Cybercrime

Topic Feed

Blogs

How to Stop the Spread of Malware? A Call for Action

May 20, 2013 12:07 PM PDT

On Webwereld an article was published following a new Kaspersky malware report Q1-2013. Nothing new was mentioned here. The Netherlands remains the number 3 as far as sending malware from Dutch servers is concerned. At the same time Kaspersky writes that The Netherlands is one of the most safe countries as far as infections go. So what is going on here? more»

A Royal Opinion on Carrier Grade NATs

May 19, 2013 4:13 PM PDT

There are still a number of countries who have Queen Elizabeth as their titular head of state. My country, Australia, is one of those countries. It's difficult to understand what exactly her role is these days in the context of Australian governmental matters, and I suspect even in the United Kingdom many folk share my constitutional uncertainty... In the United Kingdom every year the Queen reads a speech prepared by the government of the day, which details the legislative measures that are being proposed by the government for the coming year. Earlier this month the Queen's speech included the following statement in her speech. more»

Government Hacking: Proposed Law in the Netherlands

May 08, 2013 9:55 AM PDT

In 2012 I wrote a blog on CircleID called State hacking: Do's and don'ts, pros and cons. In this post I give some thoughts to the concept of a government "hacking back" at criminals. The reason for this was an announcement by the Dutch government that it contemplated law along these lines. The proposed law is now here: the Act Computer Criminality III. more»

Breaking Down Silos Doesn't Come Easy

Apr 24, 2013 9:51 AM PDT

"We need to break down silos", is a phrase often heard in national and international meetings around cyber security and enforcing cyber crime. So it is no coincidence that at the upcoming NLIGF (Netherlands Internet Governance Forum), the IGF, but also an EU driven event like ICT 2013 have "Breaking down silos" and "Building bridges" on the agenda. But what does it mean? And how to do so? more»

Correlation Between Country Governance Regimes & Reputation of Their Internet Address Allocations

Apr 17, 2013 3:19 PM PDT

We recently analyzed the reputation of a country's Internet (IPv4) addresses by examining the number of blacklisted IPv4 addresses that geolocate to a given country. We compared this indicator with two qualitative measures of each country's governance. We hypothesized that countries with more transparent, democratic governmental institutions would harbor a smaller fraction of misbehaving (blacklisted) hosts. The available data confirms this hypothesis. A similar correlation exists between perceived corruption and fraction of blacklisted IP addresses. more»

How Will Banks Ensure the Safety of Our Money? DDoS Attacks on NL Banks

Apr 08, 2013 6:37 AM PDT

This week bank costumers of The Netherlands were shocked when they realised that online banking may not be as safe as they thought. Perhaps some were surprised to hear that what they think is money, is nothing but digits, something that does not exist. Their money only exist because we all act as if it exists and accept transactions between each other aided by software run by banks, if they haven't outsourced that function. more»

The Spamhaus Distributed Denial of Service - How Big a Deal Was It?

Mar 29, 2013 4:49 PM PDT

If you haven't been reading the news of late, venerable anti-spam service Spamhaus has been the target of a sustained, record-setting Distributed Denial-of-Service (DDoS) attack over the past couple of weeks... Of course, bad guys are always mad at Spamhaus, and so they had a pretty robust set-up to begin with, but whoever was behind this attack was able to muster some huge resources, heretofore never seen in intensity, and it had some impact, on the Spamhaus website, and to a limited degree, on the behind-the-scenes services that Spamhaus uses to distribute their data to their customers. more»

Reducing the Risks of BYOD with DNS-Based Security Intelligence; Part 2: Taking Control

Jan 29, 2013 12:32 PM PDT

In part 1, I talked about some of the risks associated with BYOD. But there are actions you can take to greatly reduce this risk. One effective method for limiting the risk of BYOD is to employ DNS-based security intelligence techniques. DNS-based security intelligence makes use of an enterprise's caching DNS server to monitor and block DNS queries to known botnet command and control (C&C) domains. more»

Pandora's Box - New US Cyber Security Bills Create a Worm Hole in the Internet Galaxy

Jan 26, 2013 10:44 AM PDT

There are two Bills that are floating through the corridors of power on the Hill that could potentially change the course of civil and political rights within the United States and the world. One was introduced through the House of Representatives and the other through the Senate. The two Bills touch on a common thread that are premised on "national security" however there are interesting challenges that will surface should the Bills be passed that affect global public interest that require further examination, introspection and discussion. more»

EC3, the European Cybercrime Centre, Opened - Challenges All Around

Jan 15, 2013 3:35 AM PDT

On Friday 11 January 2013 the European Cybercrime Centre, EC3, officially opened its doors at Europol in The Hague. If something shone through from the speeches of the panel participants, it is that there are tight budget restraints and a strong wish to cooperate with the U.S., the Interpol centre in Singapore and Russia. Let me share my thoughts on expectations. more»

CircleID' Top Ten Posts of 2012

Jan 10, 2013 9:34 AM PDT

Here are the top ten most popular news, blogs, and industry updates featured on CircleID during 2012 based on the overall readership of the posts for the past 12 months. Congratulations to all the participants whose posts reached top readership and best wishes to the entire community for 2013. more»

Follow a Phishing Case in Real Time: postfinances.com / Swiss Post

Jan 04, 2013 10:24 AM PDT

It is just another phishing case. Why should I care? I happened to receive my own copy of the phishing email message. Most Internet users will just smile bitterly before deleting it. I checked it to see why it had gone through the spam filters. It had no URL in the text but a reply-to address. So it needed a valid domain name, and had one: postfinances.com. PostFinance (without trailing "s") is the payment system of the Swiss Post. It has millions of users. more»

How to Donate Safely to Charity

Dec 17, 2012 7:35 AM PDT

Please share this post. After a tragedy, many of us want to donate to funds and charities to show our support for a community. However, scam charities immediately pop up, looking to steal your well intentioned donations. There are at least 30 newly-registered domains over the past 48 hours related to the tragic shootings at the Sandy Hook elementary school in Connecticut: Most, if not all are scams and rip-offs. How then, to donate so that your funds make it to the deserving victims? more»

Cyber Security: A Duty to Care?

Dec 13, 2012 7:53 AM PDT

Yesterday, in my post on three new threats in one day, I posed the question whether it was necessary to develop regulations that would set a minimum standard on cyber security for devices that connect to the Internet. I'm having second thoughts here, which I'll explain in this post, but also try to look at a way forward and ask you to engage. more»

Three New Cyber Security Threats in One Day

Dec 12, 2012 8:54 AM PDT

Internet crooks never cease to surprise me. The inventiveness in being bad is super. If these guys lent their thinking power to the economy, the economic crisis would be solved within a week. Today I ran into three brand new cyber security threats that were reported on. In one day. So I thought to share them with you. more»

View More

News Briefs

Arrest Made in Connection to Spamhaus DDoS Case

  • Apr 29, 2013 12:15 PM PDT
  • Comments: 0

China and the United States Agree on Forming Joint Cybersecurity Working Group

  • Apr 15, 2013 9:10 AM PDT
  • Comments: 0

ICANN Releases Guideline for Coordinated Vulnerability Disclosure Reporting

  • Mar 12, 2013 9:31 AM PDT
  • Comments: 0

Obama Signs Cybersecurity Executive Order

  • Feb 13, 2013 5:38 PM PDT
  • Comments: 0

M3AAWG, London Action Plan Release Best Practices to Address Online and Mobile Threats

  • Oct 30, 2012 8:55 AM PDT
  • Comments: 0

The Tale of Thousands of Hacked Modems in Brazil, Affecting Millions

  • Oct 02, 2012 10:43 AM PDT
  • Comments: 0

Cyber and Telecommunications Defence One of the Fastest Growing Industries in the World

  • Jul 18, 2012 11:23 AM PDT
  • Comments: 0

Eugene Kaspersky: World Needs International Agreements On Cyber-Weapons

  • May 23, 2012 9:50 AM PDT
  • Comments: 1

DNSChanger Disruption Inevitable, ISPs Urged to Bolster User Support

  • May 17, 2012 10:28 AM PDT
  • Comments: 0

Microsoft and Financial Services Groups Disrupt Zeus Botnet Servers

  • Mar 26, 2012 12:35 PM PDT
  • Comments: 0

FCC Releases New U.S. Anti-Bot Code

  • Mar 22, 2012 3:48 PM PDT
  • Comments: 0

NATO Announces 58 Million Euro Investment in Cyber Defence

  • Mar 12, 2012 11:39 AM PDT
  • Comments: 0

Study Links Half of "Rogue" Online Pharmacies to Two Domain Name Registrars

  • Mar 12, 2012 11:25 AM PDT
  • Comments: 0

No New Cybersecurity Regulations Needed, ISPs Tell U.S. Lawmakers

  • Mar 08, 2012 10:53 AM PDT
  • Comments: 0

DNSChanger Trojan Still Running on Half of Fortune 500s, US Govt

  • Feb 02, 2012 10:28 AM PDT
  • Comments: 0

Public-Private Cooperation Policy for Cyber Security Suggested by Commissioner Kroes

  • Jan 31, 2012 11:11 AM PDT
  • Comments: 0

Japan Developing Distinctive Anti-Cyberattack Virus

  • Jan 04, 2012 1:07 PM PDT
  • Comments: 0

White House Announces Agenda for Game-Changing Cybersecurity R&D

  • Dec 06, 2011 12:22 PM PDT
  • Comments: 0

FBI Warns of Cyberattacks Against Banks - Aided by Variant of Zeus Trojan Called 'Gameover'

  • Dec 01, 2011 3:36 PM PDT
  • Comments: 0

UK Reveals New Cyber Security Strategy, Aims to Make UK Safest in the World

  • Nov 25, 2011 9:54 AM PDT
  • Comments: 0
View More

Most Viewed

Trench Warfare in the Age of The Laser-Guided Missile

  • Comments: 1
  • Views: 491,568

Port 25 Blocking, or Fix SMTP and Leave Port 25 Alone for the Sake of Spam?

  • Comments: 31
  • Views: 100,046

Network Solutions Responds to Front Running Accusations

  • Comments: 34
  • Views: 97,466

DNS Changer

  • Comments: 6
  • Views: 68,569

Domain Tasting Target of US Federal Cybersquatting Lawsuit

  • Comments: 77
  • Views: 52,610
View More

Most Commented

Taking Back the DNS

  • Comments: 133
  • Views: 51,559

Domain Tasting Target of US Federal Cybersquatting Lawsuit

  • Comments: 77
  • Views: 52,610

Fake Bank Site, Fake Registrar

  • Comments: 72
  • Views: 10,728

When Registrars Look the Other Way, Drug-Dealers Get Paid

  • Comments: 48
  • Views: 12,427

Who Is Blocking WHOIS? Part 2

  • Comments: 43
  • Views: 12,603
View More

Industry Updates

Mitigating DDoS Attacks: A Global Challenge

  • By PIR
  • Dec 12, 2012

Our New Initiatives To Combat Botnets

  • By PIR
  • Dec 03, 2012

MarkMonitor Releases Q2 2012 Fraud Intelligence Report

How Secure is Your Mobile Network? And Does It Even Matter? (Webinar)

Nominum Launches Comprehensive Suite of DNS-Based Security Solutions for Russian Service Providers

Implementing a Cyber-Security Code of Conduct: Real-Life Lessons From Australia (Webinar)

DDoS Attacks: Top Trends and Truths (Webinar)

MarkMonitor Fraud Intelligence Report, Q4 2011

Q3 2011 Fraud Intelligence Report

The Spookiest DDoS Attacks in History

MarkMonitor Fraud Intelligence Report Released for Q2 2011

Businesses Lack Safeguards Against DDoS Attacks and DNS Failures, New Research Shows

Q1 2011 Fraud Intelligence Report

The Botnet-Counterfeit Drugs Connection

Q4 2010 Fraud Intelligence Report

View More

Participants – Random Selection

View More