|
Archive for the ‘Fbi’ Category
Thursday, October 8th, 2009
In Wisconsin, they’ve got a great smelt fry on Lake Michigan. In Louisiana, you can find great crayfish boils. But in Los Angeles, the Fbi announced a very different fry — another major international cyberfaud takedown they named Operation Phish Phry. The hundreds of people involved defrauded online banking users with phony banking sites, stealing online user identities and later money with those user names and passwords from thousands of individuals.
We’ve posted previously on projects more closely related to ThreatFire’s anti-bot capabilities, like Operation Bot Roast. Sometimes, phishing web servers hosting fraudulent/spoofed banking web pages are provided by compromised, bot-infested systems, without the knowledge of the system’s user. Either way, this multi-year, multinational Phish Phry takes another facet of cybercrime off the grid.
Posted in Bot, Fbi | No Comments »
Wednesday, June 11th, 2008
Maybe botnet activity hasn’t gone the way of Ruben Studdard like we thought it would, “yet another name now lost to the ages, silently fading into shadows numberless, suckled by the night sky“, but this botnet herder has. Only with nowhere near as much elegance.
When authorities arrested him at his Fairfield residence last year, our herder Gregory King exited the back door, tried to hide a laptop in the bushes of his backyard, and then answered the front door. ‘The government seized the laptop and searched it, finding “botnet software and references to King’s various online monikers.”‘ Yesterday, he agreed to a two year prison deal after pleading guilty to charges of DDoSing two web sites.
Last December, we pointed out that the Fbi’s Bot Roast II would lead to more arrests and lots of activity in cyber-law enforcement. In January, we pointed out that the ChaseNet forums’ shutdown coincided with the arrest of long-time member “Digerati” (Ryan Brett Goldstein), who was indicted as a result of the same Fbi operation at the time as 21 year old “SilenZ” (Gregory King).
While these developments expose past botnet activity and its disruption in definite terms, we also pointed out advertisements posted in underground forums by rogueware distributors looking to partner with these botnet herders, which we continue to see en masse:
“We upload adware, which in turn actively advertises antispyware! Our adware does not conflict with the botnets, or trojans, and it does not affect your own bots.”
Unfortunately, this underground and international industry is growing and evolving. Despite these arrests and drama, our Ruben will not escape suddenly into the eternal chill of crisp autumn air.
Posted in Adware, Bot, ChaseNET, Fbi, RAT, Rogueware, cybercrime | No Comments »
Tuesday, March 4th, 2008
Proper security can only go so far when you use public computers. Keeping your own system up to date is important and exercising caution when using public systems is important as well.
From the L.A. Fbi branch:
“Tandiwidjojo admitted that he hacked into approximately 60 computers inside business kiosks…After hacking into the computers, Tandiwidjojo installed malicious software that allowed him to intercept data, such as credit card information from customers who used the business kiosks. The malicious software transferred the stolen customer data to a website Tandiwidjojo controlled. Tandiwidjojo then used this information to fraudulently make charges to the stolen credit card accounts.”
Posted in Fbi, Password stealing, Security breach | No Comments »
|
|
|
|
