Subscribe to Malware Help RSS Feed RSS Feed - Subscribe to Malware Help. Org on Twitter Follow on Twitter - Malware Help YouTube Channel YouTube Channel - Subscribe to Malware Help by Email Subscribe by Email

Cyber Crime

BBC exposes Overseas credit card scam

by Shanmuga

"A criminal gang selling UK credit card details stolen from Indian call centres has been exposed by an undercover BBC News investigation. Reporters posing as fraudsters bought UK names, addresses and valid credit card details from a Delhi-based man.

Read the full article →

Conficker.C primed for April Fool’s activation

by Shanmuga

"CA (formerly Computer Associates) has published an extensive guide to Conficker.C, which includes information on its attack vectors, behavioral analysis, and how to tell if the "C" variant of Conficker is running on your system. This last part could pose a challenge—unlike previous versions, C adopts what DeBolt refers to as a "defensive stance" and […]

Read the full article →

Is Your PC Part of a Botnet?

by Shanmuga

"So how can you tell if you’re machine is part of a botnet and what can you do about it? Statistically, Macs are safe from botnets, although not completely immune to all threats as we noted here. But if you have a Windows based machine, Prevx suggests you stay on the lookout for an Internet […]

Read the full article →

Hacking iTunes Gift Cards, and an iTunes Update

by Shanmuga

"Recently, several media outlets have been running a fascinating story about hackers making oodles of money selling iTunes gift cards activation codes at online auctions, supposedly after cracking the secret algorithm Apple uses to generate voucher codes for iTunes gift cards.

Read the full article →

BBC team buys a botnet, DDoSes security company Prevx

by Shanmuga

"In a bit of an awkward and highly unnecessary move, a team at the BBC’s technology program Click has purchased a botnet consisting of 22,000 malware infected PCs, self-spammed themselves on a Gmail account, and later on DDoS-ed a a backup site owned by security company Prevx (with prior agreement), all for the sake of […]

Read the full article →

Hackers continue to abuse search engine results

by Shanmuga

"Cyber-criminals are always on the lookout for new tricks, but they are also sticking with an oldie-but-goodie—abusing search engine results. According to security pros, there has been a significant increase in the tactic since January. On March 10, officials at Symantec noted attackers were using sponsored search results on Yahoo to lure Web surfers to […]

Read the full article →

Russian Hacker leaves message for Microsoft in Trojan code

by Shanmuga

"Here’s a new way to get Microsoft to pay attention to you: Slip a brief message into the malicious Trojan horse program you just wrote. That’s what an unnamed Russian hacker did recently with a variation of Win32/Zlob, a Trojan program victims are being tricked into installing on their computers.

Read the full article →

Thousands of Websites Hacked

by Shanmuga

Security vendor Kaspersky Labs warns that ""We’re estimating that in the last two days alone, between 2,000 and 10,000 servers, mainly Western European and American ones, have been hacked," Kaspersky wrote on its Web site Friday, "It’s not yet clear who’s doing this."

Read the full article →

Researchers Hijack Storm Worm to Track Profits

by Shanmuga

"A single response from 12 million e-mails is all it takes for spammers to turn annual profits of millions of dollars promoting knockoff pharmaceuticals, according to an unprecedented new study on the economics of spam.

Read the full article →

Bots exploiting Microsoft’s latest RPC flaw

by Shanmuga

"Several antivirus vendors are reporting on Monday a new round of exploitation of Microsoft’s out-of-cycle security bulletin last month. The flaw in MS08-067, which affects how remote procedure calls (RPC) are handled in the Windows Server Service, has the potential to become a fast-spreading worm, according to Microsoft. But experts predict any exploitation will be […]

Read the full article →

Is Rock Phish cybergang set for a comeback?

by Shanmuga

"”Rock Phish is making an investment in their own infrastructure by upgrading their botnet,” says Sean Brady, product marketing manager at RSA. RSA, whose FraudAction Research Lab has posted a blog item on the topic, says the end result could be a surge in phishing attacks in the near future.

Read the full article →

RAM raiders: inside secrets of the cyber hackers

by Shanmuga

"I have just found a new best friend and his name is Pyr0. I didn’t choose him because he is entertaining or fun to be with – although he is both. Nope, it’s just that, more than anything, you wouldn’t want Pyr0 to be your enemy.

Read the full article →

Rustock and Srizbi botnets share a common trojan

by Shanmuga

"Two of the world’s largest and most prolific spamming botnets have been spotted sharing a common bot malware-delivery method. But whether that means that the operators of the rival Rustock and Srizbi botnets are actually in cahoots is unclear, security researchers say.

Read the full article →

Security: Online Crime Gang Stole Millions

by Shanmuga

"To gain a grasp of just how badly organized cyber-crime groups are fleecing American banks and consumers, it may be instructive to look at the details released this week about the operations of a single online crime gang, that is responsible for undoubtedly the largest cache of stolen data ever uncovered.

Read the full article →

Hacking: iGoogle gadgets a security risk, say hackers

by Shanmuga

"HACKERS turned computer security specialists have accused Google of setting users up for online disasters by letting them personalise their home pages with applications that could be tainted. Software that people can be tricked into installing on iGoogle homepages can track their activities and even be used to control their computer, SecTheory chief executive Robert […]

Read the full article →

Hacking: Hackers recently Used Facebook for Malware Attack

by Shanmuga

"Hackers, impersonating members’ friends, attacked Facebook by convincing users on Facebook’s Wall to view a video link that they said was hosted by Google. The Wall is a place were members post messages for friends.

Read the full article →

Hacking: Ongoing IFrame attack proving difficult to kill

by Shanmuga

"One of the factors that make an ongoing malware attack so difficult to stop is the speed with which the assault can evolve. Over the past 12 days, an IFrame injection attack that originally focused on ZDNet Asia has been spreading across the ‘Net, changing targets and payloads on an almost daily basis. An iFrame […]

Read the full article →

Hacking: Second mass hack exposed

by Shanmuga

"Researchers at McAfee estimated that the attack has been active for roughly one week, and in that time frame has managed to place itself on roughly 200,000 web pages.

Read the full article →

Vishing: The Anatomy of a Vishing Scam

by Shanmuga

"A series of well-orchestrated wireless phone-based phishing attacks against several financial institutions last week illustrates how scam artists are growing more adept at fleecing consumers by exploiting security holes in seemingly unrelated Internet technologies.

Read the full article →

Hacking: Trend Micro Details Its Recent Failed Web Attack

by Shanmuga

"The code inserted in some Web pages of the site was meant to redirect the visitor to a malicious server that would download malware capable of stealing passwords on an infected computer, Trend Micro spokesman Michael Sweeny said. The attempt, however, failed.

Read the full article →

Hacking: Cyber-attack launched from 10,000 web pages

by Shanmuga

"The web pages have been modified to silently redirect visitors to sites laden with malware that attempt to break into the user’s PC. McAfee Avert Labs described the assault as "one of the largest attacks to date of this kind".

Read the full article →

Goolag Scanner brings Google hacking to the masses

by Shanmuga

"An infamous hacking group called Cult of the Dead Cow (cDc) recently released a tool called Goolag Scanner, which simplifies and automates Google hacking.

Read the full article →

Hacked: Researchers figure out how to crack GSM phone security

by Shanmuga

"Two enterprising researchers claim to have figured out a way to eavesdrop on calls made using GSM mobile phones, cracking open its much-vaunted encryption.

Read the full article →