The Ripple Effect: Containing Cryptolocker

In the past, we have demonstrated use cases of massive data-driven algorithmic malware and botnet detections, given our unique visibility to the global DNS traffic. When dealing with cases of few infections and thus mostly low traffic volume (but not necessarily less impact!), making correlations and revealing patterns with little contextual information becomes both tricky and critical. Using the recent revival of the ransomware Cryptolocker, which victimized a few OpenDNS customers, we present a case study of a method that ...

FBI Ransomware Targeting OS X: Chrome No Longer Immune

At the Security Labs, we see no shortage of peculiar things day in and day out. Today, our winner for Most Peculiar of Tuesday is this IP address: 193.169.87.14. 

It is barely anything new:  the classic FBI ransomware that locks down browsers asks the victim to pay a fine by one of the locked windows as shown below:

A big spread of this campaign targeting OS X Safari was reported in mid-July. OS X Chrome was NOT vulnerable back then. Well—it is now. An ...

Real Time Monitoring of Kelihos Fast Flux Botnet: A Case Study for APWG eCrime 2013

Last week’s APWG eCrime 2013 conference marked the 10th anniversary of the the Anti Phishing Working Group. What better a place to host this special event than our great city of San Francisco? The conference drew crowds from academia, industry, and the governing bodies of the Internet; there were presentations from RSA, PayPal, Microsoft, UC Berkeley, CMU, IID, StubHub, ICANN, and the .org, .pl, .jp, .co and .uk registries, among others. OpenDNS was at the scene with two presentations: our CTO, ...

Inside the Random Forest: A Journey to Wildlife Classification.

In my last blog post, we exposed a method to expand and draw generic graphs in three dimensions. As many people know, a graph can be used to represent a widerange of problems or data structures. This time in this article, we will focus on the visualization of a specific case: a Random Forest.

What are Random Forests?

Technically speaking, “Random Forests” aren’t exactly a data structure but a machine learning framework to build a list of decision trees. So before we canactually answer ...