Anti-Malware
Main
Security
Anti-MalwareMalware
MSNBC Security
Security Fix
Security World News
Random Feeds
Archives
| Feb 2012 | Jan 2012 | Dec 2011 | Nov 2011 | Oct 2011 | Sep 2011 | Aug 2011 | Jul 2011 | Jun 2011 | May 2011 | Apr 2011 | Mar 2011 | Feb 2011 | Jan 2011 | Dec 2010 | Nov 2010 | Oct 2010 | Sep 2010 | Aug 2010 | Jul 2010 | Jun 2010 | May 2010 | Apr 2010 | Mar 2010 | Feb 2010 | Jan 2010 | Dec 2009 | Nov 2009 | Oct 2009 | Sep 2009 | Aug 2009 | Jul 2009 | Jun 2009 | May 2009 | Apr 2009 | Mar 2009 |Thu, 25 Feb 10
New Adobe Download Manager Bug
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/UwUxbr8v0Js/
Within days of Adobe’s release of out-of-band security updates for both Acrobat and Reader, word now comes from security researcher Aviv Raff, of another new vulnerability in an Adobe product.The flaw was found in Adobe Download Manager (DLM), an application Adobe uses to deliver common applications (e.g., Flash and Reader) to users’ systems. Normally, it [...]
Thu, 25 Feb 10
Phishers Hit the Bank of Nevada
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/Ycpa7dhxhY4/
TrendLabs Web content security analysts recently received spammed messages (see Figure 1) purporting to come from the Bank of Nevada. At first, the attack seems just like any other common phishing attack. However, users who are tricked into clicking the URL embedded in the spammed messages will be redirected to a fake Bank of Nevada [...]
Thu, 25 Feb 10
A New Twitter Worm Is Making the Rounds
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/Cfz7wKOc_ug/
A new Twitter worm is making the rounds. If you receive a direct message from a “friend” that contains the following message:“This you????”It is likely malicious. Clicking the link, http://twitter.login.{BLOCKED}home.org/login/, will redirect you to a sub page of the said domain. You will then be prompted to log in to your Twitter account.Take a look [...]
Wed, 24 Feb 10
Hijacked searches redirects to "essearch.net" on search engines
http://www.amigura.co.uk/
Redirecting to "essearch.net" on search engines. How to fix try this....
Tue, 23 Feb 10
Phishers Target “Bloggers”
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/eu937w2GAVw/
Trend Micro’s Web Reputation Services (WRS) Operations Team recently received a phishing email claiming to be from Blogger (see Figure 1), a free blog publishing tool from Google.The spammed message instructed users to update their Blogger accounts by clicking the embedded link, which leads them to a fake login page. At first glance, the site’s [...]
Tue, 23 Feb 10
FAKEAV Cashes in on Austin, Texas Plane Crash
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/1yTROmzWeVQ/
News of another plane crash shook Americans on Thursday morning. Reportedly, a begrudged pilot, furious with the Internal Revenue Service (IRS), intentionally crashed a small plane on the building that housed the agency’s office in Austin, Texas. Although the said incident was tagged “an isolated event” and not an act of terrorism, cybercriminals launched their [...]
Tue, 23 Feb 10
Pump-and-Dump Spam Makes a Comeback on Skype
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/GO4NKlSxofQ/
Trend Micro security experts have not seen pump-and-dump spam campaigns in a fairly long time. In fact, some of the most recent attacks of this kind were last seen last year:Pump-and-Dump Spammers Take on Amazon“Storm Pump and Dump”: The MusicalTaking Stock of SpamIn a pump-and-dump attack, spammers raise the stock prices of companies they own [...]
Mon, 22 Feb 10
Adobe Releases Out-of-Band Patch for Adobe Reader and Acrobat
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/9K2x3PoI-EY/
Since the beginning of the year, Adobe and Microsoft have been under a bad light since most of the most recent attacks notably exploited the two companies’ software vulnerabilities. Adobe Reader and Acrobat, in particular, are currently cybercriminals’ favorite targets. When news that Adobe would be releasing an out-of-band security update to prevent an exploitable [...]
Wed, 17 Feb 10
Keeping an Eye on the EYEBOT and a Possible Bot War
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/sZ8Sx-QFi14/
There is a new bot in town and it seems that it has set out to rival the notorious ZBOT botnet. Trend Micro threat researchers recently came across a new spyware detected as TSPY_EYEBOT.A. Certain EYEBOT behaviors cause us to believe that this could lead to a new bot war similar to the worm wars we saw [...]
Mon, 15 Feb 10
ZBOT Variant Spoofs the NIC to Spam Other Government Agencies
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/hqMvBzJuf3o/
Spammers are becoming bolder, targeting even government agencies such as the National Intelligence Council (NIC) to further their malicious causes.Trend Micro fraud analysts were recently alerted to the discovery of spammed messages that purported to come from the NIC—the Intelligence Community (IC)’s center for midterm and long-term strategic thinking. The NIC provides intelligence reports to [...]
Sat, 13 Feb 10
Searches for Super Bowl News and Bill Cosby’s Supposed Death Lead to FAKEAV
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/Fmfqd57w7EM/
It is that time of the year once again for football enthusiasts and sports fanatics alike with the latest season of Super Bowl. The Super Bowl is one of the U.S. television broadcasting industry’s top-rating shows, drawing thousands of live viewers each game. This year, according to Nielsen, 106.5 million viewers reportedly watched the games, [...]
Thu, 11 Feb 10
New ZBOT/Zeus Binary Comes with a Hidden Message
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/sEnbB6mMDvg/
Trend Micro advanced threat researchers recently came across a new ZBOT/Zeus binary file detected as TROJ_ZBOT.BTM.ZBOT/Zeus variants are well-known for stealing banking information from its victims via various social-engineering tactics (e.g., spammed messages, malicious links sent to social-networking site members in the guise of messages, and compromising legitimate sites), as evidenced by the following documented [...]
Wed, 10 Feb 10
February Patch Tuesday—13 Security Bulletins for 26 Vulnerabilities Plus a FAKEAV
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/wuk7MWSI28s/
As previously announced in the Microsoft Security Bulletin Advance Notification released last week, this month’s patch cycle includes 13 bulletins intended to patch 26 vulnerabilities in several versions of Windows OS and Office. The record release is a far cry from last month’s lone patch.The long list includes five bulletins rated “critical,” which specifically patch [...]
Tue, 9 Feb 10
Phishing Pages Pose as Secure Login Pages
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/GLNKKrj8M5c/
TrendLabs recently spotted a new phishing site spoofing CenturyLink’s secure login page from one of its anti-phishing resources.CenturyLink, created by the merger of CenturyTel and Embarq on July 1, 2009, is a leading provider of high-quality voice, broadband, and video services through its advanced communication networks to consumers and businesses in 33 states in the [...]
Tue, 9 Feb 10
Caisse d’Epargne Customers, Beware!
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/Qjp5kiFZfIg/
It seems that cybercriminals will really stop at nothing to further their malicious activities. Trend Micro fraud analysts received yet another spammed message obviously designed to catch unwitting Caisse d’Epargne, a French semicooperative bank, customers into their phishing trap.Founded in 1818, with around 4,700 branches in France, Caisse d’Epargne is active in both the retail [...]
Fri, 5 Feb 10
The PUSHDO Puzzle—DDoS or Not DDoS?
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/obCOi0S4d1o/
The PUSHDO botnet has been in the news lately as the culprit in a distributed denial-of-service (DDoS) attack against a variety of well-known websites. Some publications even documented this recent attack extensively. After spending some months last year studying and monitoring the PUSHDO/CUTWAIL botnet and after checking the latest samples, we can affirm that this [...]
Thu, 4 Feb 10
Spammers Fake Responses from Google Job Applications
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/-nuEenD3NsU/
A new spam campaign gives the phrase “too good to be true” a whole new spin: spammed messages purporting to come from Google in response to job applications. While most spammed messages take advantage of a specific special occasion, holiday, or even a currently newsworthy item, spammers have hit a new low with their latest [...]
Wed, 3 Feb 10
On the Trustworthiness of the AV Industry and AV Tests
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/kdB3NQPRbl8/
Today, I was scanning through various industry blogs when I stumbled upon an entry from a certain competitor. What was interesting was that under the veil of improving testing quality, the blog openly admitted that the organization in question had been trying to play tricks on competing organizations just to position itself more favorably among [...]
Tue, 2 Feb 10
Early Hearts’ Day Presents from Spammers
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/S0wTgY1kt3c/
February has already begun, which means Valentine’s Day is close at hand. As usual, spammers will definitely hype up their malicious activities. It is only the first day of the so-called “love month” but we have already seen at least two spam samples leveraging one of the most-celebrated special occasions when people flock to websites [...]
Tue, 2 Feb 10
Much Ado About FAKEAV
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/nXks-E6NDv8/
The Internet has grown to become a massive venue for information exchange that everything a user encounters on the Web may potentially be treacherous, including supposed antivirus software. Trend Micro Threat Encyclopedia has, so far, over 2,000 entries related to FAKEAV.Many naive users still fall for the age-old ruse that rogue antivirus peddlers use—scareware tactics—to [...]