Articles by Onur Komili

Coin Lock, an end to MMOG account hacking?

rift175

Theft of virtual currency has increased since many virtual items can be sold for real money. Learn more about how online gaming companies are trying to protect your virtual "ass"ets.

New Facebook Clickjacking Worm

New Facebook Clickjacking Worm

Graham blogged about a Facebook clickjacking worm back in May which we dubbed Likejacking -- for a number of weeks the threat ran rampant throughout Facebook. Since then, it has calmed down quite a bit and we don't see much Read more…

Thank you for your payment!

Thank you for your payment!

It seems there's a new scam flooding our mailboxes today which uses a technique which may get people to panic into doing something they shouldn't. We've seen a number of different messages all using the same technique of thanking the Read more…

Style Sheet Messaging

Style Sheet Messaging

It seems our friends over at ESET NOD32 have received a message that most people wouldn't even notice. While doing some digging into SEO poisoned pages I was looking at the source code of the main FakeAV portal pages and Read more…

FakeAV, now for Windows 7!

FakeAV, now for Windows 7!

It's been over a year since we first started seeing the familiar Windows XP My Computer page where it appears your drives are being scanned and it reports a bunch of non-existent malware on your computer. Yesterday I was investigating Read more…

Olympic SEO Poisoning

Image (1) nodar-kumaritashvilii.jpg for post 25142

A tragedy occurred on Friday morning when Nodar Kumaritashvilii of Georgia died during a luge training run for the Vancouver 2010 Olympics. As we've seen with many other high profile deaths lately, it was only a matter of minutes before Read more…

A shady domain

Default image

When investigating a domain hosting malware one of the first things we normally do is look at the domain's 'whois' information. The first thing I look at is the creation date since you can usually distinguish an infected site from Read more…

Fedor Fans Beware

Image (1) emelianenkofedor21.jpg for post 24640

For those of you who aren't mixed martial arts fans, this past Saturday night was the Strikeforce television event where one of the worlds greatest fighters Fedor Emelianenko fought Brett Rogers, and what a fight it was. It was a Read more…

No, it's not you on there

Default image

Twitter users should be especially careful this morning as there's a new Twitter phish campaign going on. The message that is being seen is using a known tactic where it tries to trick the user into believing there's some content Read more…

Abusing automated email notifications

Image (1) iris-welch-email.jpg for post 20028

As popular as Twitter is I've never have been able to fully grasp the whole Twitter phenomenon. I've setup an account and have a few friends I'm following, but other than that I've logged into the account less than a Read more…

An Obvious Opportunity

Image (1) search_results.jpg for post 20021

It's unfortunate that whenever a celebrity of any sort dies, scammers rejoice as they have new material that they can be certain will give them a boost in traffic to their sites. Take today's hot topic for example. Well known Read more…

What do puppies, furniture, and Viagra have in common?

Image (1) puppies.jpg for post 23793

We don't have a clue either, but while digging through a list of compromised sites I found something rather amusing. For some time now, we've been seeing a number of sites that have been compromised with dozens of links linking Read more…

As If Stealing Your Money Wasn't Enough...

Image (1) wow-chat.jpg for post 23643

There's a game out there a few of you may have heard of called World of Warcraft that's been in the news a lot over the years. I admit, I was once one of "them", playing long hours everyday to Read more…

...And We Have A Winner!

Image (1) malwaregraph-may6-13.jpg for post 23639

I was just going over some reports for the past week and noticed one particular web threat that is blowing away all the competition with the number of infections we're seeing on the web. Since Sunday, we've observed that Troj/JSRedir-R Read more…

Viral Video Now Just Viral

Viral Video Now Just Viral

...well actually it's a trojan, but it's still malicious! For those who had the misfortune of watching the viral video 2 Girls 1 Cup (SFW Wikipedia link) that spread across the internet like wildfire a couple years ago, people trying Read more…

Another Facebook Phish Attempt

Image (1) fbstarter1.jpg for post 20016

This morning people began receiving messages in their Facebook inbox with a subject of "Look at this!" and a message body containing a simple link pointing you to fbstarter.com. Yesterday we saw a similar looking domain attempting to phish peoples Read more…

Twitter XSS Strikes Again

Image (1) twitter1.jpg for post 23521

It seems to be a bad week for Twitter as once again they have been targeted by an XSS attack which is spreading quickly across Twitter. It's still not certain as to who wrote it, though "Mikeyy" is being referenced Read more…

Attention to Detail

I've come across something recently that some may find to be rather amusing. Though this particular FakeAV template has been out in the wild for quite some time now, something in particular caught my eye. The page is almost an Read more…

Pushdo keeps on pushing...

Image (1) vicsec.jpg for post 19819

On Tuesday we saw a large blast of emails containing attachments which were detected as Pushdo. Their strategy this time was to take advantage of many womens' weakness and offer a 50% discount card for shopping. Unfortunately, the place they Read more…

Want to become invulnerable? Now you can!

Image (1) invulnerable-text.jpg for post 19771

Back when I was growing up, I remember playing video games such as Super Mario Brothers and thinking to myself, "Boy, I wish I could get star power and become invulnerable!". Well dream no more, let me introduce you to Read more…