Russian Business Network – Serious Organized CyberCrime

20 09 2008

Neither you are not ISP CEO, CTO, Administrator, Technical, Criminal Law Enforcement, IPR Law Enforcement, Government Officials, Security Professional, Tutor nor a home Internet User, be aware of any Russian Business Network Activities over your network servers and / or PCs.

Russian Business Network in Wiki

Russian Business Network in Spamhaus

EVERYTHING YOU WANTED TO KNOW ABOUT THE RBN AND RELATED ENTERPRISES – AKA ; RUSSIAN BUSINESS NETWORK, RBNNETWORK, RBUSINESSNETWORK; THE INTERNET COMMUNITY’S FAVORITE – EXPLOITERS, PHISHERS, HACKS, SPAMMERS, COUNTERFEITS, PIRACY….

—————————————————————————————————————–

To cover traffic from the RBN’s fake anti-spyware tools (partially within Spamhaus XBL):
IP Range start IP range end AS # Name 64.28.176.0 64.28.191.255 AS27595 INTERCAGE 69.22.162.0 69.22.163.255 AS27595 INTERCAGE 69.22.168.0 69.22.175.255 AS27595 INTERCAGE 69.22.184.0 69.22.187.255 AS27595 INTERCAGE 69.31.64.0 69.31.79.255 AS27595 INTERCAGE 69.50.160.0 69.50.191.255 AS27595 INTERCAGE 85.255.113.0 85.255.117.255 AS27595 INTERCAGE 85.255.118.0 85.255.118.255 AS27595 INTERCAGE 216.255.176.0 216.255.191.255 AS27595 INTERCAGE

58.65.239.66 – RBN domain involved in the Bank of India hack. 58.65.234.17 and 58.65.234.18 – RBN domains for iFrame Cash (see Spamhaus Rosko) 58.65.232.0 – 58.65.239.255 = HOSTFRESH RBN alternative hosting (supposedly Hong Kong based, but Intercage / Estdomains etc. linkage)

200.115.160.0/20 AS26426 OPTYNEX (Central American-based Estdomains and Neo-Nazi linkage)

Thanks James McQuaid and latest updating here
Emerging Threats Russian Business Network (RBN) Snort Intrusion Detection Rules

—————————————————————————————————————–

Current Spamhaus Block List (SBL) Listings of Russian Business Network

89.187.49.18/32 bendery.md SBL67258 2008-08-22 00:53:54
58.65.238.59/32 hostfresh.com SBL61230 2007-12-01 01:54:46
91.196.232.0/22 RIPE SBL60122 2007-11-01 07:18:35
81.95.144.182/32 rbnnetwork.com SBL58402 2007-09-04 02:44:54
193.142.244.0/24 RIPE SBL57948 2007-08-18 22:24:43
195.238.242.0/24 RIPE SBL57947 2007-08-18 22:24:20
58.65.239.27/32 hostfresh.com SBL57576 2007-08-10 02:49:08
84.45.90.141/32 c4l.co.uk SBL55985 2007-06-26 06:29:48
81.95.156.0/22 RIPE SBL55398 2007-06-09 06:42:22
81.95.147.182/32 rbnnetwork.com SBL55191 2007-06-02 06:48:43
195.74.88.0/23 RIPE SBL53174 2007-04-04 13:50:04
195.114.16.0/23 RIPE SBL51155 2007-02-11 12:38:50
195.64.162.0/23 RIPE SBL51154 2007-02-11 12:30:54
194.146.204.0/22 RIPE SBL51152 2007-02-11 12:21:00
81.95.144.0/20 RIPE SBL43489 2006-06-16 23:15:32

——————————————————————————

Russian Business Network (RBN) partners HangUP Team and 76service showcase a subscription-based data mining service for stolen data gathered by malware known as the the Gozi trojan.


留言 : Leave a Comment »
標籤: , , , , , , , ,
分類 : Asia, 老千, Hong Kong, Network Security, News, Statistic and Landscape, USA, Worldwide


使用 WordPress.com 設計專業網站
立即開始使用