tag:blogger.com,1999:blog-804714437673009003.post7723795387413693304..comments2024-02-23T09:06:13.967+00:00Comments on Dynamoo's Blog: "Consumer Benefit Ltd" adware sites to blockUnknownnoreply@blogger.comBlogger3125tag:blogger.com,1999:blog-804714437673009003.post-73188791049330491112014-09-12T11:56:34.132+01:002014-09-12T11:56:34.132+01:00Thanks Conrad. That matches what I and others were...Thanks Conrad. That matches what I and others were thinking (https://github.com/kbandla/APTnotes/issues/13).<br /><br />I would be concerned if people were responding to infections as serious targeted attacks, based off of the language in the cyberintel report.shooflypiehttps://www.blogger.com/profile/06925882757010789490noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-30845550490819718582014-09-08T19:51:52.666+01:002014-09-08T19:51:52.666+01:00@shooflypie - I went back over the evidence from t...@shooflypie - I went back over the evidence from the time, and the binaries in question were identified as AdWare/GFilter-A. <a href="https://malwr.com/analysis/ZjViYTgwZWVkMjFhNDNiMTkxYjkyZjlmMWVhYWZjMTQ/" rel="nofollow">This Malwr report</a> also appears to be the same basic binary. (Registered users can download the binary).<br /><br />These are some similarities with the victim organisation Conrad Longmorehttps://www.blogger.com/profile/11751822299235747323noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-25484383504780159622014-09-06T15:42:22.706+01:002014-09-06T15:42:22.706+01:00Any thoughts as to the accuracy of this report, wh...Any thoughts as to the accuracy of this report, which seems to indicate these domains are involved in more serious targeted attacks?<br /><br />http://cybertinel.com/wp-content/uploads/2014/09/Appendix-1-HAZARDOUS-IP-AND-URL-%E2%80%93-HARKONNEN-OPERATION.pdfshooflypiehttps://www.blogger.com/profile/06925882757010789490noreply@blogger.com