Category Archives: Malware Alerts

       In today’s internet era it seems that whenever the latest hot topic appears, there’s always corresponding malware or a rogue antivirus threat lurking behind it. Cybercriminals are quick to grab every opportunity they can find to infect their … Continue reading

Posted in Malware Alerts | Leave a comment

ZeuS 2.0 kit release introduces a few tricks designed to complicate the analysis of its configuration files. Apart from randomized side-effects that the new trojan leaves on a system, including its ability to morph in order to avoid hash-based detections … Continue reading

Posted in Malware Alerts | Tagged , | Leave a comment

Though primarily being distributed through spam and drive-by downloads, and in addition to social-engineering tactics, the Zeus/Zbot malware also utilizes specially-crafted PDF files to get into an unsuspecting user’s computer. The Malware Research Center has seen PDF files that carry … Continue reading

Posted in Malware Alerts | Tagged , | Leave a comment

Same as we posted last week, Trojan.FakeAv continues to be one of the highest hitting families of malware prevented in the ThreatFire community again this week. And, because so many users continue using Windows XP, it is this variant of the family that … Continue reading

Posted in Malware Alerts | Tagged | 2 Comments

The magnitude 6.4 earthquake does not only rattle Taiwan but even the internet users as well. It is another opportunity for Malware writers to poison returned results from searches about this disaster. It now became a constant attack every time … Continue reading

Posted in Malware Alerts | Tagged , , | Leave a comment

      Another variant of Rogue Anti Spyware is creating nuisance to most of internet users. Similar to its predecessors, it comes as perfectly legit looking antivirus software enticing the user to download and purchase it. Further study of its … Continue reading

Posted in Malware Alerts | Leave a comment

A recently reworded post on Microsoft’s attempt to pursue malware distribution in the courts makes it appear that something permanent and substantial has happened in anti-malware efforts (demonstrated by a legal and collaborative effort called “Operation b49″ to takedown Waledac C&C domains). Because … Continue reading

Posted in Malware Alerts | Tagged , | Leave a comment

by: Mylene Villacorte Security Essentials 2010 (SE2010.exe) is a new rogue application which is usually arrives as a file dropped by a Trojan or downloaded from the internet. It employs the same techniques as of Internet Security 2010…then again, said … Continue reading

Posted in Malware Alerts | Tagged | Leave a comment

Another hot topic circulating around the internet is the Winter Olympics and the hits around the search engines come soaring when the news of the death of a 21 year old luger Nodar Kumaritashvili breaks out. Malware writers are quick … Continue reading

Posted in Malware Alerts | Tagged , | Leave a comment

The group behind “live-windowsantivirus. com” is having a very busy morning distributing Rogueware XP Internet Security 2010. We grabbed some snapshots for you of the current incarnation of the malware, since users appear to be falling for it in large … Continue reading

Posted in Malware Alerts | 13 Comments

Rogueware Internet Security 2010 (not to be confused with PC Tools Internet Security 2010) is moving its way to the top of ThreatFire’s community stats to be one of the highest hitting FakeAv/scareware/rogueware packages for January 2010 and the beginning of Feb. Not … Continue reading

Posted in Malware Alerts | 1 Comment

The banner ads allegedly rotating through the NY Times website over the weekend delivered FakeAv/Rogueware from servers that have been delivering the same stuff since around July 19th. The current Url over the weekend was protection-check07. com, but it changes … Continue reading

Posted in Malware Alerts | Leave a comment

PPStream is a multimedia player used widely throughout Asia, as in hundreds of millions of users. As such, it is interesting when crashes for widely used client-side software are reported as “exploitable” on various blogs and PoC sites. According to … Continue reading

Posted in Malware Alerts | Leave a comment

The relentless group pushing malicious downloaders that are crafted most often to appear as video codecs and also are packaged with cracks, underground key generators, and blackhat SEO schemes, this week have moved to serving up their warez from 95.211.8.21 … Continue reading

Posted in Malware Alerts | Leave a comment

Previous posts showed spam-based scams attempting to deliver a payload named “pav.exe” onto your system. The scam is continuing with the title “Total Security” for the familiar scareware messages. Be aware that there is a legitimate security suite that includes … Continue reading

Posted in Malware Alerts | Leave a comment