Originally posted on F-Secure

 

  Related Posts

It’s not a huge surprise that we are seeing some malware spam runs where the malicious attachment attempts to portray itself as a Christmas Greeting of some sort. Here’s an example from today (md5: C670165AE6DFA8318F0EA795B1D3AD55). This one is actually a Zapchast (IRC bot variant). The “Christmas Card” requires it’s... 

There’s a new Facebook worm out there. However, it doesn’t seem to be doing anything else than posting a message to people’s Facebook walls. The message that the worm posts is ” try not to laugh xD http://www.fbhole. com/omg/allow.php?s=a&r=[ random number ] ” If you follow the link, you end up on a page that... 

A hack attack that targeted Google in December also hit 33 other companies, including financial institutions and defense contractors, and was aimed at stealing source code from the companies, say security researchers at iDefense. The hackers used a zero-day vulnerability in Adobe Reader to deliver malware to the companies and were in many cases successful... 

The lab has a survey request. As Windows 7 gains market share, code signing is becoming more important for software developers. A byproduct of more clean code being signed is that malware authors now have greater incentives to get their stuff signed in order to prevent it from being easily distinguished from legitimate software. With this in mind,... 

One of the most important worm outbreaks in history happened ten years ago to the day. Loveletter (aka ILOVEYOU or Lovebug) spread around the world in matter of minutes. When you got infected, the worm would send this e-mail from your system — posing as you — to all of your contacts:  Read More →

The 2010 FIFA World Cup starts today in South Africa. Four years ago, in 2006, we were on the lookout for football themed malware . Here’s one example of a football themed e-mail worm . Today, in 2010, we’re more likely to see Search Engine Optimization (SEO) attacks as folks search for news and information on the matches and players.... 

We’ve received a sample of a malicious iPhone worm with botnet functionality. Like the Ikee worm , it only affects Jailbroken iPhones which have SSH installed and have not changed the default password. This one connects to a web-based command & control center running at 92.61.38.16 in Lithuania. The worm is not widespread, but it is... 

An Australian youth who created a worm that attacked iPhone users has been hired by a company that creates applications for the iPhone. At least one security professional expressed displeasure that the malware author has been rewarded for his hack attack. Ashley Towns, a 21-year-old student who goes by the names “Ikee” and “Ikex,”... 

Mozilla recently discovered a security escalation vulnerability in the 3.0.1 version of the popular CoolPreviews add-on. The vulnerability can be exploited with a specially crafted link, which forces the add-on to execute remote JavaScript code if the user hovers the cursor over the link. More information is available at the Mozilla Add-ons blog .... 

Looking at a random new incoming malware sample in our sample automation systems. Notice the Mutex names it uses: Hey STFU yourself, why don’t you? P.S. We detect the sample as Email-Worm:MSIL/Agent.MXK On 12/01/10 At 01:48 PM  Read More →

  Related Tweets from Twitter

  Related News from Digg