Tuesday, October 16, 2012

New ADP Spam Attack - Watch out do not open the link

Here We Go Again, Mass Spam Attack......more than 7525 new spam messages in two hours. ADP Spam / Date: Thu, 11 Oct 2012 14:53:17 -0600 From: "ADP.Message" [chichi@whiteman.com] Subject: ADP Generated Message This e-mail has been sent from an automated system. PLEASE DO NOT REPLY. If you have any questions, please contact your administrator for assistance. --------------------------------------------------------------------- Digital Certificate About to Expire --------------------------------------------------------------------- The digital certificate you use to access ADP's Internet services is about to expire. If you do not renew your certificate by the expiration date below, you will not be able to access ADP's Internet services. Days left before expiration: 3 Expiration date: Oct 11 08:59:59 GMT-06:00 2012 --------------------------------------------------------------------- Renewing Your Digital Certificate -------------------------------------------------------------------- 1. Go to this URL: https://netsecure.adp.com/pages/cert/register2.jsp 2. Follow the instructions on the screen. 3. Also you can download new digital certificate at https://netsecure.adp.com/pages/cert/pickUpCert.faces. In this case the malicious payload is at [donotclick] hosted by Choopa LLC in the US. The IP is probably worth blocking to be on the safe side.

Thursday, March 11, 2010

New phishing scam

Attorney General Jim Hood is warning credit union members of an apparent phishing scam.

Read this

Wednesday, January 13, 2010


Dear Friends,

altalsec urity provide the following services:

- Penetration Testing
- Vulnerability Research
- Information Secuity Training

Tuesday, January 12, 2010

Backtrack 4 Final --> out

Mazal tov to Muts, Irissan && Remote-exploit team.

Tuesday, December 15, 2009

Decaf Please

A new Anti Forensics tool have been released this week, Download link:decaf

"According to the Register, the program deletes temporary files or processes associated with COFEE, erases all COFEE logs, disables USB drives, and contaminates or spoofs a variety of MAC addresses to muddy forensic tracks."

Read the full article:

Hackers Brew Self-Destruct Code to Counter Police Forensics

Wednesday, November 11, 2009

iPhone new Worm - ikee

Source code available on line....here

Wednesday, October 7, 2009

Ready? ./set

Social Engineer Toolkit:

The Social Engineering Toolkit (SET) is a python-driven suite of custom tools,
SET has two main methods of attack, one is utilizing Metasploit payloads and Java-based attacks by setting up a malicious website that ultimately delivers your payload. The second method is through file-format bugs and e-mail phishing.

The SET is designed to make complex social engineering tasks relatively simple for you by allowing you to utilize a robust framework for penetration tests.

SET works with metasploit and basicaly targets on automatic mail and website attack.