News items from Virus Resources on TechRepublicFake Pharma Ads Flood Inboxes AgainTrendLabsSM engineers noted an increase in the number of fake pharma ads spam in the past few days. As in previous cases, this slew of spam features professional-looking images to persuade users to purchase the “medicines” scammers are peddling online.
Samples of these messages look like a newsletter and feature a clickable image that directs users to a malicious pharmaceutical site. Although [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Microsoft Released Early Notice for May Patch Tuesday
Coming May 11, Tuesday, Microsoft will be releasing its monthly patch updates, and last Thursday, the company released an advance notification in its Microsoft TechNet site for the updates. Note that these advanced notifications aim to allow Microsoft users to make deployment plans ahead of time. It commonly contains a summary of the security updates [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Fake HiJackThis Toolbar Serves MalwareHijackThis is a free tool Trend Micro offers as a courtesy to end users—customers and non-customers alike. It helps users evaluate their machines for possible infections by generating in-depth log reports for Windows operated systems. It also incorporates several useful tools that can help manually remove malware from infected computers.
Over time, HijackThis continuously became more [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
2010 FIFA World Cup Spam Strikes AgainWith the 2010 FIFA World Cup less than two months away, cybercriminals (as expected) are banking on this prestigious international football event to trick users. TrendLabsSM spotted the latest threat involving this, and it came in the form of an email message currently being spammed in the wild.
The spam carried a .PDF file attachment which was [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Spam Greets Users with a BackdoorThe only thing worse than receiving a spammed greeting card is a one that comes with malware. TrendLabs SM senior advanced threats researcher Loucif Kharouni recently acquired a sample spam in the form of an online greeting card. The said card urges recipients to check out the greeting card by clicking the image. Users who [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Malicious .SWF File May Trigger a DoS AttackTrendLabs SM engineers recently discovered an interesting Shockwave Flash (.SWF) file that displays an image and downloads a worm with code capable of initiating a denial-of-service (DoS) attack.
The file detected as SWF_PALEVO.KK is hosted on a malicious site and runs whenever users access the site. Once loaded, it displays a screenshot of a YouTube video. The [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
PDF Exploit Becomes a Little More Sophisticated
.PDF files—or their inherent features—have been used by cybercriminals in some of the most noteworthy attacks we have encountered. Modified versions of this file type have been especially notorious these past few months since they are capable of attacking user systems by initially exploiting inherent vulnerabilities found in Adobe Reader and Acrobat. TrendLabsSM has documented [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
ZeuS/ZBOT Tries Out File Infection
ZeuS/ZBOT is best known for its information-stealing routines via the use of configuration files downloaded from their home sites. They are created using toolkits that allow remote control of the malware. Getting them to infect target systems is the tricky part. Cybercriminals have thus tried utilizing drive-by downloads, spammed messages, worm propagation, and many more [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Fake IT Email Notification Spreads Malicious PDFTrendLabsSM received reports of a suspicious email claiming to be an IT notification. It informs users that their mailbox settings have been changed. This email has a .PDF attachment that supposedly contains instructions that the users need to read before updating their settings.
This attack is similar to many we have seen previously purporting to come [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Public Bank of Malaysia PhishedTrendLabsSM recently spotted a phishing site that specifically targets Public Bank of Malaysia’s clients. Public Bank is one of Malaysia’s leading financial institutions that operate in other parts of Asia as well, including Hong Kong, China, and Cambodia.
The phishing page mimics Public Bank’s official login page to make users believe that it is the legitimate [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
At a Glance: New ZeuS Variants
The ZeuS/ZBOT botnet has been entrenched in the cybercrime business for a long time now and has continuously evolved and improved. Given the vast number of toolkit versions readily available in the underground, the features ZeuS possesses continues to thwart both antivirus and other security solutions as well as the efforts made by the security [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Cybercriminals Ride on the Back of Security Woes with FAKEAVWe regularly blog about how cybercriminals misuse newsworthy events in order to gain profit for themselves. In the past 24 hours, TrendLabsSM has tracked multiple FAKEAV attacks that try and trick users searching for help following the recent McAfee update 5958 incident. This determination by cybercriminals to cause further problems and inconvenience to innocent end users and businesses [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
KOOBFACE IP Taken Down, Gang Transfers Hosting to ChinaThe KOOBFACE FTP grabber component, which is a variant of the LDPINCH Trojan family, usually drops stolen FTP user names and passwords to a remote server controlled by the KOOBFACE gang. This remote server, located in Hong Kong, was taken down last week, thanks largely to the efforts of the Hong [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
PDF Launch Feature Abused to Carry ZeuS/ZBOTThe ZeuS/ZBOT malware continues to uphold its notorious reputation. As we have seen in the past, ZBOT variants steal account credentials when users visit various social networking, online shopping, and bank-related websites.
Another social engineering tactic that has been employed by ZeuS/ZBOT perpetrators is the use of .PDF files. Specially crafted .PDF files have been used [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Mac Malware Disguised as iPhoto InstallerIntego discovered a new OS X malware last week. Based on its report, however, this new malware is a variant of an early Mac OS X malware that was first seen in 2004. It was reported that cybercriminals have been using several different forums to distribute copies of this new variant.
This OS X malware arrives [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Doorway Pages and Other FAKEAV Stealth TacticsCybercriminals employ different but complementary techniques when it comes to propagating FAKEAV. Ultimately, however, their goal is to entice users to click malicious links that led to the download of different FAKEAV variants.
TrendLabsSM observed that cybercriminals typically employed blackhat engine optimizaton (SEO) to create poisoned pages that serve as doorways for FAKEAV distribution. These doorway pages, [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Emerging P2P Trojan Botnet UncoveredNews of a new botnet has been circulating recently in the threat landscape. According to reports, several systems have been infected by TROJ_DLOADE.ATJ, which has been built to download and install other malware. The Trojan does not, however, seem to have any distributed denial-of-service (DDoS) capability.
This Trojan may be downloaded when users visit sites under [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Oracle Issues New Patches While a New Java Bug EmergesFollowing Microsoft’s recent Patch Tuesday, Oracle, too, released 47 security fixes for its products. Oracle’s critical patch update for April can be found in Oracle Critical Patch Update Advisory—April 2010.
Oracle’s update is a collection of patches for multiple security vulnerabilities, which also includes patches for Sun products. Sun Microsystems, a wholly owned Oracle subsidiary.
However, a [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Phishers Send Out Standard Chartered SpamTrendLabsSM recently encountered a phishing email specifically targeting Standard Chartered Bank clients. The spammed message instructs recipients to log in to their online accounts and to visit the Secure Messages section to read a specific message. The email body includes an embedded link, which when clicked leads to a phishing page.
The use of bogus login pages has become [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Adobe and Microsoft Simultaneously Release Patches
Regular Release for Microsoft This April
April 13 is here and for Windows users, this means it is Patch Tuesday. According to the advance notification from Microsoft almost a week ago, the company will be releasing 11 bulletins to address 25 vulnerabilities, 11 of which have been dubbed “critical.” These vulnerabilities were found in Microsoft Office [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
|
Syndicate Navigation |