VB Migration

Tag: russia

  • VB2016 paper: Modern attacks on Russian financial institutions

    Today, we publish the VB2016 paper “Modern attacks on Russian financial institutions” ( here in HTML format and here in PDF format) by ESET researchers Jean-Ian Boutin and Anton Cherepanov. In it, they look at a number of groups that have performed sophisticated attacks against a number of Russian financial institutions. The work of these…

  • VB2016 paper: Modern attacks on Russian financial institutions

    Today, we publish the VB2016 paper “Modern attacks on Russian financial institutions” ( here in HTML format and here in PDF format) by ESET researchers Jean-Ian Boutin and Anton Cherepanov. In it, they look at a number of groups that have performed sophisticated attacks against a number of Russian financial institutions. The work of these…

  • Grum botnet’s command-and-control servers shut down

    Spam-sending botnet believed to be third largest in the world. International co-operation between a number of parties has led to all command-and-control servers of the ‘Grum’ botnet being taken down. The takedown gives a good insight into how these operations work, and how co-operation is essential: During the weekend, two command-and-control servers, based in the…

  • Cybercriminals frustrated with botnet trackers

    Drastic measures discussed by users of online forum. Russian cybercriminals are willing to go to great lengths to frustrate services that hinder botnets created with the ZeuS and SpyEye exploit kits, according to security journalist Brian Krebs. Krebs managed to gain access to an exclusive Russian language forum that caters to cybercriminals. The forum’s users…

  • Spammers move from China to Russia

    Stricter rules on registering .cn domains leads to increase in malicious .ru domains. A change in the rules of the organization responsible for registering .cn domains has resulted in a drop in the number of spam messages referencing Chinese top-level domains, with Russian domains moving in to fill the gap. Until recently, a large proportion…

  • Russian Business Network leaves Russia

    Leading cybercrime hosting hub moves business to fresh pastures. The notorious Russian Business Network (RBN), recently making headlines for the massive amounts of malicious and criminal content passing through its servers, has suddenly shut up shop in its St. Petersburg base and apparently moved its services to other countries. A Trend Micro blogger, writing earlier…

  • St. Petersburg US Consulate website hacked

    Malware served by official government site. Web-watchers at Sophos have reported spotting malware hosted on the website of the US Consulate in St. Petersburg, using obfuscated JavaScript and hidden iframes to silently download trojans to vulnerable systems. The hack was part of a sizeable attack targeting vulnerable web servers worldwide last week, with over 400…

  • Estonian websites suffer wave of DoS attacks

    Baltic republic accuses Russia of cyber-warfare. A wave of denial of service (DoS) attacks on Estonian websites has prompted the Estonian government to accuse its neighbour of waging cyber-warfare and to call for better response mechanisms to cyber attacks within the EU. Massive DoS attacks have been affecting Estonian websites for the last three weeks…