Category Archives: Phishing Trojans

Trojan software designed to steal login credentials, either by keylogging or by retrieving saved credentials from the victim’s Registry, browser cache and elsewhere.

Patchy Phisher Forces Firefox to Forego Forgetting Passwords

October 6, 2010 – 3:47 pm

By Andrew Brandt Every browser can, at the user’s discretion, be set up to remember passwords. In general, Webroot advises most users not to set the browser to store login credentials, because they’re so easily extracted by password-stealing Trojans like Zbot. In Firefox, for example, you can click Tools, Options, then open the Security tab, [...]

By mguthrie09 | Also posted in Backdoors, Firefox, Internet Explorer, Keyloggers, phishing, Stupid malware tricks, Threat Research | Comments (21)

Fake Flash Update Needs Flash to Work

September 7, 2010 – 1:23 pm

By Andrew Brandt If you live in the US, you may have played sports, barbequed, or enjoyed the last long weekend of the summer outside doing something fun outdoors. Unfortunately, that wasn’t an option here in Boulder, where a large wildfire generated a thick plume of smoke and ash. So, what’s a malware analyst to [...]

By mguthrie09 | Also posted in Downloaders, phishing, Rogue Security Products, social engineering, social networks, spam, Stupid malware tricks, Threat Research, Trojans | Comments (1)

Pro-Israel Website Receives Passwords Stolen by Koobface

September 2, 2010 – 1:04 pm

By Andrew Brandt Is the team behind the Koobface worm taking a stance on the Israeli-Palestinian peace talks, or is this notorious worm’s most recent, bizarre twist just a coincidence? We’ve seen Koobface hijack legitimate Web sites for more than a year, using them not only to host malicious payload files, but also to work [...]

By mguthrie09 | Also posted in Keyloggers, phishing, Rogue Security Products, social engineering, social networks, Stupid malware tricks, Threat Research, Trojans | Comments (2)

A Cave Monster from Hell Wants Your Financial Data

August 20, 2010 – 3:50 pm

By Andrew Brandt A novel and pretty sneaky Trojan designed to steal financial data appeared on our radar screen last week. The Trojan, once installed on a victim’s computer, rootkits itself to prevent detection, then watches the victim’s browser for any attempt to connect to the secured, HTTPS login page of several online banks. When [...]

By mguthrie09 | Also posted in Online shopping threats, Passwords, phishing, Threat Research, Trojans | Comments (5)

“Fingerprint” Helps Identify Malware Authors

July 29, 2010 – 11:07 am

By Andrew Brandt The Threat Research group sat in on a talk by HBGary CEO Greg Hoglund yesterday where the regular speaker discussed some research he’s been doing over the past year that he hopes will help connect malware samples to known groups of malware creators. While that sounds promising for law enforcement, it’s actually [...]

By mguthrie09 | Also posted in phishing, social engineering, Stupid malware tricks | Leave a Comment

Weird Malware on Display at Black Hat

July 28, 2010 – 11:40 am

By Andrew Brandt I’m at the Black Hat Briefings this week, the annual confab of the best and brightest in computer security, catching up on the trends and tricks malware authors and data thieves employ. I just saw an impressive demo by a pair of security researchers who took a deep dive into the behaviors [...]

By mguthrie09 | Also posted in Enterprises, Keyloggers, phishing, Stupid malware tricks | Leave a Comment

Beware Spam With HTML Attachments

July 20, 2010 – 8:25 pm

By Andrew Brandt When it comes to spam messages, conventional wisdom dictates that you shouldn’t follow links or call phone numbers in the message, order products from the spammer, or open files attached to the email. We all should know by now that you should never open attached executable files, and spam filters now treat [...]

By mguthrie09 | Also posted in Destructive behavior, Downloaders, Keyloggers, phishing, social engineering, spam, Stupid malware tricks, Threat Research, Trojans | Comments (4)

WoW Expansion Beta Likely to Spawn Phishers, Scams

June 30, 2010 – 4:04 pm

By Andrew Brandt Blizzard’s announcement today that they will begin a closed beta-test for the latest expansion pack is likely to generate a lot of excitement among that particularly low breed of online criminals who steal the fruits of other people’s entertainment when they commandeer passwords for other players. While it’s hard to believe that [...]

By mguthrie09 | Also posted in Firefox, Gaming threats, Passwords, PC gaming, phishing, social engineering, Stupid malware tricks, Threat Research | Comments (7)

Keylogger Poses as Document from Spain’s Central Bank

June 21, 2010 – 2:06 pm

By Andrew Brandt An attempt to push down the Trojan-Backdoor-Zbot password thief to Spaniards may signal a new wave of attacks by a crew of attackers who spent the better part of 2009 trying to convince gullible Internet users in different countries to download and execute Zbot installers poorly disguised as transaction records or other [...]

By mguthrie09 | Also posted in Keyloggers, social engineering, Stupid malware tricks, Threat Research | Comments (2)

Facebook “Photo Album” Spam Drops Trojans

June 14, 2010 – 2:43 pm

By Andrew Brandt A spammed link campaign that spread through Facebook rapidly over the weekend delivered a malicious payload designed to take control of the Facebook account of any infected user, steal passwords, and hijack clicks in the victim’s browser. The messages appear as links sent by a friend, accompanied by the brain-damaged text “You? [...]

By mguthrie09 | Also posted in Downloaders, social engineering, social networks, Stupid malware tricks | Comments (1)
Follow

Get every new post delivered to your Inbox.

Join 528 other followers