Blackhole Crimeware
Recent phishing campaigns using HP OfficeJet Printer emails are using Blackhole crimeware exploit kit, as reported by Dark Reading article of Oct 13, 2011.
http://www.darkreading.com/advanced-threats/167901091/security/attacks-breaches/231900780/blackhole-crimeware-goes-prime-time.html?itc=edit_stub
Recent phishing campaign from HP OfficeJet sent 8 million emails using 2000 domains for malware download. This follows the earlier email compaign using Steve Job theme. The Blackhole kit targets online banking credentials and works like Zeus and SpyEye. Email recipients are led to the Blackhole malicious websites.
Blackhole uses drive-by-download infection and the kit cost $1500 for a one-year license.
The AppRiver blog by Fred Touchette (dated Oct 12, 2011) gives further details of the Blackhole Toolkit:
http://blogs.appriver.com/blog/digital-degenerate
-Joseph Ponnoly
No comments:
Post a Comment