The Internet Storm Center published a story on the recent Lilupophilupop malware infections. They had originally written about it back in November. 1 month later, the infections had increased:
- UK – 56,300
- NL – 123,000
- DE – 49,700
- FR – 68,100
- DK – 31,000
- CN – 505
- CA – 16,600
- COM – 30,500
- RU – 32,000
- JP – 23,200
- ORG – 2,690
In order to see if your site has been effected, search for “<script src=”hxxp://lilupophilupop.com/” in google and use the site: parameter to hone in on your domain.
For example, in Google type
site:yoursite.com “<script src=hxxp://lilupophilupop.com/
( note: we changed to hXXp so you don’t actually go there. )
This is a nasty SQL Injection attack, so be careful when doing your investigation.
Original story is here. http://isc.sans.edu/diary/Lilupophilupop+tops+1million+infected+pages/12304
Continue Reading
We’ve noticed lately that the recent wave of “Shipping-related” spam has been increasing.
Continue Reading
A new fake “LinkedIn Notice” campaign can empty your bank account if you’re not careful. CudaMail protects against this one, but a lot of people can be harmed if they’re not aware.
Continue Reading
The Internet Storm Center recently posted a story about a new email malware scam , where emails appear to show that a company has put a sale on a credit card of yours.
Continue Reading
This new story by US-CERT shows they have become aware of reports on a new phishing attack. Apparently it’s bypassing some of the new phishing protection built-in to many browsers.
Continue Reading
There’s an email worm ( and not kidding here ) circulating that uses the good old infection method of sending emails with malicious executables to all the people in your address book!
Continue Reading
Researchers have made a huge dent in a major variant of the Pushdo botnet, virtually crippling the network by working with hosting providers to take down about two thirds of the command-and-control servers involved in the botnet.
Continue Reading
More than 40 percent of the world’s spam is coming from a single network of computers that computer security experts continue to battle,
Continue Reading
Spammers know that if they include a direct link to their site that their spam messages will not go through so they use URL shortening services to redirect you to their site if you click on the link in the spam message.
Continue Reading
At the Federal Trade Commission
