3ve – Major online ad fraud operation disrupted

International law enforcement swoops on fake ad viewing outfit. On Monday, October 22nd, a disruption action involving law enforcement bodies worldwide targeted “3ve”, a major online ad fraud operation. Today, on November 27, 2018, a 13-count indictment against eight defendants was unsealed. Out of these eight defendants, three are in custody and awaiting extradition. Ad fraud campaigns … More 3ve – Major online ad fraud operation disrupted

Birthday Reminder looks benign but the devil’s in the details: Hooks DNS, serves dodgy ads

The strange behavior of a simple Windows application caught our attention and sparked ESET’s analysis of previously undocumented malware. A contact at the Norwegian HealthCERT —  following a question about this from the regional healthcare provider Sykehuspartner — reached out to us asking about DNS queries to domains with the format [0-9a-f]{60}.smoke. There is no .smoketop level domain, … More Birthday Reminder looks benign but the devil’s in the details: Hooks DNS, serves dodgy ads

DNS attacks: How they try to direct you to fake pages

DNS servers are essential to the normal functioning of the internet as we know and love it, but they tend to go unnoticed by most users. At least, that is, until some sort of attack or incident occurs that stops them from working normally, which results in the services we use every day starting to fail (something … More DNS attacks: How they try to direct you to fake pages

Avalanche takedown: Check if you are safe

Earlier this week coordinated law enforcement action took down the Avalanche fast-flux network. For several years, this network has allowed various botnet operators to benefit from an extra layer of protection against takedown and domain blacklisting. Today, this network has suffered a serious blow. Coordinated efforts from law enforcement around the world succeeded in taking … More Avalanche takedown: Check if you are safe

10 things to know about the October 21 IoT DDoS attacks

On Friday, October 21, a series of Distributed Denial of Service (DDoS) attacks caused widespread disruption of legitimate internet activity in the US. Because the attacks targeted the Domain Name System (DNS) that makes sure information requests on the internet are delivered to the right address, a lot of normal activities such as online shopping, … More 10 things to know about the October 21 IoT DDoS attacks

An Open Letter to US Congress from Andrew Lee, CEO, ESET North America

To Members of the United States Congress: I am the chief executive officer of North American operations for ESET, a world leader in proactive Internet threat protection. As a CEO working to create well-paid jobs in America, I urge you to reject HR 3261, the Stop Online Piracy Act (SOPA) as well as S.968, the … More An Open Letter to US Congress from Andrew Lee, CEO, ESET North America

Check your DNS settings if you want to surf the web after 8th March

After a cybercriminal botnet was taken down by FBI, temporary DNSs set up to replace infected DNSs will be deactivated after 8th March.  On Wednesday, the German Federal Office for Information Security (BSI) advised users to recheck DNS server settings on their computers. This recommendation is related to the successful botnet takedown – dubbed ‘Operation … More Check your DNS settings if you want to surf the web after 8th March