time.
US-CERT encourages users and administrators to take the following preventative measures to help mitigate the security risks:
Relevant Url(s):
====
This entry is available at
Here are some more Blog articles on Airline Ticket Email Scams:
With the 4 year prison term for Robert Soloway and the Murder/Suicide of Eddie Davidson still fresh in our minds comes the following alert from the US-Cert warning us that the subject of the FBI looking at Facebook is being used to spread a new variation of the Storm Worm.
|
Technical Services Manager, and Optrics' point person for email security |
| Shaun Sturby, MCSE | |
