24 Apr CeCOS VIII - Hong Kong Michael
08 Sep A Web Defacer Turns to $$ Spam Fraud Dmitry Bestuzhev
31 Aug Gumblagra and a piano Michael
08 Jul Hot Fail On SexBoosters Michael
05 Jul Spammers hacked pool Michael
17 Aug Net-integrations.net spamming Trojans Roel
Join our blog
You can contribute to our blog if you have +100 points. Comment on articles and blogposts, and other users will rate your comments. You receive points for positive ratings.
The eighth annual Counter-eCrime Operations Summit (CeCOS VIII) was held in Hong Kong on April 8th , 9th and 10th, 2014.
The event brings together global leaders from financial services, technology, government, law enforcement, communications sectors and research centers.
Cybercrime fighters from the field examined:
- Public-source criminal tracking techniques
- Cloud and mobile malware forensics
- The latest crimeware and web-based attack schemes
- Bitcoin as a cybercrime tool
- Globalized industrial cybercrime event data sharing
- Ransomware scams menacing businesses
- Global approaches to securing the Domain Name System
CeCOS VIII was an open conference for members of the electronic-crime fighting community. The agenda is located at http://apwg.org/apwg-events/cecos2014/agenda and I had the opportunity to share recent research results on the second day of the event.
By editing the original PHP code, the criminal can fake the “original headers” of the messages they send. Very interesting.
Now let’s check the original IP address of the mentioned domain:
As you see in this case, the criminals are sending fake e-mails using the identity of IG (www.ig.com.br) a very popular Internet resource in Brazil. They fake the mailer, the original IP address and even the Spam scoring. So, there is a big probability this e-mail will be delivered usefully to the victim, bypassing anti-spam filters. Even the most experienced IT people can be tricked into believing that the message came from IG.