Malware
Main
Security
Anti-MalwareMalware
MSNBC Security
Security Fix
Security World News
Random Feeds
Archives
| Feb 2012 | Jan 2012 | Dec 2011 | Nov 2011 | Oct 2011 | Sep 2011 | Jul 2011 | Jun 2011 | May 2011 | Apr 2011 | Mar 2011 | Feb 2011 | Jan 2011 | Dec 2010 | Nov 2010 | Oct 2010 | Sep 2010 | Aug 2010 | Jul 2010 | Jun 2010 | May 2010 | Apr 2010 | Mar 2010 | Dec 2009 | Nov 2009 | Oct 2009 | Sep 2009 | Aug 2009 | Jul 2009 | Jun 2009 | May 2009 | Apr 2009 | Mar 2009 | Aug 2008 | Jul 2008 | Jun 2008 | May 2008 |Sat, 29 May 10
Remembering old times…
http://pandalabs.pandasecurity.com/remembering-old-times/
Gone are the days when malware creators mainly looked for fame and notoriety without causing much damage to the users’ computers. Nowadays it seems that obtaining financial gains at all costs is the only thing that really matters, going as unnoticed as possible to avoid users’ and antivirus companies’ awareness.I started to miss those samples [...]
Fri, 28 May 10
Undetectable bots at your fingertips
http://pandalabs.pandasecurity.com/undetectable-bots-at-your-fingertips/
We want to inform you of an Internet website which sells bots mainly designed for social networks.The following image is an example of the services offered in the website, like the creation of accounts in different web services, from social networks like Twitter or Friendster to sites such as MySpace or YouTube, and even mail [...]
Fri, 28 May 10
CARO workshop 2010, day 2 & how I found Hobbiton (updated)
http://pandalabs.pandasecurity.com/caro-workshop-2010-day-2/
Hi all, as I told you yesterday I’m at Helsinki attending now the CARO workshop. I have to tell you that this is one of the most useful conferences of the year in terms of the quality of the talks, at least form the AV industry point of view. Yesterday it was awesome, the one [...]
Wed, 26 May 10
Greetings from Helsinki
http://pandalabs.pandasecurity.com/greetings-from-helsinki/
After a week of holidays here in Helsinki, I started working again. During Monday and Tuesday I have attended the AMTSO meeting, where we’ve been discussing how we can improve the visibility that AMTSO actually has, so we can spread our message in a better way to the different media and users in general. Apart from [...]
Sat, 22 May 10
Fake Windows Security Center alert
http://pandalabs.pandasecurity.com/fake-windows-security-center-alert/
We’ve started receiving email messages passing itself off as a warning message from the Windows Security Center.The subject of the message is Windows Security Center Alert!The message contains a window informing you that your computer can be a victim of an infection and recommending you to scan your system. Additionally, it contains a link to [...]
Sat, 22 May 10
I’m a bit ByteDefender
http://pandalabs.pandasecurity.com/i%e2%80%99m-a-bit-bytedefender/
We want to warn you of a new rogueware that is being distributed. This is nothing new, as we see new samples of rogueware day in day out.The name of this rogueware is very similar to a legitimate antivirus program, so that it can be mistaken with a real antivirus solution. In this case, it [...]
Fri, 21 May 10
Twitter used to distribute malware
http://pandalabs.pandasecurity.com/twitter-used-to-distribute-malware/
A new malware has started to spread via the social network Twitter. The message that is being used is: haha this is the funniest video ive EVER SEEN! and contains a link to a video.Cybercrooks have managed so that this message obtains good positions in Twitter section known as “Trending topics”, which contains the most [...]
Fri, 21 May 10
Western Union entwined with cybercrime?
http://pandalabs.pandasecurity.com/western-union-entwined-with-cybercrime/
A few weeks ago I came across several email messages in Spanish purporting to have been sent by Western Union:As you can see, this is a typical message sent as spam that we have seen in many guises. It tries to pass itself off as some kind of official notification from well-known companies -anyone from [...]
Thu, 20 May 10
Lost, Ronnie James Dio, and so on and so forth, to distribute rogueware
http://pandalabs.pandasecurity.com/lost-ronnie-james-dio-and-so-on-and-so-forth-to-distribute-rogueware/
It seems that false antivirus have found in the BlackHat SEO attacks a usual means to be distributed. That’s the case of the rogueware MySecurityEngine which is using a varied medley of subjects, some of them arousing people’s interest, like the successful series Lost, whose final episode will be on 23rd of this month, or [...]
Tue, 18 May 10
Phishing Alert of Navy Federal
http://pandalabs.pandasecurity.com/phishing-alert-of-navy-federal/
We want to warn you of a phishing message we’ve detected that is using the Navy Federal company to obtain users’ credentials to this service and other confidential information.You receive an email message that seems to come from this company with a link. If you click the link, you’ll be redirected to a website similar [...]
Sat, 15 May 10
I’m a crack!
http://pandalabs.pandasecurity.com/im-a-crack/
Internet offers us many possibilities, some of them are tempting, like downloading all types of programs without having to pay for it.I’m not going to comment whether this is good or bad, I only want to warn you of the risks you may run, as the websites that offer this type of “products” are not [...]
Fri, 14 May 10
Making new friends…
http://pandalabs.pandasecurity.com/making-new-friends%e2%80%a6/
I’m very happy because I’ve received a greeting card via email from a new friend, thought it’s not my birthday, my saint’s day or anything like that Look what a nice card I’ve received:Besides, it has been sent from 123greetings, which is a legal website to download and send cards, so it must be [...]
Thu, 13 May 10
An explosive cocktail: MySecuWaloader
http://pandalabs.pandasecurity.com/an-explosive-cocktail-mysecuwaloader/
In this post we are going to prepare a cocktail using 4 ingredients.We’ve called it MySecuWaloader. Now you’ll find out why.First of all, put into the cocktail shaker a BlackHat SEO attack together with a sample of rogueware and see the result:If you search for any the following group of keywords related to the recent [...]
Wed, 12 May 10
Counter eCrime Operations Summit IV
http://pandalabs.pandasecurity.com/counter-ecrime-operations-summit-iv/
Greetings from Sao Paulo, where I have just finally arrived after avoid that lovely ashes from our dear volcano in Iceland During the next 3 days it is taking place here the Counter eCrime Operations Summit IV:Tomorrow I will be talking about the Mariposa case, talking about some of the stuff that has not [...]
Tue, 11 May 10
Twitter hacked by “Turkish Hacker”
http://pandalabs.pandasecurity.com/twitter-hacked-by-turkish-hacker/
This morning I logged into my twitter account and noticed something strange. My Twitter follower count moved from over 5500 followers to zero instantaneously between reloads! Apparently, a Turkish hacker was able to exploit a bug in the Twitter website which allowed the hacker to force other Twitter accounts to automatically follow him and suddenly [...]
Sat, 8 May 10
PHP-Nuke Hacked with Injected iframe
http://pandalabs.pandasecurity.com/php-nuke-hacked-with-injected-iframe/
PHP-Nuke, a popular web based portal and content management solution written in PHP has been criticized in the past for the slew of security vulnerabilities affecting its platform. Today, the main PHP-Nuke website has been, well, nuked. A malicious iframe has been injected into the main site (still active) and like the previous attack on [...]
Wed, 5 May 10
Spammers, Blogs & New Techniques II
http://pandalabs.pandasecurity.com/spammers-blogs-new-techniques-ii/
Last week we published a post about the huge amount of spam we receive in the blog and how the antispam filter we’ve installed is helping us to identify which comments are real and which are not.Today we’re going to show you other type of spam comments we’ve received in the last hours. If the [...]
Tue, 4 May 10
U.S. Treasury Website Hacked Using Exploit Kit
http://pandalabs.pandasecurity.com/usa-treasury-website-hacked-using-exploit-kit/
Updated @ 8PM PST 5/3/2010 — Added Information about Rogueware and two additional government sites affected Time and time again we talk about how amateur and professional hackers alike are able to use automated toolkits which can identify security vulnerabilities on a computer and exploit them with little or no technical skill necessary for [...]
Tue, 4 May 10
News on Mariposa
http://pandalabs.pandasecurity.com/news-on-mariposa/
Today, Brian Krebs has published the story of 2 of the guys behind Mariposa, and how they tried to be hired by… me! Yes, that is true They really got pissed off, or at least it seems like that, as some hours later “someone” tried to pose as me in Twitter. My Twitter name [...]
Tue, 4 May 10
Don’t play with Natural Disasters!!
http://pandalabs.pandasecurity.com/dont-play-with-natural-disasters/
We want to warn you of an email message in Spanish we’ve received with the subject ( Urgente ) Posible Terremoto y Tsunami con un 89 % de efectividad and that is of course false.The message consists of different images and informs users about an alert of earthquake and tsunami in Chile.Besides, it passes itself [...]
Tue, 4 May 10
Bad “Visual” PDF
http://pandalabs.pandasecurity.com/bad-%e2%80%9cvisual%e2%80%9d-pdf/
Last week a PDF document which downloaded malware fell into my hands. This is nothing new for a post, as the distribution of malware using PDF files has lately become a common practice. But there are two things that surprised me: on the one hand, the file didn’t use javascript, this time the malicious user [...]
Sat, 1 May 10
Smartphones: target for hackers?
http://pandalabs.pandasecurity.com/smartphones-target-for-hackers/
We have previously mentioned in reports that the emergence of malware for any platform depends on its profitability. Consequently, malware is normally created to target the market-leading platforms, those with a high number of users, in order to justify the time invested by cyber-crooks in R+D worthwhile.It seemed at one point as though Symbian was [...]