As many as five million Web sites hosted by Network Solutions have been serving up malware, probably for several months, a security expert said today. “This is one of the biggest infections for drive-by download attacks that I’ve seen,” said Wayne Huang, co-founder and CTO of Santa Clara, Calif.-based Armorize Technologies, a Web application...
Read more »
Anti-virus technologies may be even more ineffective than feared. A study by web intelligence firm Cyberveillance found that, on average, vendors detect less than 19 per cent of malware attacks on the first day malware appears in the wild. Even after 30 days, detection rates improved to just 61.7 per cent, on average. Cyberveillance...
Read more »
Security researchers have found more malware exploiting an unpatched Windows vulnerability via .LNK shortcut files. According to Sophos blog July 23, two other pieces of malware have been observed targeting the bug. One is a keylogging Trojan the company is calling Chymin-A that is “designed to steal information from infected computers.” The other is...
Read more »
Hackers have built a computer virus that attacks Siemens AG’s widely used industrial control systems, creating malicious software that analysts said can be used for espionage and sabotage. The German company said the malware is a Trojan worm dubbed Stuxnet that spreads via infected USB thumb drives, exploiting a yet-to-be-patched vulnerability in Microsoft Corp’s...
Read more »
Kaspersky’s new spam report for May 2010 states that the list of top 10 malware supplying countries remained the same when compared to the list of April 2010. The firm states in its report that the developed regions are still the most lucrative targets for hackers who have greater chances of making profit by...
Read more »
As the world’s legitimate Web traffic increases, so do instances of spam e-mail, Internet-borne malware and general hacker activity. When special or unusual events happen — such as the current Gulf oil spill or the FIFA World Cup soccer tournament in South Africa — communications traffic of all kinds skyrockets. This takes into account...
Read more »
I’ve got good news and bad news for those of the misguided perception that Linux is somehow impervious to attack or compromise. The bad news is that it turns out a vast collection of Linux systems may, in fact, be pwned. The good news, at least for IT administrators and organizations that rely on...
Read more »
Hackers compromised the website of the Jerusalem Post on Monday so that it served up malware. The attack relied on planting scripts on the site itself, rather than the more common tactic of compromising its ad-serving system to serve tainted ads. The attack ultimately attempted to dump Windows-based malware on the Windows PCs of...
Read more »
Scammers are distributing apps for Windows Mobile-based smartphones that have malware hidden inside that makes calls to premium-rate numbers across the globe, racking up expensive bills unbeknownst to the phone’s owner, a mobile security firm said on Friday. The apps–3D Anti-Terrorist game, PDA Poker Art, and Codec pack for Windows Mobile 1.0–are being distributed...
Read more »
A hacking tool advertised as being capable of enabling users to hack Windows Live accounts and grab Windows Live Messenger passwords is actually used by attackers to spread their malicious code. According to BitDefencer, HackMSN.exe will not only not permit users to recover Windows Live passwords, but will instead infect them will malware, namely...
Read more »
A recent spate of virus-ridden computers has left me feeling philosophical about the state of desktop management. Fortunately for me, these computers were not part of my corporate network, instead they were personal computers or servers maintained by other systems administrators. The cases come from all over. Family, friends, that nice shopkeep with the...
Read more »
Not long after I launched this blog, I wrote about the damage wrought by the Eleonore Exploit Kit, an increasingly prevalent commercial hacking tool that makes it easy for criminals to booby-trap Web sites with malicious software. That post generated tremendous public interest because it offered a peek at the statistics page that normally...
Read more »
The ThreatSeeker Network of Websense Security Labs is warning that the well-known website phpnuke.org is under hackers’ control and is serving multiple exploits. Explained the security researchers that PHP-Nuke at one time functioned as open-source software; however, currently it’s used for commercial purposes. Yet it continues to be widely used while its chief online...
Read more »
