Category Archives: Informative

Trends in Networks: Spam #5

Weekly dump of Digital Ocean abuse using Freenom (and .xyz) domains. Sep5 134.122.112.139 x1 kota.paypak.xyz 138.68.110.2 x3 srv0.mails19.ga 138.68.87.194 x4 srv0.mails19.ml 138.68.96.83 x1 srv0.mails19.cf 159.65.232.195 x2 bundi.paypax.xyz 161.35.14.115 x2 srv0.mails18.cf 46.101.163.120 x2 srv0.mails18.gq 64.225.10.63 x1 srv0.mails19.tk Sep6 134.122.125.156 x2 srv0.mails19.gq … Continue reading

Posted in Informative | Tagged , , , , , , , , | Leave a comment

Trends in Networks: Spam #4

Another week of Digital Ocean abuse using Freenom domains… I don’t want to assume they are all bad, but I have yet to see a ‘legit’ domain. Aug28 134.122.81.184 x1 srv0.mails13.ml 142.93.96.187 x1 srv0.mails13.ga 161.35.112.82 x1 der005-fv03.powerdealers.xyz 164.90.237.213 x4 srv0.mails13.tk … Continue reading

Posted in Informative | Tagged , , , , , , , , | Leave a comment

Trends in Networks: Spam #3

Just a quick data dump today, not much to say. The activity continues, and people continue to get spammed by the Digital Ocean network with the exact same patterns. If anyone is interested in other data points related to this … Continue reading

Posted in Informative | Tagged , , , , , , , , | Leave a comment

Trends in Networks: Spam #2

In last week’s article we covered Freenom domains and how they are used in Digital Ocean snowshoe spam campaigns. Let’s see what kind of activity has been coming from Digital Ocean over the past week. While not a Freenom TLD, … Continue reading

Posted in Informative | Tagged , , , , , , , , , , , , | Leave a comment

Trends in Networks: Spam #1

This is the beginning of a recurring article where I’ll be reviewing patterns in spam activity. I’ll start with something easily overlooked but surprisingly still prevalent in the spam landscape. Freenom TLDs (Top Level Domains) Freenom is a service that … Continue reading

Posted in Informative | Tagged , , , , , , , , , | Leave a comment

Spam Analysis: Markings of an Emotet Phishing Email

On January 2020 researchers have reported that the Emotet botnet is back in action after taking a Christmas break. Following this we’ve seen an increase in spam volume. One of the main attack vectors of the Emotet botnet is email … Continue reading

Posted in Informative, Uncategorized | Tagged , , , , , | Leave a comment

The Lingering Consequences of a Compromised Email Account

Ever have your email account hacked? Did it send spam to everyone on your mailing list, everyone you have ever communicated with through email? If you’ve simply recovered your account and changed your password, it might not be over… Hackers … Continue reading

Posted in Informative, Uncategorized | Tagged , , , , , , , , , | Leave a comment

Will This be the End of Sextortion?

Sextortion emails have been around for about two years now and it’s surprising that they still trickle in every day. We’ve seen many iterations of sextortion spam, as well as versions which change the context to that of tax evasion … Continue reading

Posted in Informative, Uncategorized | Tagged , , | Leave a comment

Catphish Warming Up Our Holiday Inbox

As the days grow colder and the holidays draw near, Spammers have been ramping up their Catphishing campaigns. From displaying fake pictures to writing sweet nothings, they’ll do whatever it takes to get into the minds of their lonely victims. … Continue reading

Posted in Informative | Tagged , , , , , | Leave a comment