EUIST

EUIST

Just another ComMetrics – social media monitoring, best metrics, marketing metrics weblog

Russian cyber criminals give CyTRAP Labs’ news service ’stamp of approval’ resulting in massive denial of service attack

December 21st, 2007 · No Comments

This story is a bit tongue and cheek but remember our posting last weekend about

ecrime drop in Russia

In that story we talked about the Russian Business Network. We also pointed out that masterhost.ru is a provider that does not seem to discharge with its legal responsibilities following best practice.

In fact, the above story and cited data indicate that part of masterhost.ru’s recent growth in business may be due to providing shelter to Russian bot herders and cybercriminals.

Apparently we hit a raw nerve when we wrote about Russian cybercrime. Traffic from:

- masterhost.ru originating clients
increased within about three hours after we posted the above story (they must have discovered our post)

Some of the text we found in some of our logs was as follows:

    83.222.23.234 - - [16/Dec/2007:15:15:26 +0100] "GET /?m=200704
HTTP/1.1" 200  172497 "http://google.com" "Mozilla/4.0
(compatible; MSIE 5.01; Windows NT 5.0)" "-"

Go and do a search for the above IP address – surprise surprise – you will find out a lot about what weird business seems to be coming from this IP address – spamming and spyware everywhere

CONCLUSION

As whistle blowers can tell, being one can be a painful experience. In the case of cybercrime, whenever we blow the whistle on something, the affected parties seem to react viciously and with well orchestrated force.

This time it was a massive denial of service attack.

Nonetheless, we have gotten accostumed to this type of stamp of approval from the criminals. Whenever we write a juicy story or reveal some inside knowledge about spammers, spyware and rootkit herders ===> we have to embrace our information assets and be ready to face the music in the form of some type of attack.

Yes, it is wise to stay tuned, be prepared and sign up for our services that seem to have come onto criminal’s radar screens.

Get ready for 2008 by subscribing right now to one or more of our highly acclaimed services that regularly seem to anger those that walk on the wrong side of the law.

Stay tuned!

===========>

ALSO RELATED

Regulation that Matters – Cybercrime Convention – USA citizen groups are balking…

EICAR 2006 – Going beyond legal terminology when looking at cybercrime and crimeware

====>

Tags: Uncategorized

No Responses to “Russian cyber criminals give CyTRAP Labs’ news service ’stamp of approval’ resulting in massive denial of service attack”

Trackbacks/Pingbacks

  1. CyTRAP Labs - EU-IST - we help protect since 2000 » Blog Archive » The Russian Mafia is Raising its Ugly Head - this Time in Sheep’s Clothing - be Careful says:
    February 27, 2009 at 4:28 pm

    [...] Russian cyber criminals give CyTRAP Labs’ news service ’stamp of approval’ resulting in massive denial of service attack [...]

  2. CyTRAP Labs - EU-IST - we help protect since 2000 » Blog Archive » Phorm offers today’s oximoron - eavesdroppers protect your privacy says:
    February 27, 2009 at 8:48 pm

    [...] German Federal Constitutional Court rejects law permitting online police spying [...]

Leave a Comment

You can add a link to follow you on twitter if you put your username in this box.
Only needs to be added once (unless you change your username). No http or @ Twitter

Subscribe without commenting