Dynamoo's Blog

The IPs and domains listed below are currently in use to distribute the Nuclear exploit kit ( example ). I strongly recommend blocking the...

This fake Financial Times spam is a bit of a mystery: From: The Financial Times [mailto:ft448516@surveymonkey.com] Sent: Thu 07/11/201...

This fake voice mail spam has a malicious attachment: Date:      Thu, 7 Nov 2013 15:58:15 +0100 [09:58:15 EST] From:      Microsoft Ou...

This fake voice mail spam comes with a malicious attachment: Date:      Wed, 6 Nov 2013 22:22:28 +0800 [09:22:28 EST] From:      Admini...

This fake invoice email leads to a malicious Word document: From: Dave Porter [mailto:dave.porter@blueyonder.co.uk] Sent: 06 November 2...

This fake USPS spam has a malicious attachment: Date:      Tue, 5 Nov 2013 14:24:45 +0000 [09:24:45 EST] From:      USPS Express Servi...

This fake ACH (or is it Paychex?) email has a malicious attachment: Date:      Tue, 5 Nov 2013 08:28:30 -0500 [08:28:30 EST] From:     ...

This fake SAGE spam has a malicious attachment: Date:      Mon, 4 Nov 2013 21:00:59 +0600 [10:00:59 EST] From:      Payroll Reports [pa...

Here's a weird spam email.. From: CCDCOE [mailto:ccdcoe@ccdcoe.org] Sent: Monday, November 04, 2013 12:16 PM Subject: Information Sec...

Oh my, do people really fall for this "Corporate eFax message" spam? Apparently people do because the spammers keep sending it o...

The network block 144.76.207.224/28 is currently hosting the Magnitude exploit kit ( example report ) [hat tip to Malekal.com judging fro...

69.26.171.176/28 is a small network range is suballocated from Xeex to the following person or company which appears to have been comprom...

This spam comes with a malicious attachment: Date:      Tue, 29 Oct 2013 11:12:18 -0600 [13:12:18 EDT] From:      "info@victimdom...

Still investigating this one, but 82.211.31.147 (IP-Projects, Germany) appears to be a completely rogue server hosting exploit kits and m...

These fake Wells Fargo spam messages have a malicious attachment: Date:      Tue, 29 Oct 2013 22:34:50 +0800 [10:34:50 EDT] From:     ...

So here's a long-standing source of irritation that I decided to have a poke at today.. Google Ads in search results. Now, obviously thi...

This fake Amex spam leads to malware on steelhorsecomputers.net :         From:     American Express [fraud@aexp.com] Date:     28 Oct...

This is a slightly novel twist on an advanced fee fraud scam: From:     Mercedes-Benz [desk_notification@yahoo.com] Reply-To:     bmlot...

LinkedIn recently announced LinkedIn Intro which is an add-in to the iOS mail app, allowing you do display a contact's LinkedIn data ...

This fake Lloyds TSB message has a malicious attachment: Date:      Fri, 25 Oct 2013 13:55:41 +0200 [07:55:41 EDT] From:      LloydsTS...