Monthly Archives: May 2010

Facebook Spam Leads to Viagra Vendor, Drive-by Download

May 28, 2010 – 10:08 am

By Andrew Brandt Annoying as they are, the spam emails circulating that supposedly come from Facebook don’t merely lead the recipient to one of those so-called Canadian Pharmacy pill-vendor websites. They now come with a bonus: An infection, courtesy of a malicious iframe which attempts a series of exploits against the browser, Adobe Reader, and [...]

By mguthrie09 | Posted in Downloaders, social engineering, social networks, spam, Stupid malware tricks | Tags: , , , , , , , , , , , | Comments (1)

Game Phishing Trojan Uses DirectX to Launch Itself

May 20, 2010 – 1:42 pm

By Andrew Brandt PC gamers have a new threat to contend with, one that has your personal information in its crosshairs and you can’t dispatch with a sniper rifle or BFG9000: A Trojan designed to steal game passwords that uses Microsoft’s own graphics engine, DirectX, against you. The Trojan, which appears to have originated in [...]

By mguthrie09 | Posted in Gaming threats, Keyloggers, Stupid malware tricks, Threat Research | Tags: , , , , , , , , , , , , | Comments (1)

Fake Amazon.com Order Emails Bring a Trojany “Friend”

May 17, 2010 – 4:37 pm

By Andrew Brandt An ongoing campaign where malware distributors use email spam to deliver dangerous programs to unwitting victims has begun to change its tune, switching the scam to incorporate different brands. In the latest scam, the message appears to be an order confirmation from Amazon.com for the purchase of an expensive consumer electronics item, [...]

By mguthrie09 | Posted in Destructive behavior, Downloaders, social engineering, spam, Stupid malware tricks, Threat Research | Tags: , , , , , , , , , , , , | Comments (7)

Trojan Masquerades as iTunes Gift or Résumé

May 12, 2010 – 10:06 am

By Andrew Brandt If you received one or more email messages over the past week that claim to contain an attached gift certificate for the Apple iTunes store or an unsolicited résumé, you probably received the latest scam involving the Tacticlol downloader. The iTunes-themed spam messages use the forged return address of gifts.certificate@itunes.com and read, [...]

By mguthrie09 | Posted in Phishing Trojans, social engineering, spam, Stupid malware tricks, Threat Research | Tags: , , , , , , , , , , , , , , , , | Comments (2)

Defencelab Rogue Steals Microsoft’s Name (Again)

May 6, 2010 – 1:15 pm

By Andrew Brandt When you see an online order form that bears Microsoft’s logo and the words “pay to: Microsoft Inc.,” are you any more likely to enter a credit card number into the form and click submit? That’s the psychological experiment currently being undertaken by a company that calls itself DefenceLab, which subjects unsuspecting [...]

By mguthrie09 | Posted in Rogue Security Products, social engineering, Stupid malware tricks, Threat Research | Tags: , , , , , , | Leave a Comment

The Lessons of a ‘Love Bug’ Still Ring True

May 4, 2010 – 12:49 pm

By Ian Moyse A decade on from the ILOVEYOU worm, what has changed—apart from ‘we’re older and (supposedly) wiser?’ We have allowed the bad in the real world to progressively infect our online world, giving criminals a way to attack victims that is more dangerous for the victim and, coincidentally, safer for the attacker. As [...]

By mguthrie09 | Posted in Destructive behavior, Enterprises, social engineering, social networks, spam, Stupid malware tricks | Tags: , | Comments (3)
Follow

Get every new post delivered to your Inbox.

Join 515 other followers