Have you heard of cross-site framing? The past few days I saw listed on our archive, several websites vulnerable to cross-site framing - listed as frame redirection. I will briefly describe a possible exploitation scenario, concluding with more emphasis on the negative impact that this type of vulnerability can have to the privacy of innocent individuals who are users of the affected websites.

Continue Reading »

Aviv Raff has published on his blog an interesting proof of concept of the vulnerability affecting Internet Explorer v7: a cross-site scripting in the navcancl.htm local resource.

Continue Reading »

Here are some IP address decimal obfuscators/de-obfuscators. Warez release groups and spammers are often obfuscating the IP adresses that they use.

The following utility allows you to decipher an obfuscated IP and make it easier for yourself to track down spammers, scammers and software pirates.

Continue Reading »

I was surprised when I did a simple search on Google for the keywords “carders online“. The first result that my search revealed, was a site belonging to a cyber criminal group called “Carders Online”. Their web hosting account was suspended, but their website is cached on Google, so I visited it in order to find out more information about it.

It seems to me that this group was very organised. They were providing how-to articles on carding, proxies and online payment processors. They were also selling laptops, mobile phones and cameras, which were bought with stolen/phished credit cards. They were even selling the software and equipment required to copy full details of stolen/phished credit cards into blank cards, in order to be able to cash-out from an ATM the money in the bank accounts.

Continue Reading »

I think one root of the problem is how fast scammers can register domain names and have the fake websites – e.g. for PayPal etc… – up and running in seconds. The root of the problem is the automated process of the domain name registrations.

The Internet Corporation for Assigned Names and Numbers (ICANN) and the registrars have to do something in order to protect the individuals from phishing scams. The current situation is: A complaint about a scammer’s domain - e.g. payppaal.com – has to be legally resolved and it takes ages until the court’s final decision to take the domain name down, while phishers need only a few minutes or hours to setup their scam websites and steal dozen of credit card details. Continue Reading »