Blogspot - ddanchev.blogspot.com
General Information:
Latest News:
The Cost of Anonymizing a Cybercriminal's Internet Activities - Part Four 23 Aug 2013 | 08:16 pm
Continuing the "The Cost of Anonymizing a Cybercriminal's Internet Activities" series, in this post, I'll profile an API-supporting, blackhat SEO-friendly vendor of anonymization services, which is cu...
Vendor of Scanned Fake IDs, Credit Cards and Utility Bills Targets the French Market Segment 22 Aug 2013 | 09:19 pm
Continuing the series of blog posts detailing the very latest efficiency/quality/scalability/universal business concepts oriented underground market propositions for fake IDs, credit cards and utility...
The Cost of Anonymizing a Cybercriminal's Internet Activities - Part Three 21 Aug 2013 | 11:57 pm
Over the years, I've been persistently highlighting the abuse of compromised hosts as either 'stepping stones', or as the primary facilitators for 'island hopping' campaigns, empowering those using th...
Spamvertised 'Confirmed Facebook Friend Request' Themed Emails Serve Client-Side Exploits 15 Aug 2013 | 05:03 pm
A currently circulating malicious spam campaign, entices users into thinking that they've received a legitimate 'Friend Confirmation Request' on Facebook. In reality thought, the campaign attempts to ...
Dissecting a Sample Russian Business Network (RBN) Contract/Agreement Through the Prism of RBN's AbdAllah Franchise 11 Aug 2013 | 12:12 am
The Russian Business Network (RBN), is perhaps the most speculated, buzzed about, cybercrime enterprise in the World, a poster child for fraudulent activity 'streaming' from 'Mother Russia', in the ey...
Summarizing Webroot's Threat Blog Posts for July 1 Aug 2013 | 10:01 pm
The following is a brief summary of all of my posts at Webroot's Threat Blog for July, 2013. You can subscribe to Webroot's Threat Blog RSS Feed, or follow me on Twitter: 01. Cybercriminals experimen...
Instagram Under Fire as Cybercriminals Release New DIY Fake Account Registration/Management/Promotion Tool 23 Jul 2013 | 08:17 pm
In 2013, CAPTCHAs represent an outdated approach for a Web site wanting to prevent the efficient and systematic abuse of its services. This fact, largely driven by the rise of cost-effective CAPTCHA ...
A Peek Inside a Managed OTP/ATS/TAN Token Bypassing/Hijacking/Blocking System as a (Licensed) Service 20 Jul 2013 | 01:46 am
One of the most common questions that I get during Q&A sessions after a PPT, or in a face-to-face conversation is - "Hello, my name is [name], I represent [random financial institution]. Are we being ...
Newly Launched 'Scanned Fake Passports/IDs/Credit Cards/Utility Bills' Service Randomizes and Generates Unique Fakes On The Fly 4 Jul 2013 | 10:42 pm
In my most recent analysis of the Russian underground marketplace for fake documents/IDs/passports, I emphasized on overall prevalence of fake identities, which can be both, manually 'crafted' by expe...
Summarizing Webroot's Threat Blog Posts for June 4 Jul 2013 | 09:38 pm
The following is a brief summary of all of my posts at Webroot's Threat Blog for June, 2013. You can subscribe to Webroot's Threat Blog RSS Feed, or follow me on Twitter: 01. Compromised FTP/SSH acco...