Author Archives: Dancho Danchev

Dear blog readers,In this post I’ve decided to share some sample screenshots courtesy of the Yes web malware exploitation kit with the idea to raise awareness on the ease and sophistication of today’s modern web malware exploitation kits in terms of sy… Continue reading Exposing Sample Screenshots Courtesy of the Yes Web Malware Exploitation Kit – An Analysis→

NOTE:I took these screenshots in 2008.Did you know that back in 2008 CNET’s Download.com used to suffer from a major input validation flaw which the infamous back then RBN (Russian Business Network) used to exploit in terms of having automatically and … Continue reading Exposing a Malware Serving Client-Side Exploits Serving Campaign at CNET’s Download.com Abusing Input Validation Flaws – An Analysis→

Dear blog readers,Back in 2009 the BBC bought a DDoS botnet to demonstrate how it works.In this post I’ve decided to offer sample screenshots of the actual botnet in question with the idea to raise more awareness on how the BBC actually bought a DDoS b… Continue reading Exposing BBC’s Chimera DDoS Botnet – An Analysis→

Dear blog readers,I’ve decided to share with everyone a screenshot which I took back in 2010 which basically demonstrates an IRC malware bot which is capable of executing SQL injection campaign using stolen or compromised access to malware-infected hos… Continue reading Exposing a SQL Injection Capable IRC Malware Bot – An Analysis→

Dear blog readers,I’ve decided to share some publicly obtainable and available screenshots of what appears to be a compromise of what used to be a high-profile cybercrime-friendly forum community with the idea to raise awareness on the fact that even t… Continue reading Exposing Recently Leaked Cybercrime-Friendly Forum Community Screenshots – An Analysis→

Dear blog readers,Continuing the “going through my old threat intelligence research archives” blog post series I’ve decided to share yet another compilation of Mod Bot which is a well known malicious software botnet release with some pretty interesting… Continue reading A Peek Inside the Mod Bot Malicious Software Botnet Release – An Analysis→

Dear blog readers,I’ve decided to share with everyone a series of photos courtesy of a publicly accessible CAPTCHA-solving service that also includes the breaking and direct bypassing of Google’s reCAPTCHA with the idea to raise awareness on the fact t… Continue reading Exposing a Publicly Accessible CAPTCHA-Solving Service – An Analysis→

NOTE:I took these screenshots in 2010.An image is worth a thousand words.Sample screenshots include:Stay tuned! Continue reading Exposing a Chinese Web Site Defacement Attack Campaign Against Iran-based Web Sites – An Analysis→

Dear blog readers,I’ve decided to share with everyone a portfolio of known scareware themed photos with the idea to raise awareness on what used to be the primary monetization vector within the cybercrime ecosystem circa 2010.An image is worth a thousa… Continue reading Exposing a Sample Portfolio of Scareware Themed Screenshots – An Analysis→

Dear blog readers,I’ve recently decided to take a peek inside my old threat intelligence research archives and I’ve decided to share some sample screenshots of a popular back in 2010 malicious software botnet release known as the “Hybrid Remote Adminis… Continue reading A Peek Inside the Hybrid Remote Administration Control System Malicious Software – An Analysis→