Monthly Archives: April 2009

Do you Think Security First?

By Andrew Brandt

In an era when virtually all businesses use the Internet, in one form or another, to get work done, it’s worth asking the question posed in the title of this blog entry. Think Security First is an organization dedicated to helping spread security gospel to businesses — via chambers of commerce. Their goal: [...]

Phishing Trojan Targets Russian Finance Websites

By Andrew Brandt

For a long time, we’ve heard about phishing attacks originating in Russia or eastern Europe that target western banks. There’s nothing surprising there. Latter-day Willie Suttons typically target big US or European banks because, well, that’s where the money is.
That’s why I was kind of surprised to stumble across a phishing Trojan that targets [...]

Inane Shenanigans with Worm-Shiv

By Andrew Brandt

It’s been a long time since I’ve worked on a malware file as singularly obnoxious as Worm-Shiv, a new worm we defined a few weeks ago. There isn’t anything especially technically avant-garde or advanced about the worm, nor was it especially difficult to detect or remove. It just exhibits behavior that, to be [...]

Someone Confick-rolled the Internet

By Andrew Brandt

Well, the big Conficker.c launch day is upon us and…nothing. So far, anyway. Someone should start selling “I blogged about Conficker and all I got was this lousy T-shirt” shirts. Cafepress, are you listening?
We’ve been keeping to the back of the room about Conficker, not joining the rising hysteria chorus. It’s not that we don’t [...]