Monday, April 30, 2012
We tried to analyze this app to check if it is indeed malicious. Below are our findings:
When installed, ANDROIDOS_TIGERBOT.EVL shows a different icon, usually that of a legitimate application. Some malware use the same routine to trick users into thinking that it is a harmless file. The fact that Tigerbot uses the same installation routine raises questions on the intention of this application.
READ THE FULL ARTICLE ON TM's BLOG HERE!
Sunday, April 29, 2012
- Free iPad 3 Scams Steer Users to Bad Sites
- Cybercriminals Leverage Whitney Houston’s Death
- Free ‘Breaking Dawn Part 2′ Tickets Scam Spreads in Facebook
This is from an article on Trendmicro's Blog, which you can read HERE.
Wednesday, April 25, 2012
Last week it was the Olympics, this week it's N.Korea's Rocket launch. From Trendmicro's Blog:
"During the second of week of April, the most talked about news was North Korea’s failed attempt to launch a rocket. As expected, the bad guys are on the prowl for the next social engineering bait and the said news item was found the be the fitting choice.
The file we found was named North Korea satellite launch eclipses that of Iran.doc. The said file, detected as TROJ_ARTIEF.DOC, may arrive as an attachment to an email message. Once executed, this Trojan exploits the vulnerability in RTF Stack Buffer Overflow Vulnerability (CVE-2010-3333) to drop the backdoor BKDR_POISON.DOC onto the system."
Read the whole story HERE.
Friday, April 20, 2012
Wednesday, April 18, 2012
Fresh off PCWorlds website (1hr 15min ago):
"Computer Trojan Horse Steals Credit Card Details From Hotel Reception Software"
A remote access computer Trojan (RAT) designed to steal credit card details from hotel point-of-sale (PoS) applications is being sold on the underground forums, researchers from security firm Trusteer said in a blog post on Wednesday.
Read the full article HERE.
Tuesday, April 17, 2012
" ..the first quarter of 2012 veered away from attacks that led to data loss and, instead, focused on mobility. The mobile threat incidents we’ve seen in the first quarter remained true to one of 2012 predictions—Android-based smartphones will continue to be a likely target for cybercrime. Trend Micro, in fact, identified approximately 5,000 new malicious Android apps in just the first three months of the year most likely due to the increase of Android user base."
Monday, April 16, 2012
Saturday, April 14, 2012
Yes, a malware-ridden version of "Angry Birds" -
"According to the security experts at Sophos, there is one particular version of the app which has become widespread enough to cause concern. The program disguises itself as a completely legitimate download of the popular mobile game, but then digs deep within your handset's operating system and installs code that may compromise any information you have stored."
FULL STORY HERE.
Thursday, April 12, 2012
This message prompt informs affected users that the PC is now blocked and that they should pay 920 hryvnia (UAH) via QIWI to a purse number (12 digits) – 380682699268. Once paid,they will receive a code that will unlock the system. This code will supposedly resume operating system to load and remove the infection. This particular variant has the “unlock code” in its body. When the unlock code is used, the MBR routine is removed.
SSNs on 280K exposed; names, birth dates of another 500K compromised
Computerworld - "The scope of a data breach involving a Medicaid server at the Utah Department of Health is much worse than originally thought. State officials now say that close to 280,000 Social Security Numbers may have been exposed in the incident instead of 25,000, as originally believed."
Read article HERE.
Sunday, April 8, 2012
"Security industry insiders have long known the Mac platform has its holes. The Flashback Trojan is the first in-the-wild issue that's confirmed this, and big-time. More will follow unless Apple steps up its game."
"Microsoft last week said it will issue six security updates next week, four of them critical, to patch 11 bugs in Windows, Internet Explorer, Office, SQL Server and its virtual private networking platform. One of the updates, labeled Bulletin 4, looks like the one that should top the to-do list next Tuesday when Microsoft ships its monthly security updates, said a security expert. "
Saturday, April 7, 2012
Friday, April 6, 2012
Thursday, April 5, 2012
"A security flaw in Facebook’s mobile apps can be easily tapped by thieves searching for personal information about you. The problem is that Facebook's app for iOS and Android devices doesn't encrypt your login credentials, making them a sitting duck for bad apps or a poisoned USB connection."
READ THE ARTICLE HERE.
Wednesday, April 4, 2012
Tuesday, April 3, 2012
As of late, I've noticed an increasing numbers of computers infected via JAVA exploits [including fake Java update pop-ups] Today I read an article on PC World about Mozilla's attempt to lessen the chances of your PC becoming infected through one of these security holes.
"Mozilla has blacklisted unpatched versions of the Java plug-in from Firefox on Windows in order to protect its users from attacks that exploit known vulnerabilities in those versions."
Monday, April 2, 2012
READ THE FULL ARTICLE "Global Payments Breach Raises Questions" HERE.
Yes, a variant (different version) of an older Trojan is making it's rounds through the Internet -
"A new variant of the Flashback Trojan that appeared last year can install itself on a Mac without need for an administrator's password."
Read the article HERE.
(actually two for APPLE)
Rare Mac Trojan Exploits Microsoft Office for Mac
"A new Mac backdoor Trojan exploits a 2009 vulnerability in Microsoft Office to break into the computers of Tibet sympathizers, though it has potential to target other OS X users."
Read the article HERE.