CastleCops, Internet Crime Fighters
Need help? Click here to register for free! Absolutely zero advertisements on this site!

$9736.22 of $21422.68
left sidedonated so farneed $11686.46 donated to reach our goalright side, our goal
Help CastleCops serve the community on new servers, Donate Here to reach our goal.

Donation/Premium
spacer
Donations. Become Premium Today! Premium Icon
block bottom
Security Central
spacer
· Home
· PIRT/Fried Phish
· MIRT
· SIRT
· Deutsch
· Wiki
· Newsletter
· O16/ActiveX
· CLSID List
· Contest2007
· Downloads
· Feedback (send)
· Forums
· HijackThis
· Hijacktrend
· LSPs
· My Downloads
· O18
· O20
· O21
· O22
· O23
· O9
· Premium
· Private Messages
· Proxomitron
· Reviews
· Search
· StartupList
· Stories Archive
· Submit News
· WsIRT
· Your Account
· Acceptable Use Policy
block bottom
Survey
spacer
Was 2007 a good year?

Yes it was a wonderful year
Yes, but there is always room for improvement
Status quo
It was a challenge
Other (leave comment)



Results
Polls

Votes: 952
Comments: 28
block bottom
spacer spacer
CastleCops®: Surveillance

Search on This Topic:   
[ Go to Home | Select a New Topic ]

image The Russian Business Network (RBN) image
Surveillance
David Bizeul published a 70 page analysis on the Russian Business Network (RBN) last week. For those who have heard about RBN and wanted to know more, then this is a great document to read and have on-hand. David plans to keep it updated. Follow the trail from CWS to phishing (Rock Phish), child pornography, and other malicious activities.

Download from David's site here. A mirror exists at SANS Internet Storm Center here.
Posted by Paul  on Tuesday, 27 November 2007 @ 01:53:38 UTC (3629 reads)
 (Read More... | 3 comments | Score: 4.5) 		image

image Rogue application masquerades as Microsoft Antispyware ! image
Surveillance
happyandyk writes "While we have seen several Rogue Anti-Spyware applications doing rounds of the Internet, here is one which takes the cake ! Because, the website that pushes this rogue application calls itself as Microsoft Antispyware Center! The site in question is www(dot)maxing-search(dot)com/antispyware/ (do NOT visit this site).

The Online Security Scanner is obviously, fake too. It detects a few high rated threats and urges to remove them all. And, when a user clicks on Remove All, a file named Setup.exe hosted at www(dot)liveupdatesnet(dot)com (do NOT visit this site too), will be prompted for download.

source : swatrant via www.winvistaclub.com
The authors of this rogue application have paid attention to small details like setting the Company attribute in file properties to Microsoft. But fortunately, this piece of malware is detected pretty well by most AVs. "
Posted by Paul  on Saturday, 06 October 2007 @ 19:17:52 UTC (2079 reads)
 (Read More... | 1 comment | Score: 0) 		image

image Arbor Networks new ATLAS Service image
Surveillance
The ATLAS portal today is a public resource that delivers a sub-set of the intelligence derived from the ATLAS sensor network on host/port scanning activity, zero-day exploits and worm propagation, security events, vulnerability disclosures and dynamic botnet and phishing infrastructures. It includes:

- Global Threat Map: Real-time visibility into globally propagating threats
- Threat Briefs: Summarizing the most significant security events that have taken place over the past 24 hours
- Top Threat Sources: Multi-dimensional visualization of originating attack activity
- Threat Index: Summarizing Internet malicious activity by offering detailed threat ratings
- Top Internet Attacks: 24-hour snapshot of the most prevalent exploits being used to launch attacks globally
- Vulnerability Risk Index: Determines the most dangerous vulnerabilities being exploited on the Internet today

Our Phishing Incident Reporting and Termination (PIRT) Squad, among other sources, feeds Arbor Networks its phishing data.
Posted by Paul  on Tuesday, 06 February 2007 @ 11:44:33 UTC (1815 reads)
 (comments? | Score: 0) 		image

image A Real Internet Security Rock Star image
Surveillance
Gadi Evron from Securiteam fame who co-ordinated the ultra top-secret probation meeting this week at Microsoft where CastleCops made a presentation was caught secretly videotaped while singing an old Hebrew band's popular song. Someone from the conference had uploaded the video, so you can view it at YouTube.

That explains why there hasn't been any news the past couple of days. It was a great conference, and I'll try and share my presentation publicly. Its a short set of slides, but it details PIRT's measurable success in the past seven months.
Posted by Paul  on Saturday, 27 January 2007 @ 21:26:32 UTC (1850 reads)
 (comments? | Score: 0) 		image

image Downloads: Fyodor's nmap version 4.0 released image
Surveillance
After two years of development on this new version, nmap 4.0 has been released for download. Hundreds of changes have been implemented and its yours to download and continue using in penetration testing. Grab it.
Posted by Paul  on Wednesday, 01 February 2006 @ 12:35:28 UTC (2915 reads)
 (Read More... | 529 bytes more | comments? | Downloads | Score: 0) 		image

spacer
Login
spacer
User Login

Nickname:
Password:
Security Code: Security Code
Type Security Code:
Usage signifies AUP acceptance
· New User? · Click here to create a registered account.
block bottom
Toolkit
spacer
· Email Virus Scan
· UDP Port Scanner
· TCP Port Scanner
· Trojan TCP Scan
· Reveal Your IP
· Algorithms
· Whois
· nmap port scanner
block bottom
Link To Us
spacer
CastleCops Button

More Banners
block bottom
Antiphishing
spacer
APWG Research Partner
block bottom
Microsoft MVP
spacer
Microsoft MVP
block bottom
Anti-Spyware Coalition
spacer
CastleCops is an Anti-Spyware Coalition Member.
block bottom
2002-2008 © Computer Cops LLC dba CastleCops®. All rights reserved.
Acceptable Use Policy. Use signifies your agreement.
182ppm 0.084s (0.005s)
Making cybercriminals unhappy since 2002*
In Memory of Trpm
spacer spacer