Latest Posts

Hi folks, A common practise among enterprising webmeisters is what's known as brand-squatting. That's where you find a domain whose owner has neglected, or not bothered, to renew it, and it's up for grabs. If you get something modestly popular,...

It seems that a Russian bank – KS Bank – has been fingered by the phishers for their evil. I first noticed this about a day ago in an Abbey phishing scam Email. Note the link in the Email to http://www.ks-bank.ru/bitrix/admin/2/myonlineaccounts2.abbeynational ...

The malware known as Gumblar got its name from the domain it uses for exploit distribution. In reality, it uses many other sites as well - including one that was recently closed down - but Gumblar is the name that's...

*** don't go to any of these websites... they seem safe today, but you can't be certain, and it's better to avoid them *** It's just a simple (and common) script injection, but the victim is kind of interesting. Seems...

Hi folks, It seems like Conficker might be updating itself. Quietly... surreptitiously... but updating none-the-less. If we are correct that the aim of the authors was to build a fairly bullet-proof botnet, this is to be expected, and again, we...

So... years ago, I wrote a program called WormRadar. It was designed to detect and measure the malware of the day, worms. More recently, the web became the main attack vector, and we started building programs to detect and measure...

is being greatly exaggerated, in case you haven't figured it out by yourself. What's happening is that people are worried because the Conficker worm is due to do "something" on Apr 1st, and no one knows exactly what. Human nature...

Hi folks, So, the March pitch from KoobFace seems to be bigger in scope...well, that's if you can derive stats from a sample-base of one, because I've personally received three pitches this time... One for FaceBook, and two for Classmates.com......

Today i got an unusual spam: I believed for the first few seconds that it was a valid message so i checked what was at the link. My instinct told me to download it in a safe environment, which turned...

Hi folks, Just a quick note to share that the hacked page at phoenix.spelthorne.gov.uk has been cleaned, and no longer displays "Fatal Error ownz you" and is no longer redirecting to sites in Turkey. We have, however, found lots of...