-
Recent Posts
Recent Comments
Archives
Categories
Meta
Tag Archives: martuz
Another Round of Beladen? Or, The New "Go" Infection
On Wednesday July 22, 2009 we started seeing what looks to be a new round of beladen style website infections by cybercriminals. The reason we think they’re beladen style is that they appear to infect all the websites on shared … Continue reading
Posted in Uncategorized
Tagged anti-virus, beladen, cybercriminal, daobrains.info, deobfuscate, evading detection, globalsecurityscans.com, goscansome.com, goscansoon.com, goslimscan.com, gumblar, hacker, hackers, hosting provider, ina6co.com, infected webpage, infected website, infectious website, legitimate website, malicious code, malscript, malware, martuz, obfuscate, oigmlob, safetyshareonline.com, social engineering, sql injection, this site may harm your computer, trojan, undetectable, ventsol.info
14 Comments
The Blame Game
Major Malware Outbreaks Evade Anti-Virus Protection A report released on July 14, 2009 states that “Several successive and massive malware outbreaks caused a spike in malware that was undetected by major AV engines.” In Commtouch’s Q2 Report available hereĀ , which … Continue reading
Posted in Uncategorized
Tagged adobe vulnerability, anti-virus, badwarebusters, cybercriminal, evading detection, ftp, gumblar, gumblar.cn, hacker, hackers, hosting provider, iframe, infected webpage, infectious website, infectious websites, malscript, malware, martuz, martuz.cn, SERP, this site may harm your computer, undetectable, website hacked
9 Comments
A New Spin on martuz Website Infection
We were tasked with helping a website owner find all the malscripts on his site and remove them. He, like many, learned that his site was an infectious website delivering malicious code with an email from Google. This website owner … Continue reading
New Website Infection Method
Working with a website owner recently, we came across a new method of delivering infectious code (drive-by downloads) – at least it’s a method we’ve never seen before. The scenario: Website owner gets the email from Google telling them their … Continue reading
Posted in Current Event Attacks
Tagged 404 error, Apache, bad_gateway.html, bad_request.html, cybercriminal, forbidden.html, httpd.conf, internal_server_error.html, malscript, malware, martuz, martuz.cn, method_not_allowed.html, not_acceptable.html, not_found.html, not_implemented.html, precondition_failed.html, proxy_authentication_required.html, redirect code, request-uri_too_long.html, SERP, this website can harm your computer, unauthorized.html, unsupport_media_type.html
Leave a comment
How To Find martuz.cn in Websites
After our post earlier today about how martuz.cn is the new domain for gumblar infections, we’ve received hundreds of emails from people (I guess too embarassed to post their question in an open forum), asking how to find martuz.cn in … Continue reading
Posted in Current Event Attacks
Tagged Avast, AVG, cybercriminal, ftp, google chrome, gumblar, gumblar.cn, infectious website, malscript, malwarebytes, martuz, martuz.cn, SERP, ssh, this site may harm your computer, wget
9 Comments
New Domain – Same Damage
If you have a website, you may have had your website attacked by cybercriminals using the Gumblar.cn hack. This hack was responsible for thousands of websites serving infectious code to their visitors. However, the domain that was hosting further links … Continue reading