Category Archives: Website owners

Anyone who owns or operates a Web site that is accessible to the world is a potential target for malware distributors.

Mass SQL injection attack affects over 200,000 URLs

January 5, 2012 – 3:41 pm

by Dancho Danchev Security researchers from the Internet Storm Center, have intercepted a currently ongoing SQL injection attack, that has already affected over 200,000 URLs. The attack was originally detected in early December, 2011. It currently affects ASP sites and Coldfusion, as well as all versions of MSSQL.

By ddanchev | Also posted in Exploits, Threat Research, Uncategorized | Comments (4)

Trojans Employ Misdirection Instead of Obfuscation

August 25, 2011 – 3:49 pm

By Andrew Brandt An unusual family of Trojans, apparently of Chinese origin, engages in rootkit-like behavior which seems designed not to hide the presence of the malware on an infected system, but to misdirect or confuse a technical person who might be using system analysis tools on an infected computer. The Trojans all originated from [...]

By mguthrie09 | Also posted in Backdoors, Botnet activity, Destructive behavior, Stupid malware tricks, Threat Research | Leave a Comment

Phishers Cast Their Nets in the Social Media Pool

June 21, 2011 – 8:23 am

By Ian Moyse, EMEA Channel Director It can seem at times that the only people who like change are Internet attackers. And they don’t just like it—they need it. Technology’s rapid changes give cybercriminals new attack vectors to exploit, and new ways to turn a profit out of someone else’s misfortune. Take phishing, for example. [...]

By imoyse | Also posted in Botnet activity, hijack search results, Keyloggers, phishing, Search engines, social engineering, social networks, spam, Stupid malware tricks, Trojans | Comments (2)

Why Put Security Into the Cloud?

June 7, 2011 – 7:51 am

This week, Webroot’s Thre@t Reply managed to steal some time with Ian Moyse, who knows a thing or two about the benefits of putting your computer and network security into the cloud, out where the threats are, rather than keeping your security inside your network or on individual computers. As always, feel free to submit [...]

By mguthrie09 | Also posted in Enterprises, Internet security industry, phishing, social engineering, spam, Threat Research | Comments (2)

Malicious PHP Scripts on the Rise

February 22, 2011 – 4:34 pm

By Andrew Brandt Last week, I gave a talk at the RSA Security Conference about malicious PHP scripts. For those who can’t attend the conference, I wanted to give you a glimpse into this world to which, until last year, I hadn’t paid much attention. My normal week begins with a quick scan of malware [...]

By mguthrie09 | Also posted in Destructive behavior, Enterprises, phishing, social engineering, spam, Stupid malware tricks, Threat Research, Uncategorized | Comments (3)

Google Results Tarnished Again to Push Rogues

January 15, 2011 – 3:48 am

By Andrew Brandt It’s been a few months since Google implemented new ways that it displays search results, and in that time, it’s been difficult to find the kinds of hijacked search results we saw in huge numbers a year ago. But if you thought the search engine manipulators were laying down on the job, [...]

By mguthrie09 | Also posted in hijack search results, Rogue Security Products, social engineering, Stupid malware tricks, Threat Research, Trojans | Leave a Comment

10 Threats from 2010 We’d Prefer Remain History

January 1, 2011 – 3:32 pm

By Andrew Brandt With 2010 finally behind us, and an unknown number of cyberattacks likely to come in the new year, I thought I’d run down a brief list of the malicious campaigns criminals pulled off last year that I’d really dread to see anyone repeat. Now that they’re in the past, they should stay [...]

By mguthrie09 | Also posted in Backdoors, Blackhat SEO, Botnet activity, Destructive behavior, Enterprises, Firefox, Gaming threats, Internet Explorer, Keyloggers, Online shopping threats, Passwords, phishing, Phishing Trojans, Rogue Security Products, social engineering, social networks, spam, Stupid malware tricks, Threat Research, Trojans | Comments (1)

Internet Misuse: Bandwidth Does Matter

December 14, 2010 – 1:23 pm

By Ian Moyse, EMEA Channel Director Recent studies demonstrate that upwards of 25% of Internet bandwidth in an office are consumed by employees misusing the internet. According to Gartner, the average growth of business email volume is 30% annually, with the average size of the email content growing in parallel. Add to this the growth [...]

By imoyse | Also posted in Blackhat SEO, Botnet activity, Destructive behavior, Enterprises | Comments (1)

Troublesome Trojan Trammels Torrent Sites

November 24, 2010 – 1:08 pm

By Andrew Brandt We spotted an interesting behavior from a Trojan dropper that belongs to a family of malware named Ponmocup. The file, update.exe (MD5 89f4ea9f0240239e0d97f202d22af325) leaves behind a payload that, among other things, modifies the Hosts file on infected computers to prevent users from visiting popular Bittorrent sites, including The Pirate Bay. It’s an [...]

By mguthrie09 | Also posted in Destructive behavior, Stupid malware tricks, Threat Research, Trojans, Uncategorized | Comments (5)

Malware Threats: What Would Churchill Do?

November 3, 2010 – 4:24 pm

By Ian Moyse, EMEA Channel Director With Christmas fast approaching, (lest we forget the shops have kindly put all the Christmas goods out in September and early October again!) we can expect online attacks to increase as per their normal schedules, ramping up through the end of the year. With apologies to Sir Winston Churchill, [...]

By imoyse | Also posted in Botnet activity, Destructive behavior, Enterprises, Online shopping threats, Passwords, phishing, social engineering, social networks, spam, Stupid malware tricks | Comments (1)
Follow

Get every new post delivered to your Inbox.

Join 546 other followers