Anti-Malware
Main
Security
Anti-MalwareMalware
MSNBC Security
Security Fix
Security World News
Random Feeds
Archives
| Feb 2012 | Jan 2012 | Dec 2011 | Nov 2011 | Oct 2011 | Sep 2011 | Aug 2011 | Jul 2011 | Jun 2011 | May 2011 | Apr 2011 | Mar 2011 | Feb 2011 | Jan 2011 | Dec 2010 | Nov 2010 | Oct 2010 | Sep 2010 | Aug 2010 | Jul 2010 | Jun 2010 | May 2010 | Apr 2010 | Mar 2010 | Feb 2010 | Jan 2010 | Dec 2009 | Nov 2009 | Oct 2009 | Sep 2009 | Aug 2009 | Jul 2009 | Jun 2009 | May 2009 | Apr 2009 | Mar 2009 |Tue, 29 Jun 10
Malware Sales Through Social Networks
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/bDrFnBNm92o/
Social media has affected business organizations in many different ways through the years and these effects caused the development of a rather complicated relationship between the two. Social media has proven to be an effective marketing tool for businesses. Data collected last year from Fortune’s Global 100 revealed that more than 50 percent of the [...]
Tue, 29 Jun 10
Fake News of Eminem’s Death Leads to Malware
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/4Ar1h7fOO50/
We recently saw some articles on the Web saying that Slim Shady aka Eminem died in a car crash. Today, we received a spammed message that still claims the rumor is true. The email pretends to be from CBS News informing the recipient of the news about Eminem’s alleged car crash. It also asks if [...]
Fri, 25 Jun 10
What the New AMTSO Guidelines Mean for Users
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/PP8-j8OB9Kw/
Earlier this month, the Anti-Malware Testing Standards Organization (AMTSO) published new guidelines on the delicate topic of testing anti-malware products. Since then, many experts in the anti-malware industry have been commenting on the said guidelines. Many of these comments (including some from myself), have been summed up by tech blogger Kevin Townsend here. After reading [...]
Fri, 25 Jun 10
For Sale: Fake POS Devices
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/dCmkQnbeCA8/
Nowadays, hardware have become so cheap that cybercriminals can easily reproduce fake point-of-sale (POS) devices that can be used to skim data from credit and debit cards. In an underground forum, a certain “Nikkon” has posted a fake POS device with flash memory for sale. The device is notably identical to a normal-looking POS terminal. [...]
Tue, 22 Jun 10
Spammers Target Facebook and Twitter at Once
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/lh8ycvrv4Xw/
Due to their ever-growing popularity, social networks have been a continuous target of cybercriminals to proliferate their malicious schemes. TrendLabsSM received samples of another Facebook spam, this time also taking advantage of the popular micro-blogging site, Twitter. The mail, which poses as a Facebook notification message, uses adult-themed strings to lure users into opening the [...]
Sat, 19 Jun 10
Trend Micro Discovers Wing FTP Server PORT Command DoS Bug
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/n56oBsKf5Zk/
Users of Wing FTP Server versions v3.1.2 or earlier are strongly advised to update their software. In recent investigations, TrendLabs’ vulnerability research group found a vulnerability in the said versions that can be used to crash users’ FTP servers. The bug is a denial-of-service (DoS) vulnerability, which can be exploited by using an invalid parameter [...]
Sat, 19 Jun 10
How Many Spam Can a Spam Bot Spam?
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/2ZR0t00vzmM/
Mega-D is one of the most prolific spam botnets accounting for around 7 percent of the spam traffic worldwide. It once accounted for as much as 50 percent of the world’s spam volume but has quieted down since the high-profile takedown of the McColo hosting service, and the 2009 takedown of its command-and-control (C&C) servers. [...]
Wed, 16 Jun 10
Microsoft Help Center Zero-Day Exploits Loose
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/hmWX86j64Kc/
Heads-up for users still running Windows XP: The unpatched Help Center flaw revealed last week is now out in the wild and being used to launch malware attacks against target users.This new zero-day exploit takes advantage of the vulnerability that exists in the Microsoft Windows Help Center, a default Microsoft application that allows users [...]
Wed, 16 Jun 10
Passwords Matter—The Hidden Risks “Minor” Info Stealers Pose
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/LqIOmSLRiNs/
Last week, we had two major mass compromises. The first one hit more than 100,000 websites, including major news sites like the Wall Street Journal and the Jerusalem Post. The second campaign was much smaller, hitting only around 1,000 pages, and also lacked similarly high-profile victims although the casino firm Ameristar was on the victim [...]
Sat, 12 Jun 10
Spoofed Trend Micro Alert Leads to Canadian Pharma Site
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/r6eaYjLrMtQ/
With the underground economy still thriving, cybercriminals will surely use any method, such as Canadian Pharma spam runs, to facilitate in their information theft operations.Canadian Pharmacy sites are known to be used by scammers to sell a wide range of fake medications, usually for impotence and other serious medical conditions, at a much lower price [...]
Fri, 11 Jun 10
Bye, Bye Tequila Botnet
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/lTMGTV2aEFg/
Last week, we talked about the Tequila botnet that was targeting Mexican users. Since our last post, there has been one big development—the botnet appears to have been taken down by the owners themselves.On Thursday (June 3, 2010), the botnet’s controllers sent out new instructions to all of the active bots. One of the effects [...]
Sun, 6 Jun 10
Zero-Day Flash/Acrobat Exploit Seen In The Wild
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/Q9fX9yDYTLE/
On Friday, Adobe released a security advisory announcing a zero-day exploit found in specific Adobe Flash Player versions. Tagged as critical, the vulnerability (CVE-2010-1297) causes the application to crash. Potentially, the underlying vulnerability could also be used to run arbitrary code, such as downloading/dropping malicious files onto the affected system.Currently, all released 10.0.x and 9.0.x [...]
Sun, 6 Jun 10
Infected S8500 Wave Phones Make it to Germany
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/bW8F6iZcm94/
An addition to the roster of digital devices that have been shipped with malware, Samsung, too, seems to have accidentally distributed malware along with the new Bada-powered Samsung S8500 Wave smartphone.It has been reported that the 1GB microSD cards included with the mobile phone units shipped to Germany contain preinstalled Windows-based malware. It attempts [...]
Sat, 5 Jun 10
FIFA and Gaza Attack Tweets Dump Backdoors
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/TCiIRwlpYr8/
What do the FIFA World Cup and Gaza attack have in common? They are both currently being used for social engineering by a couple of malware campaigns seen on Twitter. TrendLabsSMSenior Threat Researcher, Ivan Macalintal, spotted several malicious programs being distributed via the popular microblogging site. These malware campaigns take advantage of these noteworthy events [...]
Sat, 5 Jun 10
Mac Sniffer Monitors IM Chats and RTMP Data Packets
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/UKb_Y-giLl8/
TrendLabsSM engineers Alvin Bacani and Jayson Pryde recently analyzed a new spyware (detected by Trend Micro as OSX_OPINIONSPY.A) that came bundled with screensavers, according to Intego, in sites that host free applications and software updates like MacUpdate, Softpedia, and VersionTracker.Interestingly, the same spyware was also found in the Apple Downloads site. Users browsing the legitimate [...]
Tue, 1 Jun 10
Another Vulnerability Discovered in Ichitaro
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/bTIHobUIJNk/
A new exploit has been found in the Japanese word processor Ichitaro. JP-RTL engineers have received a sample Ichitaro document, which is capable of exploiting the previously unknown vulnerability. If exploited, arbitrary code could be run on users’ systems.The file that exploits this new vulnerability has been detected as TROJ_TARODROP.XZ. This malicious Ichitaro document actually [...]
Tue, 1 Jun 10
Is It Time to Quit Facebook?
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/o1Ektz0Jm7w/
Today is the last day of May and, for some people, the last day their Facebook accounts are available online. Recent changes to Facebook’s privacy settings are regarded as rather confusing and not readily apparent to users. Not even the latest update that Facebook made last May 26, which attempted to address its long-running issue [...]
Tue, 1 Jun 10
SASFIS Malware Uses a New Trick
http://feeds.trendmicro.com/~r/Anti-MalwareBlog/~3/yrgExQn7BZk/
Early this year, the SASFIS Trojan became notorious in relation to spoofed email messages supposedly from Facebook. SASFIS infections usually result in tons of other malware infections, as this particular family makes systems susceptible to botnet attacks, particularly from ZeuS and BREDOLAB, and is affiliated with various FAKEAV variants, usually those associated with pornographic sites.TrendLabsSM [...]