Sunday, 31 August 2008

Inside India’s CAPTCHA solving economy

Source: ZDNet "Zero Day" Blog

"The bottom line - is text based CAPTCHA dead? It’s definitely in pain thanks to evil marketers recruiting low-waged Indian data processing workers, who according to some of the statistics obtained, earn over ten times more while solving CAPTCHAs, than through their legitimate data processing jobs."

Friday, 29 August 2008

Atrivo: Cyber Crime USA

Source: Russian Business Network Blog

"In a new study entitled "Atrivo - Cyber Crime USA", the authors have extensively tracked and documented ongoing cyber criminal activity from within the Internet servers controlled by the California-based Atrivo, and other associated entities. Atrivo is one of the Internet's Autonomous Systems and controls a large number of IP addresses, which web sites must use to reach consumers."

The Atrivo White Paper is available from

Saturday, 23 August 2008

Anatomy of a malware scam

Source: The Register

Security researchers have been documenting fake antivirus programs for quite some time, but this article is one of the more detailed ones you will find on "XP Antivirus". The only regrettable omission from this article is any documentation as to the structure of the organised crime behind it, which is admittedly difficult to determine with any degree of assurance.

Thursday, 14 August 2008

Chip-and-PIN fraud operation busted in Birmingham

Source: APACS

"The Dedicated Cheque and Plastic Crime Unit (DCPCU)... has raided a sophisticated counterfeit card factory in Birmingham. ... Equipment needed to steal card details and make counterfeit cards on a massive scale - including stolen chip and PIN terminals, card account numbers, a card reader/writer, computer software and fake magnetic stripe cards - was found in the premises. Early indications are that these criminals have been tampering with retailers’ chip and PIN terminals in order to steal card transaction data and PINs from these machines. With these details, criminals are able to create fake magnetic stripe cards that can be used fraudulently in countries that have yet to roll out chip and PIN."

See also commentary at The Register

Sunday, 10 August 2008

RBN and Georgia CyberWarfare

Source: Russian Business Network Blog

The RBNexploit blog is reporting that armed conflict between Russia and Georgia is having parallels in cyberspace. Simultaneously with exchange of fire on the ground, the country's routing and nameserver infrastructure is coming under attack from networks known to harbour the Russian Business Network.

Tuesday, 5 August 2008

Feds accuse bank insider of massive data heist

Source: The Register

According to documents filed in federal court in Los Angeles, Rene Rebollo (age 36) copied data from 20,000 customer profiles (including names and SSNs) onto removable flash drives just about every week for about two years. He would then sell the information for about $500 per 20,000 profiles to various buyers. Prosecutors allege that he netted as much as $70,000 through the scheme.

Dutch botnet herders arrested

Source: The Register

"Dutch police have arrested two Dutch brothers suspected of running a botnet controlling 40,000 to 100,000 computers..."

The report says they come from "the Frisian town of Sneek". Does that make them Sneekers?