Tag: trojan
-
Adobe to patch Flash Player zero-day next week
Patch due next week as malvertising leads to Bedep trojan downloader. As the news of a zero-day vulnerability in Adobe ‘s Flash Player actively being exploited reached the security community, the company made an out-of-band patch available on its website. It now appears that this update – version 16.0.0.287 – patches another vulnerability ( CVE-2015-0310…
-
VB2014 paper: The evolution of webinjects
Jean-Ian Boutin looks at the increased commoditization of webinjects. Virus Bulletin has always been about sharing information, and the Virus Bulletin conference is an important part of that. We would love to be able to share some of the discussions attendees had during the lunch and coffee breaks, the late-night or early-morning meetings in the…
-
Paper: Not old enough to be forgotten: the new chic of Visual Basic 6
Marion Marschalek looks at two Miuref binaries: one packed with Visual Basic 6 and one with C++. Two months ago, Microsoft announced it had added ‘Miuref’ to its Malicious Software Removal Tool. First discovered in December 2013, Miuref is a click-fraud trojan that silently makes a browser ‘click’ advertisements that are controlled by those running…
-
Cheap Android phone comes shipped with spyware
Trojan masquerades as Google Play app; cannot be removed. Researchers at German security firm G Data have discovered Android smartphones that come shipped with spyware. The phone is the N9500 from Chinese manufacturer Star , which appears to be very similar to the popular Samsung S5 , but with a much lower price tag. Following…
-
Game over for GameOver Zeus botnet?
Coordinated effort against gang that’s also behind CryptoLocker ransomware. A large, coordinated effort involving law enforcement, security vendors and various security researchers, has caused serious disruption to both the GameOver Zeus botnet and the CryptoLocker ransomware. GameOver Zeus is a particularly sophisticated variant of the Zeus trojan. Rather than a centralised command and control infrastructure,…
-
Spam link sends Android users to trojan proxy
Meanwhile, desktop users sent to (relatively harmless) weight-loss site. Links found in certain spam emails which redirect desktop users to a phony weight-loss website, have been found to send mobile users to a trojan proxy, according to researchers at Lookout . Clicking links in spam emails falls into the “don’t try this at home” category,…
-
Anti-virus software significantly shortens life of banking trojans
Security software causes malware to run for less than a third as long. ‘Does anti-virus software actually help?’ is a question often asked, even by security experts – who point to the fact that malware authors test their creations to make sure they aren’t detected by anti-virus products before releasing them, and to the fact…
-
VB2012 last-minute papers announced
Hot topics to be covered at VB conference in Dallas. For the last six years, VB has set aside a section of the VB conference for ‘last-minute’ papers, the idea being that researchers submit proposals for these presentations very close to the conference itself, thus enabling them to cover topics that are as up-to-the-minute as…
-
Gach do bonn a mbaineann a chur chugainn
Why cybercriminals may have a reason for using Irish language in a ransomware scam. According to a story that made the security headlines this weekend, and which seems to orginate from the Donegal Daily , a ransomware trojan has been discovered using Irish Gaelic as its language. Ransomware trojans aren’t new: they deny access to…
-
Thousands of websites infected with .htaccess redirect attack
Various anti-detection methods applied. Thousands of legitimate websites have seen .htaccess files compromised and as a consequence have been used to serve the ‘Milisenco’ trojan, researchers at Symantec report. .htaccess is a configuration file used by a number of webservers, including the popular Apache server. It allows for decentralised management of the server and requires…