Anti-Malware
Main
Security
Anti-MalwareMalware
MSNBC Security
Security Fix
Security World News
Random Feeds
Archives
| Feb 2012 | Jan 2012 | Dec 2011 | Nov 2011 | Oct 2011 | Sep 2011 | Aug 2011 | Jul 2011 | Jun 2011 | May 2011 | Apr 2011 | Mar 2011 | Feb 2011 | Jan 2011 | Dec 2010 | Nov 2010 | Oct 2010 | Sep 2010 | Aug 2010 | Jul 2010 | Jun 2010 | May 2010 | Apr 2010 | Mar 2010 | Feb 2010 | Jan 2010 | Dec 2009 | Nov 2009 | Oct 2009 | Sep 2009 | Aug 2009 | Jul 2009 | Jun 2009 | May 2009 | Apr 2009 | Mar 2009 |Fri, 30 Apr 10
Spam Poses as a Twitter Email Notification
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/0LEr7mPzilM/
Beware, Twitter enthusiasts! Spam posing as Twitter email notifications are currently proliferating in the wild. The spam are of two types—the first type attempts to steal personal information or login credentials while the second attempts to infect systems with malware.A legitimate Twitter notification email looks like this:It usually begins with “Hi, *name of user*” and [...]
Thu, 29 Apr 10
PDF Exploit Becomes a Little More Sophisticated
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/GB7gr7kEuCQ/
.PDF files—or their inherent features—have been used by cybercriminals in some of the most noteworthy attacks we have encountered. Modified versions of this file type have been especially notorious these past few months since they are capable of attacking user systems by initially exploiting inherent vulnerabilities found in Adobe Reader and Acrobat. TrendLabsSM has documented [...]
Wed, 28 Apr 10
ZeuS/ZBOT Tries Out File Infection
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/LhIWN7wCOMI/
ZeuS/ZBOT is best known for its information-stealing routines via the use of configuration files downloaded from their home sites. They are created using toolkits that allow remote control of the malware. Getting them to infect target systems is the tricky part. Cybercriminals have thus tried utilizing drive-by downloads, spammed messages, worm propagation, and many more [...]
Wed, 28 Apr 10
Fake IT Email Notification Spreads Malicious PDF
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/1DqYuy0JO34/
TrendLabsSM received reports of a suspicious email claiming to be an IT notification. It informs users that their mailbox settings have been changed. This email has a .PDF attachment that supposedly contains instructions that the users need to read before updating their settings.This attack is similar to many we have seen previously purporting to come [...]
Wed, 21 Apr 10
PDF Launch Feature Abused to Carry ZeuS/ZBOT
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/byrEcT6OVXg/
The ZeuS/ZBOT malware continues to uphold its notorious reputation. As we have seen in the past, ZBOT variants steal account credentials when users visit various social networking, online shopping, and bank-related websites.Another social engineering tactic that has been employed by ZeuS/ZBOT perpetrators is the use of .PDF files. Specially crafted .PDF files have been used [...]
Tue, 20 Apr 10
Mac Malware Disguised as iPhoto Installer
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/aEFAjTNcW44/
Intego discovered a new OS X malware last week. Based on its report, however, this new malware is a variant of an early Mac OS X malware that was first seen in 2004. It was reported that cybercriminals have been using several different forums to distribute copies of this new variant.This OS X malware arrives [...]
Tue, 20 Apr 10
Doorway Pages and Other FAKEAV Stealth Tactics
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/OLwkcf88Zz4/
Cybercriminals employ different but complementary techniques when it comes to propagating FAKEAV. Ultimately, however, their goal is to entice users to click malicious links that led to the download of different FAKEAV variants.TrendLabsSM observed that cybercriminals typically employed blackhat engine optimizaton (SEO) to create poisoned pages that serve as doorways for FAKEAV distribution. These doorway pages, which primarily [...]
Wed, 14 Apr 10
Adobe and Microsoft Simultaneously Release Patches
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/VAQubIS7CMw/
Regular Release for Microsoft This AprilApril 13 is here and for Windows users, this means it is Patch Tuesday. According to the advance notification from Microsoft almost a week ago, the company will be releasing 11 bulletins to address 25 vulnerabilities, 11 of which have been dubbed “critical.” These vulnerabilities were found in Microsoft Office [...]
Wed, 14 Apr 10
“Copyright Violations” Used for a FAKEAV-Like Scam
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/WDFaCLXaZg4/
In recent years, the music and movie industries have become more aggressive in suing users accused of illegally sharing content. Large-scale mass lawsuits, previously used largely in Britain and Germany, have now made their way to the U.S. shores.Given a climate wherein some users are afraid of legal threats, it is no surprise that cybercriminals [...]
Tue, 13 Apr 10
Rogue Antivirus Leads to an Adult Site
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/k9u79giusdA/
Does this warning message look familiar?This new rogue antivirus is detected by Trend Micro as TROJ_FAKEAV.BUH. Ever since FAKEAV malware began making itself look as realistic as possible, its attempts have become increasingly more convincing and sophisticated as shown below.Along the way, it has added some new quirks like prompting an infection message every time [...]
Tue, 13 Apr 10
New Vulnerability Hits Popular Japanese Word Processor “Ichitaro”
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/KX7_1AIkCTM/
The most high-profile vulnerabilities tend to target either commonly used applications such as Adobe Acrobat and Flash Player or Windows itself, but in an attack which demonstrates that criminals are becoming ever more targeted, a vulnerability in Ichitaro, a popular Japanese language word processing application has been exploited.Like similar vulnerabilities in Microsoft applications, the vulnerability allows [...]
Mon, 12 Apr 10
WordPress Blogs Suffer Mass Compromise
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/UULoFjPgtu4/
Mass compromises have not been in the news of late, but a new wave has hit the headlines. According to news reports, users running the popular blogging platform WordPress have been hit with an attack that modifies a setting within WordPress that contains the URL of the blog.In compromised sites, this setting is changed to [...]
Wed, 7 Apr 10
Things You Need to Remember About DOWNAD/Conficker
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/HUCtSo0j9TU/
A year after the much-hyped April 1st D-day for DOWNAD/Conficker, the world can only hope that it has heard the last of the notorious network worm. As we have seen, DOWNAD variants have effectively infected millions of systems and paralyzed networks in just a matter of months. And while there seems to be very little [...]
Thu, 1 Apr 10
Spike in File Infectors Highlight Continuing Threat
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/qismMlCS4CM/
In the past week, TrendLabs noticed a significant growth in the number of file infectors in the wild, particularly in Latin America. A significant increase in PE_SALITY.BA cases was particularly spotted in the region. A rise in VIRUX variants, particularly PE_VIRUX.R, was also spotted at around the same time.File infectors are not a new threat [...]
Thu, 1 Apr 10
Web Browsers Get “Owned” in “2010 Pwn2Own”
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/A2zenDmN_is/
“2010 Pwn2Own” is an annual contest wherein contestants are invited to hack a variety of Web applications and platforms such as Web browsers and mobile phones for cash prizes and benefits. Successful hackers include Dutch hacker Peter Vreugdenhil for Internet Explorer (IE) 8, German hacker “Nils” for Firefox, and Charlie Miller for Safari.What About Security?As [...]