Mass SQL injection attack affects over 200,000 URLs

January 5, 2012 – 3:41 pm

by Dancho Danchev Security researchers from the Internet Storm Center, have intercepted a currently ongoing SQL injection attack, that has already affected over 200,000 URLs. The attack was originally detected in early December, 2011. It currently affects ASP sites and Coldfusion, as well as all versions of MSSQL.

By ddanchev | Posted in Exploits, Threat Research, Uncategorized, Website owners | Tags: , , , , , , , , | Comments (4)

Top 7 Cybersecurity Predictions for 2012

November 17, 2011 – 3:00 am

By Mel Morris From Stuxnet to Sony, a number of cyberattacks emerged in 2011 that experts have predicted for quite some time. I predict 2012 will be even more pivotal, thrusting cybersecurity into the spotlight. These are my top seven forecasts for the year ahead: 1) Targeted, zero-day attacks will be the norm. Looking back [...]

By Lisa Bongiovanni | Posted in Deep Knowledge, Internet security industry, Mobile security, Threat Research | Tags: , , , , , , , , | Comments (5)

Fake UPS Document Installs Fake Microsoft Patch Payload

June 17, 2011 – 8:12 am

By Andrew Brandt As if we didn’t have enough to deal with this week — after a Microsoft patch Tuesday that brought with it a boatload of security updates for Windows, Office, Silverlight, Visual Studio, and other programs — some enterprising malware distributor is emailing around bogus tracking number malware dressed up in the icon [...]

By mguthrie09 | Posted in Backdoors, Botnet activity, Downloaders, hijack search results, Keyloggers, Rogue Security Products, social engineering, spam, Stupid malware tricks, Threat Research | Tags: , , , , , , , , , , , , , , , , , , , , , , , , , | Comments (1)

MacProtector: Rogue of the Week

May 27, 2011 – 6:00 pm

By Andrew Brandt This week, we turn our attention temporarily away from the never-ending stream of rogue security products on the Windows platform and take a closer look at the Mac OS analogue, MacProtector (aka Mac Security, Mac Defender, MacGuard, and–if history serves–soon to be many, many other names). There’s been a lot of press [...]

By mguthrie09 | Posted in Advanced Malware Removal, Rogue Security Products, social engineering, Stupid malware tricks, Threat Research | Tags: , , , , , , , , , , , , | Leave a Comment

New Year’s Drive-By Brings a Recursive Rogue

January 6, 2011 – 9:28 am

By Andrew Brandt On the morning of January 2nd, still bleary eyed, I checked my email to find a charming notification informing me that I’d received an electronic greeting card. Yay! I thought to myself: The first targeted malware of 2011 plopped right into my lap. I immediately pulled up my research machine, browsed to [...]

By mguthrie09 | Posted in Backdoors, Downloaders, hijack search results, Rogue Security Products, social engineering, spam, Stupid malware tricks, Threat Research, Uncategorized | Tags: , , , , , , , , , , | Leave a Comment

10 Threats from 2010 We’d Prefer Remain History

January 1, 2011 – 3:32 pm

By Andrew Brandt With 2010 finally behind us, and an unknown number of cyberattacks likely to come in the new year, I thought I’d run down a brief list of the malicious campaigns criminals pulled off last year that I’d really dread to see anyone repeat. Now that they’re in the past, they should stay [...]

By mguthrie09 | Posted in Backdoors, Blackhat SEO, Botnet activity, Destructive behavior, Enterprises, Firefox, Gaming threats, Internet Explorer, Keyloggers, Online shopping threats, Passwords, phishing, Phishing Trojans, Rogue Security Products, social engineering, social networks, spam, Stupid malware tricks, Threat Research, Trojans, Website owners | Tags: , , , , , , , , , , , , , , , , , , , , , , , , , | Comments (1)

New Rogue Is Actually Five Rogues in One

September 16, 2010 – 1:32 pm

By Andrew Brandt For years, the makers of those snake oil security programs we call Rogue Security Products have spent considerable effort making up new names, developing unique graphic design standards, and inventing backstories for their utterly useless, expensive scam products. Now a new rogue has taken this never ending shell game one step further, [...]

By mguthrie09 | Posted in Blackhat SEO, Internet security industry, Ransomware, Rogue Security Products, Search engines, social engineering, Stupid malware tricks, Threat Research | Tags: , , , , , , , , , , , , | Comments (4)

This PC Will Self-Destruct in Ten Seconds

April 8, 2010 – 9:38 am

By Andrew Brandt Phishing Trojans that try to remain below the radar are still prevalent, but a number of files coming through Threat Research point to a disturbing trend: Several new variants of existing malware families are taking a scorched earth approach to infected computers, rendering the PC unbootable (just check out the batch file [...]

By mguthrie09 | Posted in Destructive behavior, Phishing Trojans, Rogue Security Products, Stupid malware tricks, Threat Research | Tags: , , , , , , , | Comments (10)

Fakealerts Invade Google Image Search Results for ’24′ Star

January 27, 2010 – 5:10 pm

By Andrew Brandt Searchers beware: Those photos of celebrities or funny cat pictures that turn up in your Google image search results might not be photos at all, but fake antivirus alerts. Evidence appears to indicate that a similar scam to one we blogged about last November may be working its way up the Google [...]

By mguthrie09 | Posted in Blackhat SEO, Rogue Security Products, social engineering, Stupid malware tricks | Tags: , , , , , , , , | Comments (8)
Follow

Get every new post delivered to your Inbox.

Join 546 other followers