Author Archives: Dancho Danchev

Dear blog readers,I’ve decided to share with everyone my “Dancho Danchev – Speaks!” introduction video where I did my best to elaborate more on my experience and expertise in the field throughout the years.Enjoy! Stay tuned! Continue reading Dancho Danchev Speaks! – YouTube Video Presentation – An Analysis→

Dear blog readers,I’ve decided to share with everyone my Keynote at CyberCamp 2016 on tracking down and monitoring the Koobface botnet.Go through the related posts here. Enjoy!Stay tuned! Continue reading Dancho Danchev’s "Exposing the Koobface Botnet" – YouTube Video Presentation – An Analysis→

Dear blog readers,I wanted to take the time and effort and say big thanks to everyone who’s been following my work throughout the years and continues to do so. Full video here. My RSS feed here.Stay tuned! Continue reading Thank You For Following Me!→

NOTE:I took these screenshots in 2009.Dear blog readers,I’ve decided to share with everyone some screenshots of a E-Shop for selling access to compromised PCs.Largely thanks to a variety of built-in botnet management and control features today’s modern… Continue reading Exposing A E-Shop for Selling Access to Compromised PCs – An Analysis→

Dear blog readers,I’ve decided to share with everyone a currently active portfolio of E-Shops selling access to stolen credit cards including the necessary technical information to assist everyone in their cyber attack and cyber campaign attribution ef… Continue reading Exposing a Compilation of Stolen Credit Cards Selling Domains – An Analysis→

NOTE:I took these screenshots in 2009.It used to be a moment in time when scareware and pay per install affiliate-based revenue sharing fraudulent and malicious networks used to dominate the threat landscape as the primary monetization vector courtesy … Continue reading Exposing a Portfolio of YaBucks Pay Per Install Affiliate Network Scareware Serving Domains – An Analysis→

NOTE:I wrote this article in 2006.You’ve definitely witnessed the ongoing speculations on whether or not mobile malware represents the type of threat some vendors got accused of hyping. Malware authors have this unique position to follow the trend, und… Continue reading Mobile Malware – Hype or Threat? – An Analysis→

Dear blog readers,It’s a public secret that the majority of today’s modern Web sites rely on the use of CAPTCHA for proper user vs bot or automated software detection which in reality is a flawed and an outdated approach to protect a Web site and its v… Continue reading CAPTCHA is Dead! – Here’s the Proof→

Dear blog readers,I’ve decided to share a compilation of botnets-in-the-wild screenshots coming straight from the source namely various cybercrime-friendly forums internationally with the idea to raise everyone’s situational awareness on the current st… Continue reading Exposing a Compilation of Botnets-in-the-Wild Screenshots – An Analysis→

NOTE:I took these screenshots circa 2009.UPDATE:Here are some of the related botnet C&C server domains known to have been involved in the campaign:hxxp://cxim.inattack.ru/www3/www/hxxp://i.clusteron.ru/bstatus.phphxxp://203.117.111.52/www7/www/getc… Continue reading Who DDoS-ed Georgia/Bobbear.co.uk and a Multitude of Russian Homosexual Sites in 2009? – An OSINT Analysis→