The top word category used to evade traditional IT security defenses in email-based attacks relates to express shipping, according to Fire Eye.Urgent terms such as "notification" and "alert" are included in about 10 percent of attacks.Victims were also given the option to have their names and conversations removed for .
The first PSA was posted in December 2010 and the most recent was posted in February 2012. Dark Reading posted the following article on September 18, 2012: New Domain Generation Algorithm-Based Malware Claims At Least 250,000 Victims A new iteration of TDSS/TDL4 malware has infected at least 250,000 victims, including 46 companies in the Fortune 500, researchers said Monday.
The top three hosting countries for the C&C servers are Russia (26 hosts), Romania (15 hosts) and the Netherlands (12 hosts).
"By adding elusive DGA C&C capabilities to malware that already evades detection and circumvents best practices in remediation by infecting master boot records, TDL4 is becoming increasingly problematic," said Manos Antonakakis, director of academic sciences for Damballa.
The subjects seem to have accurate information on the victims, including social security numbers, dates of birth, addresses, employer information, bank account numbers, names and telephone numbers of relatives and friends.
The subjects refuse to provide any details of the alleged payday loans and become abusive when questioned.