News aggregatorTrick or Threat?The month of October in the threat landscape is often associated with scary social engineering tactics in time for Halloween. As in years past, the threats that lurk in and plague the current threat landscape are real. Most of them can cause irreparable damage, often resulting in information, or worse, identity theft as shown in [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
This Halloween, Enjoy the Treats but Be Wary of Online TricksWe often associate Halloween with pumpkins and costumes but for cybercriminals it’s merely another avenue to exploit, steal, and trick users into giving away their personal identities. Treats are fun but we all need to be on the lookout for the sneaky and tricky ways cybercriminals slither into our computers. Below are the TrendLabs, top 7 [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Social Engineering Watch: Spam Leads to Canadian Pharmacy SitesTrend Micro researchers found over 200 email samples that spamvertised male sexual enhancement pills. These bore subjects like “Re: Go wild in bedroom,” “Re: Let your lever straight up,” and “Re: Be her concrete-rod satisfier” and contains a URL that points to all-too-familiar Canadian pharmacy websites.
While spammed messages that lead to Canadian pharma sites are not [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Taiwan: Spear Phishers Target Gmail UsersTrend Micro threat analysts found several phishing sites registered in China that target specific people or companies. The said email can customize phishing URLs using the names of intended recipients via a technique called “spear phishing.”
Spear phishing has been used by cybercriminals before in attacks that involved specific targets. In the previous post, “So Is It Twitter or [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Fake Facebook Password Notification Leads to MalwareA new spam campaign that purports to be from Facebook is making rounds today. It bears the subject, “Facebook Password Reset Confirmation,” and informs users that their passwords have been changed for security purposes. It then asks them to open the attached .ZIP file that supposedly contains their new passwords, which in actual fact is [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
FDIC Spam Points to Info StealerTrend Micro researchers recently found spam emails fashioned to come from Federal Insurance Deposit Corporation (FDIC). The email message informs users that they should visit the “official” FDIC’s website (provided in the email) to check their Deposit Insurance Coverage.
However, clicking the URL leads users to a fake FDIC website where they are ask to download [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
IPv6 Tunneling Protocols: Good for Adoption, Not So Hot for SecurityHave you ever noticed how security often takes a backseat when trying something new? When I am trying out a protocol out for the first time, I barely skim the Security Considerations section of the RFC. Just the same, as more of us start experimenting with IPv6, the use of tunneling protocols is likely to [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Spoofed Contract Carries MalwareTrend Micro researchers found spammed messages with a .ZIP file attachment that contains a malware. It bears the subject, “Contract of Settlements,” and purports to come from LSM Company. It informs users to open and check the attached file that holds a contract, which in actual fact, is an executable file (contract_1.exe) detected by Trend [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
FAKEAV Goes Open Source… Or Not?In the recent FAKEAV spam campaign, I realized something was off. Once the user clicks the URL and gets the bogus Antivirus 2010 up and running on his/her system, files are added. The additional files I found were related to ClamAV, the open source AV toolkit for UNIX. The files include the ClamAV virus definition file and [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Windows 7? No Problem for Trend Micro UsersMicrosoft’s new OS, Windows 7, was made available to the general public earlier today. To say that this was eagerly anticipated is an understatement, however, as in the United Kingdom, pre-orders on Amazon for copies exceeded both the last book of the Harry Potter series as well as the Nintendo Wii. This made it the biggest grossing pre-ordered item [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
ZBOT and a CapitalOne PhishIn this most recent spam campaign, our spam traps caught an uncanny combination of a CapitalOne phish and a ZBOT variant. Below is a screenshot of an email sample making the rounds: The spam campaign would have you believe that you would need to install a Digital Certificate in order to use CapitalOne’s website. [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Halloween Job Spam Spooks Users
Holidays are spammers’ favorite times of the year. After all, these give them additional opportunities to lure more victims to their specially crafted scams apart from a theme to focus on. As one of the most celebrated holidays across the globe, it is not surprising that Halloween, which is barely a week away, has been [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
FAKEAV Uses Conficker Worm as BaitVery recently, cybercriminals have found another avenue to lure victims into their trap by using Microsoft as bait.
A screen shot of one such campaign is shown in Figure 1 below. The email asks the recipient to download and install the attached .zip file (shown in Figure 2) which is actually a malicious file which purports [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Fake Agents for Russian Websites SpreadingIn the past few weeks, Trend Micro researchers have become aware that the Russian cybercriminal underground has been overflowing with offers for a new kind of information-stealing malware. These new malware variants pose as agent programs used by Russian social networking sites, such as Odnoklasniki and Vkontakte. (Agent programs are programs used by some websites [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
New Banking Trojan Uses GMERBrazilian banks are once again in the hotseat as a banking Trojan emerges with a new technique. This time, the cybercriminals targeting these banks are using GMER, a popular anti-rootkit application. Trend Micro detects this banking Trojan as TROJ_DLOAD.BB. Upon execution, this Trojan downloads a legitimate copy of GMER and a malicious rootkit component detected [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Another Day, a New Zero-Day Exploit for Adobe
It has been a busy week for Adobe as only a few days after the software company announced that it would put up a vulnerable PDF Reader on its download site, a more serious one bubbled up.
Trend Micro researchers recently came across samples that exploited a new zero-day vulnerability in Adobe Reader 9.1.2 and Adobe [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
“Solar Eclipse 2009 in America” Leads to FAKEAVYesterday’s solar eclipse over parts of Asia was witnessed by millions of people, so it shouldn’t come as a surprise that it should attract the attention of cybercriminals. And it has. Cybercriminals wasted no time in riding on the said phenomenon as they use SEO poisoning to lead users into redirecting to a site peddling [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
New KOOBFACE Upgrade Makes It Takedown-ProofEarly this week, the KOOBFACE Command and Control (C&C) servers issued a new command to its downloader component. This new command identifies a list of IP addresses to be used by the downloader component as Web or relay proxies to retrieve subsequent commands and components.
In the old KOOBFACE architecture (see Figure 1), the downloader [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
More Zero-Day Exploits for Firefox and IE FlawsEarlier today, Senior Threat Researcher Joseph Reyes spotted several malicious script files that exploited Mozilla Firefox and Microsoft Internet Explorer vulnerabilities:
JS_DIREKTSHO.B exploits a vulnerability in Microsoft Video Streaming ActiveX control to download other possibly malicious files.
JS_FOXFIR.A accesses a website to download JS_SHELLCODE.BV. In turn JS_SHELLCODE.BV exploits a vulnerability in Firefox 3.5 to download WORM_KILLAV.AKN.
JS_SHELLCODE.BU exploits [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
Photos From Michael Jackson’s Memorial Mask MalwareThe sudden death of Michael Jackson caused not only an outpouring emotions from his family, friends, and fans, but also a spread of spam mails that took advantage of this tragic event. Even after his memorial service last July 7, 2009, spammers are clearly not resting as they try to spread other malicious spam messages.
We [...]
Post from: TrendLabs | Malware Blog - by Trend Micro Categories: New Viruses
|
SyndicateNavigation |