KOOBFACE – Inside a Crimeware Network

MUST READ! recently (12/11/2010) Infowar-monitor.net  came out with very good analysis on hackers activities inside their own network called “KOOBFACE: Inside a Crimeware Network” by Nart Villeneuve with a foreword by Ron Deibert and Rafal Rohozinski. Good work guys!

Not a related image.

Its good to see this kind of documentation/analysis where its drilled down to technical methodology, related community and  financial operation (affiliate programs and monetization strategies).  This really showed the organized cybercrime (OCC) really making alot of money from their activities. As stated there, KOOBFACE activities earning more than USD2million a year.

KOOBFACE is a command and control server where able to download archived copies of Koobface’s command and control infrastructure. The contents of the archived  revealed the malware, code and databases used to maintain Koobface.

How do they do that? Please read through this well documented analysis.




The Google Hack Honeypot! GHH

While I was searching & looking for random article on Dionaea. I found someone RT about Google Hack Honeypot! Sound interesting.

As what we know, Google or other search engines have been used for many purposes such as  finding useful information, important websites and latest news on different topics, Google  index a huge number of web pages that are growing daily. From the security prospective  these indexed pages may contain different sensitive information” Google hack involves using advance operators in the Google search engine to locate specific strings of text within search results. Some of the more popular examples are finding specific versions of vulnerable Web applications.

Continue reading