The PhishLabs Blog

Hacking Team Hacked, Advances of Adversary TTPs, Cybercriminal Set Free, and more | TWIC - July 10, 2015

Posted by Lindsey Havens on Jul 10, '15

Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).

Read More

Topics: Phishing, Exploit, ZeuS, Adobe, The Week in Cybercrime, Hacked, Patch, Arrests

Top blog posts from PhishLabs: 2014 review

Posted by Lindsey Havens on Dec 30, '14

It has been an eventful year in cybercrime. We hope you have been able to follow our blog for updates in the cyber security arena but in case you missed one or two, we’ve compiled the most popular posts published by PhishLabs in 2014:

Read More

Topics: Phishing, Malware, ZeuS, Hacker Tools, Vishing, Vawtrak, Banking Trojan

New Zeus Variant, Android Malware, ATMs Hacked and more | TWIC - December 26, 2014

Posted by Lindsey Havens on Dec 26, '14

Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).

Read More

Topics: Phishing, ZeuS, The Week in Cybercrime, Android, POS Attacks, Banking Trojan

New Zeus Variant, Alibaba Marketplace Vulnerability, Poodle Bug Returns, and more | TWIC - December 14, 2014

Posted by Lindsey Havens on Dec 14, '14

Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).

Read More

Topics: Phishing, Malware, ZeuS, The Week in Cybercrime, POS Attacks

One-man operation leverages phishing and browser alerts to distribute new variant of Zeus banking Trojan

Posted by R.A.I.D. on Dec 11, '14

In a blog post last week, we shared the discovery of a relatively convincing browser warning whose "Download & Install" button leads to an infection by the infamous Zeus Trojan. After further research, it appears that the threat actor has been carrying out various phishing and malware campaigns using the same playbook and virtual base of operations for nearly a year, maybe longer. The cybercriminal has devised a unique variant of Zeus based off the source code of version 2.0.8.9. 

Read More

Topics: Phishing, ZeuS, Banking Trojan

Sony Hack, Zeus Malware, FIN4 Phishing Attacks and more | TWIC - December 6, 2014

Posted by Lindsey Havens on Dec 6, '14

Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).

Read More

Topics: Phishing, Malware, ZeuS, The Week in Cybercrime, Data Breach, Retail Breach

Zeus malware distributed through browser warning: social engineering at its finest

Posted by Paul Burbage, Threat Analyst on Dec 5, '14

Zeus malware continues to plague the Internet with distributions through spam emails and embeds in compromised corners of the web – all designed to exploit unsuspecting consumers. PhishLabs’ R.A.I.D. (Research Analysis and Intelligence Division) recently observed the Zeus malware being distributed through an alarmingly convincing browser warning that prompts viewers to download and “restore settings.”

Figure 1 shows the browser warning which is designed to manipulate viewers so that they believe the alert is based on security preferences that he or she has previously set up. The message creates a sense of urgency and fear, warning of “unusual activity.” The path of origin for how victims encounter this browser message is still under investigation by the PhishLabs R.A.I.D.

Read More

Topics: ZeuS, Banking Trojan

Avalanche hosted ZeuS Trojan disrupted

Posted by John LaCour on Sep 7, '10

While investigating an instance of the ZeuS Trojan that was using the Avalanche bulletproof hosting botnet, PhishLabs discovered many of the domain names referenced in the ZeuS configuration file had not yet been registered including the following four: 

Read More

Topics: Malware, Fraud, Threat Analysis, Trojan, ZeuS

Rock moves to email attachments

Posted by John LaCour on Nov 17, '09

For over a year, the Rock Phish Gang was using the Avalanche botnet to host their various phishing scams and malware distribution sites. Fortunately, the botnet was shutdown last week - how long remains to be seen. Unfortunately, the Rock Phish Gang have not gone away.

Read More

Topics: Phishing, Malware, Rock Phish, Trojan, ZeuS

   

What's this all about?

The PhishLabs Blog is where we share our insights and thoughts on cybercrime and online fraud.

Upcoming Events

Calendar_Mock_

Posts by Topic

see all