Cyber Police Seized Bot Farm that used to Send Large Scale Spam Emails

Cyber police seized a huge bot farm that used to send large scale spam through various services such as email and social media.

The investigation was carried out by Ukraine police in six different regions. Attackers use homes, garages, apartments, and rented offices to carry out malicious activities.

To hide their anonymity and to anonymize the bot farm they used TOR and the VPN services. Further investigation reveals that the bot farm is operated exclusively for client interest.

The bot farm lets attackers register accounts on various online platforms that require user phone numbers to complete the verification process, such as social media, email, payment systems, etc..

They also sold some verified accounts at a higher price to the interested clients. By having the verified accounts threat actors use them for spamming purposes.

Police seized several multi-SIM card modems, these modems would have at least 32 sim card slots and those modems provide multiple options to send bulk messages.

Ukraine police conducted investigations in six Ukraine cities Kyiv, Odessa, Lviv, Mykolayiv, Rivne and Kherson and the equipment was seized and submitted for further examination.

The images shared by Ukraine police show that attackers used several multi-SIM card modems and their intended purpose to send spam emails, messages such as (car wining, jackpot messages) and for phishing activity.

“Cyber police officers, together with investigators of the Main Investigative Directorate of the National Police of Ukraine, under the procedural guidance of the Prosecutor General’s Office of Ukraine, exposed a large-scale service for mass distribution of electronic messages.”

A pre-trial investigation in progress and the attackers involved in bot farm activities will be charged under criminal proceedings act.

Source : GBHacker

Comments

10 Best Forum Software For Webmasters

10 Best Forum Software For Webmasters Do you want to create your online discussion forum or online community where people can discuss about their favorite topics? In this article, you can see 10 best forum software (scripts for setting up discussion forums) that can be used free of cost. Although some scripts are paid but rest of these forum scripts are free to use.You only need to buy hosting space and domain name for your website and after then you can install any of these forum scripts to start your own discussion forums on the internet. Online discussion forums generate huge page views because thousands of people want to join online discussion forums to ask questions or share knowledge. Some of online marketers join forums to discuss about their products with community members. You don't need to acquire any kind of technical skill to run a professional discussion forums because these days, almost all web hosting providers offer one click script installer which h...

How to Hack WhatsApp using just a GIF

A picture is worth a thousand words, but a GIF is worth a thousand pictures. Today, the short looping clips, GIFs are everywhere—on your social media, on your message boards, on your chats, helping users perfectly express their emotions, making people laugh, and reliving a highlight. But what if an innocent-looking GIF greeting with Good morning, Happy Birthday, or Merry Christmas message hacks your smartphone? Well, not a theoretical idea anymore. WhatsApp has recently patched a critical security vulnerability in its app for Android, which remained unpatched for at least 3 months after being discovered, and if exploited, could have allowed remote hackers to compromise Android devices and potentially steal files and chat messages. WhatsApp Remote Code Execution Vulnerability The vulnerability, tracked as CVE-2019-11932 , is a double-free memory corruption bug that doesn't actually reside in the WhatsApp code itself, but in an open-source GIF image parsing library that What...

WhatsApp Bug Allows Malicious Code-Injection, One-Click RCE

A high-severity vulnerability could allow cybercriminals to push malware or remotely execute code, using seemingly innocuous messages. Security researchers have identified a JavaScript vulnerability in the WhatsApp desktop platform that could allow cybercriminals to spread malware, phishing or ransomware campaigns through notification messages that appear completely normal to unsuspecting users. And, further investigation shows this could be parlayed into remote code-execution. The desktop platform has more than 1.5 billion monthly active users. The high-severity bug (rated 8.2 on the CVSS severity scale) could impact those that also use WhatsApp for iPhone, if they don’t update their desktop and mobile apps, and if they don’t use newer versions of the Chrome browser. “A vulnerability [ CVE-2019-18426 ] in WhatsApp Desktop versions prior to 0.3.9309 when paired with WhatsApp for iPhone versions prior to 2.20.10 allows cross-site scripting (XSS) and local file reading,” acc...

Hacks

Search This Blog