• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   Author / Jonell Baltazar (Senior Threat Researcher)

Jonell Baltazar

Senior Threat Researcher

KOOBFACE Business Growth Secret: TDS Creation

  • Posted on:December 19, 2011
  • Posted in:Bad Sites
  • Posted by:
    Jonell Baltazar (Senior Threat Researcher)
3

The KOOBFACE botnet is known for using the pay-per-install (PPI) and pay-per-click (PPC) business models in order to make money. In 2009 alone, the KOOBFACE gang earned about US$2 million. This was, however, not enough, as the gang upgraded their botnet framework with the creation of a sophisticated traffic direction system (TDS) that handles all…

Read More

KOOBFACE Propagates via Torrent P2P File Sharing

  • Posted on:August 17, 2011
  • Posted in:Botnets, Malware
  • Posted by:
    Jonell Baltazar (Senior Threat Researcher)
21

The KOOBFACE botnet became known for using popular social networking sites as a propagation vector and abusing these platforms for malicious purposes. We recently observed that KOOBFACE no longer actively propagates via social networks but rather does so via a torrent P2P network through sharing Trojanized application files. While conducting research, we found a “loader”…

Read More

The Evolution of KOOBFACE: A Web 2.0 Botnet

  • Posted on:May 25, 2010
  • Posted in:Botnets
  • Posted by:
    Jonell Baltazar (Senior Threat Researcher)
2

The KOOBFACE botnet continuously evolves to keep on generating profit for its perpetrators. The fact that the botnet is still alive shows that the cybercriminals behind it are making a fortune off it. In our effort to conduct research on and to monitor the latest developments made to the KOOBFACE botnet, we have noticed several…

Read More

KOOBFACE IP Taken Down, Gang Transfers Hosting to China

  • Posted on:April 22, 2010
  • Posted in:Botnets, Malware
  • Posted by:
    Jonell Baltazar (Senior Threat Researcher)
1

The KOOBFACE FTP grabber component, which is a variant of the LDPINCH Trojan family, usually drops stolen FTP user names and passwords to a remote server controlled by the KOOBFACE gang. This remote server, located in Hong Kong, was taken down last week, thanks largely to the efforts of the Hong Kong Computer Emergency Response…

Read More

New ZBOT/ZeuS Binary Comes with a Hidden Message

  • Posted on:February 10, 2010
  • Posted in:Bad Sites, Mobile
  • Posted by:
    Jonell Baltazar (Senior Threat Researcher)
5

Trend Micro advanced threat researchers recently came across a new ZBOT/ZeuS binary file detected as TROJ_ZBOT.BTM. ZBOT/ZeuS variants are well-known for stealing banking information from its victims via various social engineering tactics (e.g., spammed messages, malicious links sent to social networking site members in the guise of messages, and compromised legitimate sites), as evidenced by…

Read More
Page 1 of 2012 › »

Security Predictions for 2020

  • Cybersecurity in 2020 will be viewed through many lenses — from differing attacker motivations and cybercriminal arsenal to technological developments and global threat intelligence — only so defenders can keep up with the broad range of threats.
    Read our security predictions for 2020.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

Sorry. No data so far.

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.