|
Home > News > Tags > malware
|
|
30
More: next 50 >>
It’s not uncommon for cybercriminals to sign their creations with digital certificates, because the technique increases the malware’s chances to evade being detected by antivirus solutions. Symantec experts have spotted another interesting example.
The malware, detected by Symantec as Backdoor.Trojan, is... |
15 June 2013
15:51 GMT |
 |
|
It’s well known that it’s not enough for cybercriminals to get a hold of personal and financial information to make a profit. They somehow have to monetize their proceeds, and the safest way for them to do that is by recruiting money mules. Money mules are willing or unwitting individuals who withdraw t... |
14 June 2013
02:36 GMT |
|
|
Microsoft experts warn that more and more pieces of malware have started relying on social media. One perfect example is the Trojan dubbed Kilim, or Trojan:AutoIt/Kilim.A.
The Trojan starts infecting computers when users install what they believe to be legitimate software. Once the malware is downloaded and executed... |
13 June 2013
14:01 GMT |
|
|
Security firm Websense has published an interesting report on the cyber threat landscape in Canada. The study, Canadian Cybercrime Report Card, shows that when it comes to malware, Canada has become increasingly preferred by cybercriminals.
“Malware authors don't do things that are predictable. They have ... |
13 June 2013
13:11 GMT |
|
|
Panda Cloud Antivirus 2.2 is now up for grabs for Windows users, bringing not only performance improvements, but also a set of new features.
The release notes confirm that build 2.2 comes with the so-called Data Shield option that prevents malware from accessing personal data, as well as with new parental control op... |
13 June 2013
09:46 GMT |
|
|
The Chinese bootkit dubbed Guntior has been around since at least 2010. Sophos experts have analyzed a recent version of the threat’s dropper and found some interesting things.
According to Sophos’ Ahmed Zaki, the dropper has two execution branches: a dynamic link library (DLL) and an executable.
The in... |
12 June 2013
16:41 GMT |
|
|
Last month, we became aware of a local privilege escalation vulnerability in the Linux kernel (CVE-2013-2094). According to experts, the exploit has already been modified to work on the Android operating system.
Symantec reports that it’s likely for this exploit to be incorporated into Android malware in the u... |
12 June 2013
07:53 GMT |
|
|
The cybercriminals behind the notorious ZeuS malware continue to improve their creation. Earlier this year, experts reported an increase in the number of detections and they’ve even observed it spreading via Facebook.
However, Trend Micro experts say they’ve identified yet another spreading mechanism imp... |
11 June 2013
09:37 GMT |
|
|
The Internet is not the only way in which the networks of an organization can become infected with malware. Malware can end up on a computer even if the device is cut off from the Internet, and the easiest way to achieve this is by using a USB flash drive.
That’s how the notorious Stuxnet malware made its way ... |
11 June 2013
08:33 GMT |
|
|
Back in April, security researchers from Lookout identified a piece of malware, dubbed BadNews, in 32 applications hosted on Google Play. At the time, Google rushed to remove the apps downloaded by millions of users.
However, several weeks later, Google has changed its mind, saying that BadNews is not as malicious a... |
11 June 2013
06:00 GMT |
|
|
Update. Washington Free Beacon representatives have told Softpedia that the issue has been addressed. The site is now safe to visit. Find the initial story below. These days, most media organizations are in a rush to publish stories on the recent NSA data leak. As expected with a story of such importance, cybercrimi... |
11 June 2013
03:22 GMT |
|
|
Popular banking Trojans usually come with a mobile component that allows cybercriminals to bypass two factor authentication systems and gain access to their victims’ bank accounts.
Mobile components of ZeuS (ZitMo), SpyEye (SPitMo), Citadel (CitMo) and Carberp have been around for quite some time. Now, expert... |
10 June 2013
11:10 GMT |
|
|
Malware developers employ all sorts of techniques to make sure their creations cannot be analyzed by security researchers. One interesting way of preventing forensic analysis is by (ab)using of the Encrypting File System (EFS).
According to Symantec, the malware known as Backdoor.Tranwos uses the EFS to prevent rese... |
8 June 2013
05:26 GMT |
|
|
Last year, security researchers uncovered a new piece of malware mainly designed to target the systems of Russian Internet users. According to experts, the threat, dubbed Bicololo, has evolved. ThreatTrack Security identified a new version of the malware on a shady Russian Android app site. The malicious element was... |
7 June 2013
15:01 GMT |
|
|
There’s almost one month until the US celebrates its Independence Day, but cybercriminals have already started leveraging the big event in their schemes.
Dynamoo’s Blog has issued an alert regarding a spam campaign that’s designed to distribute malware with the aid of phony notifications entitled &... |
7 June 2013
10:46 GMT |
|
|
Experts have issued an alert to warn users about bogus “Parcel has been found” notifications apparently coming from US-based delivery company United Parcel Service, or UPS.
According to Hoax Slayer, the emails read something like this: “Dear Client, Due to the Christmas time postal service overload... |
7 June 2013
05:58 GMT |
|
|
Trend Micro has spotted a new spam campaign aimed at German users. The most interesting part about this campaign is the malware it’s designed to distribute.
According to researchers, recipients of the malicious emails are informed that they must immediately pay a debt. They’re instructed to open the atta... |
6 June 2013
13:01 GMT |
|
|
Clients of the University of Massachusetts Amherst (UMass Amherst) Center for Language, Speech and Hearing are being notified after a malicious program was identified on a workstation. The malware might have compromised protected health information.
According to the university, the infection was detected on April 5,... |
5 June 2013
16:21 GMT |
|
|
Microsoft’s Advanced Systems Format (ASF) – files with .asf, .wma and .wmv extensions – is often abused by cybercriminals to lure unsuspecting Internet users to malicious websites or get them to download malware.
That’s why VirusTotal has implemented a new feature that al... |
5 June 2013
08:57 GMT |
|
|
Security researchers from Malware Must Die have come across the source code for some interesting pieces of malware on a German torrent website. They’ve later identified the same data being served on a website hosted in Sweden, possibly by the same individual. “The malware source is a bit old, mostly are ... |
5 June 2013
08:41 GMT |
|
|
According to new research from security solutions provider Damballa, peer-to-peer (P2P) is increasingly used by threat operators and bot masters to obscure command and control (C&C) communications. To address such threats, the company has enhanced Damballa Failsafe to discover malicious P2P communications. The comp... |
5 June 2013
05:46 GMT |
|
|
Spam campaigns that rely on bogus MMS message notifications to distribute malware have been around for quite some time. Back in March, Abuse.ch identified fake Swisscom and T-Mobile emails targeting German and Swiss users.
Today, AVG Technologies experts have reported spotting a T-Mobile MMS spam campaign aimed at I... |
5 June 2013
04:55 GMT |
|
|
In late March, Cisco reported identifying significant activity related to spam email messages purporting to contain a “secured message.”
According to Conrad Longmore of Dynamoo’s Blog, the spam emails are still doing the rounds.
The latest version of the malicious emails bears the “Fiserv Se... |
4 June 2013
15:01 GMT |
|
|
What would you do if you received an email entitled “Check the attachment you have to react somehow to this picture”? What if I told you that the email reads something like this: “I got to show you this picture in attachment. I can’t tell who gave it to me sorry but this chick looks a lot lik... |
4 June 2013
10:34 GMT |
|
|
Microsoft has published an interesting report focusing on the number of malicious websites hosted in the European Union compared to the worldwide average.
As far as malware is concerned, on a global scale, Brazil, Venezuela and China have the largest number of servers hosting malware.
In the EU, the most malware d... |
4 June 2013
05:16 GMT |
|
|
Not long ago, Canadian mobile phone maker BlackBerry announced the upcoming availability of the BlackBerry Messenger service to more mobile platforms out there, including Android and iOS, but no official details on the release date have been provided as of now.
However, it appears that a fake website that allegedly... |
4 June 2013
04:54 GMT |
|
|
Rosewood Inn of the Anasazi in Santa Fe, New Mexico, has started notifying customers that their credit card details might have been compromised.
According to the security breach notice sent out to customers (via eSecurity Planet), cybercriminals planted malware on the hotel’s systems as early as June 18, 2012.... |
4 June 2013
03:48 GMT |
|
|
Security firm McAfee has released its threats reports for the first quarter of 2013. According to the study, in Q1, experts noticed a dramatic increase in spam and a spike in the instances of the social networking worm dubbed Koobface.
The company says the number of Koobface samples is three times larger compared to... |
3 June 2013
17:31 GMT |
|
|
Last week, security researchers from Zscaler noticed an increase in the number of compromised websites that distribute malware with the aid of the Red Kit exploit kit. The security firm reports that cybercriminals have utilized two mechanisms to infect websites such as whitesteeple[dot]com, oute66marathon[dot]com an... |
3 June 2013
04:30 GMT |
|
|
Earlier this week, a legitimate-looking order confirmation notification for a 55-inch Sony LED TV set, apparently coming from Amazon, landed in one of our inboxes. At the time, we didn’t make much of it because there weren’t any reports about a widespread spam campaign.
However, it turns out that the ema... |
1 June 2013
04:10 GMT |
|
|
With more and more rumors and announcements surfacing about the upcoming iOS 7, the topic has attracted the attention of cybercriminals. Websense researchers have spotted a new website that’s being prepared by cybercrooks to serve ransomware.
The website, called ios7news [dot] net, was registered around three ... |
1 June 2013
03:46 GMT |
|
|
Experts have found that several machines from the Department of Computer Science at the University of Illinois are being infected with malware-serving websites. Security researcher Conrad Longmore has identified several cs.illinois.edu domains hosted on IP addresses involved in malicious campaigns. The list of affe... |
30 May 2013
08:38 GMT |
|
|
Symantec has been actively monitoring banking Trojans all over the world and it has even published a report on the topic called “The World of Financial Trojans.” One interesting piece of malware is Castov. Castov, which is distributed with the aid of an exploit kit called Gongda, is designed to target So... |
29 May 2013
15:51 GMT |
|
|
Security researchers from Bitdefender have spotted a new variant of the Dorkbot worm. The malware is designed to spread from one computer to the other by abusing Facebook’s internal chat.
Once it infects a device, the malicious element is capable of monitoring the victim’s browsing activities, but it&rsq... |
14 May 2013
10:05 GMT |
|
|
Have you purchased anything from Amazon UK? If so, you better be on the lookout for malware-delivering emails that purport to represent order confirmations from Amazon.co.uk.
Sophos experts say that all the links from the notification point to the legitimate Amazon.co.uk website. However, the file that’s attac... |
14 May 2013
09:00 GMT |
|
|
Microsoft is set to release this month’s Patch Tuesday updates later today, but a new version of the Malicious Software Removal Tool is already up for grabs.
While no details are available right now since Microsoft is yet to publicly announce this new build, Malicious Software Removal Tool 4.20 most likely pac... |
14 May 2013
04:54 GMT |
|
|
Security experts continue to analyze pieces of malware from the Winnti family, which are mainly used by a Chinese cybercriminal group to target South East Asian organizations from the video gaming sector. Trend Micro researchers have uncovered a new backdoor that’s possibly used in targeted attacks.
The threa... |
10 May 2013
04:10 GMT |
|
|
There has been a lot of talk lately about the efficiency of antiviruses as endpoint protection. A recent Dark Reading article once again puts antiviruses under the microscope, comparing them to Google’s new reputation system.
In response to the article, Raimund Genes, CTO of Trend Micro, has published a short ... |
8 May 2013
15:31 GMT |
|
|
Experts have found that malware authors are turning more and more to AutoIt, a free BASIC-like scripting language, to develop their creations.
AutoIt is easy to learn, it’s scalable, and it can be used to run applications in stand-alone executable files. This makes it perfect for cybercriminals that don’... |
7 May 2013
16:01 GMT |
|
|
Several scam advisory websites and security firms are warning users about malware-carrying emails that purport to come from Citibank Paymentech. The emails, entitled “Merchant Statement,” read something like this: “Attached is your Citibank Paymentech electronic Merchant Billing Statement. If you ... |
7 May 2013
15:01 GMT |
|
|
Ransomware helps cybercriminals make millions of dollars each year. While the crooks can earn a lot of money from regular Internet users, companies can also be a lucrative target. A perfect example is a recent attack against FOX21, the reality television production arm of 20th Century Fox. Details are scarce, but ... |
7 May 2013
10:44 GMT |
|
|
Ubuntu Malware Removal Toolkit is a Linux distribution based on the Ubuntu distribution that can help Windows users salvage their OS. According to developers, the purpose of Ubuntu Malware Removal Toolkit distribution is to create a portable environment that will make it easier to remove malware from infected Window... |
7 May 2013
09:53 GMT |
|
|
Cybercriminals have compromised at least 10 websites, including 5 belonging to US media organizations. The hijacked sites are utilized to distribute the ZeroAccess Trojan and Fake AV malware.
The media sites impacted by this campaign are the ones of Real Clear Policy, Real Clear Science, The Christian Post, Federal ... |
7 May 2013
07:39 GMT |
|
|
Cybercriminals often disguise malware as updates for Flash Player. An interesting example has been analyzed recently by security experts from Zscaler.
The attack starts with a number of websites that redirect their visitors to click-videox.com. Once victims land on this site, they’re urged – in English o... |
7 May 2013
06:54 GMT |
|
|
The official website of the Board of Regents of the State of Louisiana (regents.la.gov) has been hacked and abused to distribute a variant of the notorious Sirefef malware.
Avast reports that the malware is hosted in the “wp-content” folder of the site and it’s served as an executable to anyone who... |
3 May 2013
10:36 GMT |
|
|
Trusteer experts have come across an interesting variant of the Java exploit kit called “g01pack.” g01pack is different from other exploit kits because it delivers its payload via a multistage attack.
“The first stage of the attack, the exploit shellcode, executes a second stage, in which a Java cl... |
3 May 2013
03:22 GMT |
|
|
Security firm Commtouch has released its Internet Threats Trend Report for the first quarter of 2013. The company reveals that, in the first three months of this year, a whopping 97.4 billion spam emails and 973 million malware emails were sent out each day. Spam levels increased by 98% and phishing by 74% compared... |
2 May 2013
18:11 GMT |
|
|
Many IT security professionals are often required to analyze pieces of malware and determine the full extent of the damage they can cause to their organization’s networks, systems and data. The big question is: should they build their own analysis platform or buy a commercial solution?
To help professionals in... |
2 May 2013
15:11 GMT |
|
|
Security researchers from Bitdefender Labs have uncovered some new variants of the notorious TDL malware, a threat that's designed to infect the master boot record of computers.
One difference between these and older TLD versions is the fact that the new samples use file names made up entirely of digits. Previo... |
1 May 2013
17:01 GMT |
|
|
AlienVault experts are currently analyzing an attack on the website of the US Department of Labor (dol.gov). According to the security firm, when users visit the Department of Labor website, a script is executed. This script is designed to probe the victim’s computer to see what versions of Flash, Java, ... |
1 May 2013
10:49 GMT |
|
More: next 50 >> |
|
|
Find us on Google+
