Dynamoo's Blog

This one looks like a false positive.. CA PestPatrol with signature version 2008.7.29.15 seems to be detecting Zuten in the c:\windows\mini...

Dancho Danchev had has some very good writeups on the current round of SQL injection attacks. This post on copycat attacks caught my eye, ...

These are this morning's active Asprox domains. New ones are in bold. b4so.ru bce8.ru bjxt.ru bnsr.ru bosf.ru bsko.ru ch35.ru gty5.ru ir...

These seem to be the current Asprox domains to block or check for. New ones are in bold. bs04.ru bce8.ru bjxt.ru bnsr.ru bosf.ru bsko.ru ch3...

These domains seem to be active today, new ones in bold. bce8.ru ch35.ru iroe.ru jve4.ru kjwd.ru kodj.ru kpo3.ru kr92.ru ncwc.ru nemr.ru nmr...

Three new Asprox domains that have gone live in the past few hours, probably some more on the way. Either block these or check your logs if ...

Following on from the recent "Infopulse" scam , another Ukranian firm has been targeted by the money mule operators. ABT Solutions...

Just a couple more to add: cgt4.ru kc43.ru

A shift in domains used by the Asprox crew - these new domains are all in the .ru TLD and are registered via NauNet (contact details here ...

Infopulse Ukraine appears to be a legitimate software development company, but this email that claims to be from them is certainly not legi...

The following Asprox SQL Injection domains appear to be active today. New ones are in bold. adwnetw.com adpzo.com ausbnr.com brcporb.ru bt...

Another bunch of Asprox SQL Injection domains , new ones are in bold . adpzo.com adwnetw.com ausbnr.com bkpadd.mobi butdrv.com cdport.eu cd...

If you sell any kind of high-value goods (or even if you have a web site that just mentions them) then you probably get all sorts of fraudu...

A money mule scam pretending to come from Dibag Industries AG - clearly trying to pass itself off as the wholly legitimate Dibag Industrie...

These seem to be the currently active Asprox SQL Injection domains to block or check for. New ones are in bold. adwnetw.com ausadd.com ausbn...

If you have recently patched your Windows computer with KB951748 and have ZoneAlarm installed then you'll probably find that everything...

Another shift in the Asprox SQL Injection domains, still registered with Vivids Media GmbH. As ever, check your logs or block them. adwnetw...

An almost laughable scam email claiming to be from Ban Ki-moon (the UN's Secretary General) offering to reward victims of scams with $25...

If you have been tracking the latest round of SQL Injection domains, then you might be familiar with the name Vivids Media GMBH as being t...

Another batch of Asprox domains are active today - it also seems that those from 3rd July are still running too. I advise that you check yo...