InfoSec News

Lately there has been an increased surge in spam. This past week I've received four messages that impersonate a message from Facebook. The messages are actually a Phishing attempt to sell you some drugs. They are very facebook like and to an unsuspecting email recipient they would likely capture a click thru. I followed through the links to find dead pharmacy links. It appears there is spam campaign to sell med's through phishing emails.
A snapshot of one of the emails is below and all of the emails had a consistent link inside the email. The links were as follows. The ultimate destinations never loaded and appear to be removed as of this writing. The pharm url's were all on the same IP block. So someone has caught up to this batch. Be vigilant and on the look out for more.
hxxp://hajayanee.com/directories.html - hxxp://controlpills.net

hxxp://carrosserieaerni.ch/ascension.html -hxxp://medicarerxdrugstore.com

hxxp://mallorcaso.com/postprocessor.html -hxxp://pillpillspharmacy.net

hxxp://firstclassmotorsports.com/screeching.html - no response received

Feel free to tell us about any of your phishing spam email.
--

Kevin Shortt

ISC Handler on Duty (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
 
One of the assertions made by the recent run of high profile attacks was that all networks are vulnerable, and the groups behind these attacks either had or could have access to many more systems if they wish.
Several articles expanded on this assertion and using the recent compromises as evidence considered this fact a failure of information security. I would like to question the conclusion that recent attacks prove that all networks are vulnerable, as well as the successful attacks proof a large scale failure of information security.
First of all, let me state my philosophy of information security: Idon't believe it is the goal of information security to prevent every single breach. As little, as it is the goal of a guard at a bank to prevent every single bank heist.
As an information security professional, it should be your goal to mitigate risks to a level that is small enough to be acceptable to business. It is much more about risk management then avoiding every single risk.
With that focus on risk management, information security itself becomes a solvable problem.

------

Johannes B. Ullrich, Ph.D.

SANS Technology Institute

Twitter (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
 

Website owners urged to invest in security information security
Viet Nam News
CMC Infosec sent its specialists to analyse the attacks and help organisations and businesses make the necessary repairs. It completed check-ups of main servers and software and showed them how to patch up possible mistakes. Experts said awareness of ...

 

Please Hacker Don't Hurt Us: The Media's Coverage Of LulzSec Has Been Cowardly ...
Washington Post
Meanwhile, over on the snappily titled “How the Media Gets it Wrong On Infosec” blog, LulzSec supporter 'Laurelai Bailey' added to the chorus of praise, suggesting that if the authorities really want to stop hackers then rather than arresting them ...

and more »
 

Please Hacker Don't Hurt Us: The Media's Coverage Of LulzSec Has Been Cowardly ...
TechCrunch
Meanwhile, over on the snappily titled “How the Media Gets it Wrong On Infosec” blog, LulzSec supporter 'Laurelai Bailey' added to the chorus of praise, suggesting that if the authorities really want to stop hackers then rather than arresting them ...

and more »
 
Internet Storm Center Infocon Status