Dynamoo's Blog

A couple of unimaginative spam emails leading to a malicious payload. You have received a new secure message from BankLine From:     B...

A whole bunch of these just came through: From :     AMAZON.CO.UK [order@amazon.co.uk] To :     1122@eddfg.com Date :     13 October 20...

A pair of malware spams this morning, both with the same payload: "You've received a new fax" From:     Fax [fax@victimd...

This high-volume pump-and-dump spam run is promoting the Confederation Minerals ( CNRMF ) stock, although the spam itself intentionally m...

This is an old scam that can safely be ignored. From :     Henry Liu [henry.liu@chinaregistry.org.cn] Date :     9 October 2014 07:53 ...

It looks like the Nuclear exploit kit is active on 178.79.182.106 (Linode, UK), using hijacked subdomains of legitimate domains using AF...

There's a familiar pattern to this malware-laden spam, but with an updated payload from before: Lloyds Commercial Bank: "Impo...

This DHL-themed phish is trying to harvest email credentials, but instead of just spamming out a link, it spams out a PDF file with the li...

This spam email leads to malware hosted on Dropbox: From :     pghaa@pghaa.org To :      victim@victimdomain.com Date :     3 October...

When I opt out of marketing emails, I expect to stay opted out. This kind of crap sent from Sky really gets my goat. Are you making the...

I just had a mass of these purporting to be from uktservices.com ("UK Travel Services"), but in fact it is a forgery and does n...

Quite what exploit kit this is I cannot determine, but there's something evil on 87.118.127.230 (Keyweb, Germany) which is using hija...

Ohmigod, the New York City police have finally tracked me down for eviscerating that spammer in Times Square. From :     ALERT@police.u...

The Alzheimer's Association in the US (alz.org) operate some sort of tell-a-friend system which is apparently easily abused by spamme...

The daily mixed spam run has just started again, these two samples seen so far this morning: NatWest: "You have a new Secure Mess...

Two different banking spams this morning, leading to the same malware,. Lloyds Commercial Bank "Important - Commercial Documents...

I recently acquired a domain name which ended up being registered at Network Solution, not my usual registrar.. so I then wanted to move tha...

I came across this particular sewer while looking in my logs for Shellshock access attempts yesterday. I noticed that some cheeky b--stard...

Another bunch of spam emails, with the same payload at this earlier spam run . HMRC taxes application with reference LZV9 0Q3E W5SD N3G...

Whoever is running this spam run is evolving it day after day, with different types of spam to increase clickthrough rates and now some tr...