Sponsored by..

Thursday 9 August 2012

Malware on panamamoskow.ru

I'm not sure of the particular nature of the spam run involved (it is possibly a UPS themed attack), but there's a campaign underway with a malicious payload on [donotclick]panamamoskow.ru:8080/forum/showthread.php?page=5fa58bce769e5c2c (report here) hosted on the following IPs: (OVH, France) (Infolink, Panama)

Blocking access to those IPs will prevent other malicious domains on the same server from being a threat.

No comments: