I’ve been looking at ATLAS data for the past few days, looking at new features to add to ATLAS and also for real data coming out of it. In short, the world’s not ending, we’re just looking at possible exploit activity. UDP port 407, used in Timbuktu, has shown up lately. A recent vulnerability, CVE-2007-4221, [...]
In late January 2007 several NFL-related web sites were hacked, to include www.dolphinsstadium.com and www.miamidolphins.com. Considering the Miami Dolphins stadium was about to host the NFL’s biggest game of the year, Superbowl XLI, this seemed a reasonable enough target. The sites were modified to serve malicious JavaScript code that would compromise victim’s computers, providing a [...]
So, yesterday I wrote this blog entry talking about some social engineering tactics enabled by an American fascination with the NFL. While looking at the email spam received from a Storm malware distribution campaign, I’m thinking, who in their right mind would ever click on such a link? Two such sample spam we received are [...]