asprox

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Adobe's Serious Magic site SQL Injected by Asprox botnet

Adobe's Serious Magic site SQL Injected by Asprox botnet"But I only go to safe sites"This is why I want to slap everyone who says that is protection against infection.RE: Adobe's Serious Magic site SQL Injected by Asprox botnetI appreciate when articles like this give the user an advanced warning. ...

Tags: INTERNET, Programming languages, Web browsers, SQL Injected, Asprox, Serious Magic, SQL, Adobe Systems Inc.

Discussion threads 2008-10-17

Feel like taunting an identity thief? Don't.

The next time you get the urge to enter angry messages to phishers on fake malicious Web sites, stop and consider this discovery by researcher Joe Stewart. The identity thieves behind the Asprox botnet have built extra logic into phishing sites to detect taunts and subject those...

Tags: Identity Thief, Asprox, Phishing, Cyberthreats, Spam, Spyware, Adware & Malware, Banking, Viruses And Worms, Security, Spam And Phishing, Financial Services, Ryan Naraine

Blog posts 2008-08-26

Fast-Fluxing SQL injection attacks executed from the Asprox botnet

Fast-Fluxing SQL injection attacks executed from the Asprox botnetExfiltration?Dancho, are you seeing any exfiltration of data through these mass SQL Injection attacks? I have a few clients who have been hit as well.-Nate

Tags: Tools & Techniques, SECURITY, Fast-Fluxing SQL injection attack, Asprox, software

Discussion threads 2008-05-19

Fast-Fluxing SQL injection attacks executed from the Asprox botnet

The botnet masters behind the Asprox botnet have recently started SQL injecting fast-fluxed malicious domains in order to enjoy a decent tactical advantage in an attempt to increase the survivability of the malicious campaign. I first assessed the Asprox botnet in January, and again in April when it started scaling...

Tags: Microsoft .NET, Domain, SQL, SQL Injection, Asprox, Com, Programming Languages, Phishing, Databases, Security, Software Development, Software/Web Development, Spam And Phishing, Enterprise Software, Software, Data Management, Dancho Danchev

Blog posts 2008-05-19

Additional Resources

Inside the botnets that never make the news - a gallery

If you ever wanted to take an inside view of targeted-botnets primarily run by novice cybercriminals sometimes utilizing outdated, but very effective methods - this ZDNet photo gallery is for you. It offers an inside view of those "beneath the radar" botnets that never make the news....

Tags: Spamming, Cybercriminal, Spam, Security, Spam And Phishing, Dancho Danchev

Blog posts 2009-05-20

Twitter worm author gets a job at exqSoft Solutions

UPDATE: Mikeyy Mooney of Stalk Daily gets Hacked. Here's more info. Now that was so fast that even Owen Thor Walker AKILL and Michael Calce Mafiaboy should envy the short cybercrime-to-job offer cycle here. 17 years old Mikeyy Mooney, the author/spreader of StalkDaily/Mickeyy XSS worm that exploited...

Tags: Job, Web, XSS, Web Application, Worm, Twitter, Cloud Computing, Cyberthreats, Channel Management, Security, Viruses And Worms, Marketing, Dancho Danchev

Blog posts 2009-04-17

Paul McCartney's official site serving malware

All you (don't) need is malware on Paul McCartney's official web site. According to Mary Landesman at ScanSafe, the official web site of Paul McCartney (paulmccartney.com) has been compromised, and is serving live exploits to its visitors. Landesman points out that the compromise might have occurred through...

Tags: Web, Malware, SQL, Web Site, FTP, Paul McCartney, Spyware, Adware & Malware, Cyberthreats, Web Site Development, Channel Management, Viruses And Worms, Security, Databases, Internet, Marketing, Enterprise Software, Software, Data Management, Dancho Danchev

Blog posts 2009-04-08

Google: Spam volume for Q1 back to pre-McColo levels

It took only a couple of months for cybercriminals to catch-up and reintroduce the massive spam volumes that briefly disappeared following the shutdown of the cybercrime ecosystem's sitting duck McColo in November, 2008. According to Google's Postini Spam data and trends for Q1 2009, during the first...

Tags: Google Inc., Spammer, Spamming, Spam Volume, Spam, Cyberthreats, Security, Spam And Phishing, Dancho Danchev

Blog posts 2009-04-02

Paris Hilton's official web site serving malware

The official web site of Paris Hilton (parishilton.com) has been embedded with a malicious iFrame, automatically exposing visitors to client-side vulnerabilities and banker malware, according to researchers from ScanSafe. Upon closer analysis, it appears that the site has been infected on the 8th of January, Thursday, becoming the very latest...

Tags: Channel Management, Cyberthreats, Dancho Danchev, Data Management, Databases, Enterprise Software, Hilton Hotels Corp., Internet, Malware, Marketing, Programming Languages, Security, Site, Software, Software Development, Software/Web Development, Spyware, Adware & Malware, SQL, Viruses And Worms, Web, Web Site, Web Site Development

Blog posts 2009-01-14

Cyber terrorists to face death penalty in Pakistan

According to a recently signed "Prevention of Electronic Crimes Ordinance 2008" in Pakistan, any person who commits cyberterrorism causing the death of other people will face death penalty or life imprisonment : "Whoever commits the offence of cyber terrorism and causes death of any person shall be punishable with...

Tags: Dancho Danchev

Blog posts 2008-11-10

News to know: Ballmer on Windows 7; T-Mobile G1; Google's 3Q

Here are today’s notable headlines. You can get News To Know via email alert and RSS daily: Ballmer: It's ok to wait until Windows 7; Yahoo still 'makes sense'; Google Apps 'primitive' Microsoft wants you to move: To IE 8, Vista... Ballmer: 'Windows...

Tags: Google Inc., T-Mobile G1, Microsoft Windows 7, Steve Ballmer, T-Mobile, Service-Oriented Architecture (SOA), Microsoft Windows, Notebooks, Outsourcing, Open Source, Web Services, Enterprise Software, Software, Operating Systems, Hardware, Notebooks & Tablets, It Operations, Business Operations, Outsourcing & Subcontracting, David Grober

Blog posts 2008-10-17

Adobe's Serious Magic site SQL Injected by Asprox botnet

According to SophosLabs Adobe's owned seriousmagic.com has been automatically SQL injected by the Asprox botnet, becoming the very latest high profile legitimate web sites injected with links to exploits and malware serving sites : "The infection, which resides at hxxp://www.seriousmagic.com/help/tuts/tutorials.cfm?p=1, instructs users browsers to silently install a malicious file...

Tags: Adobe Systems Inc., Domain, Malware, SQL, Site, Viruses And Worms, Security, Dancho Danchev

Blog posts 2008-10-16

Sony PlayStation's site SQL injected, redirecting to rogue security software

The latest high trafficked web site to fall victim into the continuing waves of massive SQL injection attacks courtesy of copycats and the ASProx botnet, is Sony's PlayStation U.S site according to a recent post at SophosLabs's blog : "Researchers at IT security firm Sophos have warned lovers of...

Tags: Sony Corp., Domain, SQL, Sony Playstation, SQL Injection, Hacker, Programming Languages, Game Players, Databases, Security, Software Development, Software/Web Development, Consumer Electronics, Personal Technology, Enterprise Software, Software, Data Management, Dancho Danchev

Blog posts 2008-07-02

News to know: Netflix; Google Health; Storm Worm; Fixing Vista

Notable headlines: Dancho Danchev: The Storm Worm would love to infect you Mary Jo Foley: Windows 7: The information lockdown continues Microsoft releases Virtual PC 2007 SP1 Microsoft: Half of Exchange inboxes to be Microsoft-hosted in five years...

Tags: NetFlix Inc., Google Inc., Facebook, Microsoft Windows Vista, Health Care, Microsoft Corp., Worm, Vertical Industries, Microsoft Windows, Benefits, Healthcare, Open Source, Enterprise Software, Software, Operating Systems, Human Resources, Larry Dignan

Blog posts 2008-05-20

The Storm Worm would love to infect you

The Storm Worm malware is back in the game, with its most recent campaign currently active and trying to entice users into executing iloveyou.exe by spamming them with links to already infected hosts acting as web servers, next to SQL injecting malicious domains into legitimate sites for the campaign to...

Tags: JavaScript, SQL, Worm, SQL Injection, Host, Storm Worm, Storm Worm Malware, Scanners, Cyberthreats, Scripting Languages, Programming Languages, Security, Databases, Viruses And Worms, Hardware, Peripherals, Software/Web Development, Web Development, Software Development, Enterprise Software, Software, Data Management, Dancho Danchev

Blog posts 2008-05-19

Redmond Magazine Successfully SQL Injected by Chinese Hacktivists

Irony at its best. It appears that Redmond - The Independent Voice of the Microsoft IT Community, formerly known as Microsoft Certified Professional Magazine is currently flagged as a badware site, and third-party exploit detection tools are also detecting internal pages as exploit hosting ones, in this particular case Mal/Badsrc-A....

Tags: Redmond, SQL, SQL Injection, F**k, Mal/Badsrc-A, Programming Languages, Databases, Security, Software Development, Software/Web Development, Enterprise Software, Software, Data Management, Dancho Danchev

Blog posts 2008-05-16