Comparison: Top malware threats

All Spammed Up published a post this week highlighting the top seven malware threats for that (May 3).  Here they are: MyWebSearch (delivers rogue pop-ups, tracks surfing) Vundo (Rogue A/V, information stealer) Dr. Guard (Rogue A/V) OnLineGames (password stealer for MMORPGs) TDSServ (rootkit to conceal identity) DoubleD (rogue pop-ups, browser redirection) Koobface (rogue pop-ups, delivers…


Microsoft releases its Security Intelligence Report, version 8

Today, Microsoft released its Security Intelligence Report, version 8.  The SIR is a twice-a-year (semi-annual? biannual?) document issued by Microsoft that reports on threats across the Internet industry, including email threats, malware threats, loss-of-data threats, web threats, and so forth.  Some key findings from this report: The number of malware infections cleaned by Microsoft is…


CallService.biz shut down by the FBI

Gary Warner over at Cyber Crime and Doing Time has a good post up this week about the CallService.biz website being shut down.  I’m not going to comment on it, rather, I will post a few good excerpts.  On April 19th a friend sent me a Facebook link announcing that CallService.biz had been closed. The…


A bit about Zeus

As I posted a couple of weeks ago, the Zeus botnet was partially taken down after researchers worked with ISPs to disconnect them.  Even though this victory was only temporarily short-lived, it’s still nice to know that botnets can be targeted for takedown if enough people get together and concentrate their efforts. From the MMPC…


Twitter moves to mitigate abuse

Twitter recently announced that taking action to mitigate spam and abuse of its service: A couple weeks ago, Biz explained how Twitter users were being victimized by phishing scams spread primarily through links in Direct Messages. Basically, people click the link and bad things happen. My team can only detect these scams after malicious links…

1

Spam trend this week – new malware targeting Facebook

One of our spam analysts who works out of our Dublin, Ireland office, Kai Yu, wrote this on our internal malware blog.  I am reposting it here because I think that it is an important topic for this past week. Since March 17th, there has been a large spam attack with malware attachments targeting Facebook’s…


Another one (partially) bites the dust

Following in the footsteps of Lethic, Waledac and Mariposa, yet another botnet has been taken offline.  Not completely, though, it was only a partial disconnect.  The Zeus botnet, also known as Zbot, is a trojan password stealer that captures passwords and sends them to the attacker. From ITWorld: March 10, 2010, 04:10 PM —  IDG…


Malware in a nutshell

I was browsing YouTube today and I found an online video starring David Perry of Trend Micro.  Perry explains the nature of various web-based threats using building blocks.  It’s actually a pretty good introduction for those who don’t understand the threat landscape very well. See the video below.

2

New Facebook worm

This morning, I was once again browsing through my Facebook lists (man, Facebook really is a gold mine of material for the cybersecurity world, isn’t it?).  I came across something a friend of mine posted, it is entitled “My ex-girlfriend of 2 years cheated on me… here is my revenge!” There is a picture of…

1

Analysis of a spam message using extensive spoofing techniques

Today, I came across a spam message pushing Asian porn.  The body of the links contained a redirector from google.com.tw and yahoo sites to the sites containing the payload.  It’s a pretty standard technique for spammers to exploit known trusted sites like Google and Yahoo in hopes of evading content filters, since the assumption is…

4

The Top Ten Spam, Malware and E-Security Stories of 2009

All Spammed Up has a nice little summary wrap up of the year 2009.  I have my own summary, it is a condensed version of an article that will appear in next month’s edition of Virus Bulletin. There are a lot of stories that could have gone into this that I had to cut, like…


Malware infection update

Well, I finally got my other home PC (the one in my parents’ place) cleaned up from all of the infections.  I backed everything up to an external hard drive, formatted the computer, scanned the external drive and cleaned it, reinstalled Windows XP (SP2), installed AVG and Microsoft Security Essentials, found more malware, cleaned that,…

1

Virus attachments vs email classified as malware

This probably belongs in the “Well, no kidding” category but I thought I would post it anyhow.  Since near the beginning of this year, I have been tracking how much email our filters classify as malware.  I then took those values, broke them down into a weekly chart and compared it to how many mails…

2

Are pirated versions of software more susceptible to malware? Updated!

One of the pieces of conventional wisdom that goes through my head is that if you install pirated versions of software, then your computer is more likely to be infected with malware.  It makes sense; in order for spammers/malware authors to take control machine, they offer users cheap software.  Yet this cheap software comes with…

1

Countries with the most infected computers

All Spammed Up has a new post up referencing an article that security researchers have issued a report indicating that Spain is the country with the most infected computers, at 44.5%.  The United States is second at 14.4%.  The countries with the least infections are Sweden, The Netherlands and Peru. The Microsoft Security and Intelligence…

1