Subscribe to Malware Help RSS Feed RSS Feed - Subscribe to Malware Help. Org on Twitter Follow on Twitter - Malware Help YouTube Channel YouTube Channel - Subscribe to Malware Help by Email Subscribe by Email

Malware

Total Security 2009 (System Security) Analysis and Removal

by Shanmuga

This scareware uses the season’s template “My Computer Online Scan” to install itself. This template uses a combination of gif images and JavaScript to simulate an online scan and fake warning messages about non-existent malware on the victims’ system. While the popups and warning messages are infrequent compared to other rogue security software, this one […]

Read the full article →

Why virus writers are turning to open source

by Shanmuga

"Malware developers are going open source in an effort to make their malicious software more useful to fraudsters. By giving criminal coders free access to malware that steals financial and personal details, the malicious software developers are hoping to expand the capabilities of old Trojans.

Read the full article →

Antivirus Plus Analysis and Removal

by Shanmuga

The current version of Antivirus Plus rogue security software uses the Fake Windows Security Center to push the victim to register the software. The interface of Antivirus Plus is well designed and the spurious popup and other warning notifications are very frequent. The fake windows security center interface also is a good copy of the […]

Read the full article →

Windows Protection Suite Analysis and Removal

by Shanmuga

Windows Protection Suite is a rogue security software. On visiting an infected Website, this rogue security application triggers a popup dialogue box with the text: “Warning! Your PC is at risk of virus and malware attack. Your system requires immediate check! System Security will perform a quick and free scan of your PC for viruses […]

Read the full article →

SaveKeeper Analysis and Removal

by Shanmuga

The Savekeeper is one among the latest of the family of rogue security applications. I have observed this scareware being downloaded and prompted to install by the Fake Windows Security Center rogue. This needs to be manually installed. This also installs a bunch of random named exe, dll, bin, cpl and ocx files in the […]

Read the full article →

Fake Windows Security Center Analysis and Removal

by Shanmuga

On visiting a infected Website, this rogue uses a variety of animated images to simulate an online scan that fraudulently claims to find many non-existent malware on the victims system. The purported scan runs even if the user clicks the cancel button. The scareware starts downloading in the background irrespective of where you click on […]

Read the full article →

Safety Center Analysis and Removal

by Shanmuga

Safety Center…a rogue security software, mimics Windows Security Center and tries to passes itself as a legitimate security suite. In addition to the various popups it also uses fake voice alerts and desktop hijack to scare the user to buy the bogus application. It uses a combination of animated images which gives the impression of […]

Read the full article →

Scareware goes Green

by Shanmuga

"Malicious pseudo-environmentalists have come up with a new social engineering tactic aiming to improve the profit margins of their fake antivirus software releases – by promising to donate $2 from every purchase for saving the Amazonian green forests.

Read the full article →

Compromised Computers Host an Average of 3 Malware Families

by Shanmuga

"According to security company ESET, the average compromised machine is home to 13 infected files as well as malicious programs from three different malware families. ESET based its findings on scans of more than a half-million PCs using the free online scanner on the company’s Website. In their own way, the results may demonstrate the […]

Read the full article →

Google: Malware Sites on the Upswing

by Shanmuga

"In a new report authored by Google Security Team member Niels Provos, who is also a senior staff software engineer in the company’s Infrastructure group, the search provider offers up some of its badware site trends analysis from the last 12 months, with the sheer volume of malware sites tracking ever upwards.

Read the full article →

Apple adds malware blocker in Snow Leopard

by Shanmuga

"Apple’s commercials may give the impression that Macs are virus-free (.mov) but the company isn’t taking any chances with the newest Mac OS X refresh. Apple has quietly added a new Snow Leopard feature to scan software downloads for malware, a no-brainer move that coincides with a noticeable spike in malicious files embedded in pirated […]

Read the full article →

Malware Writers: Will That Be OS X, or W?

by Shanmuga

"Trend Micro researcher Ivan Macalintal recently found a new variant of the dreaded DNS changer Trojan that checks to see which operating system the visitor’s Web browser appears to be riding on, and then offers the appropriate Windows- or Mac-based installer. The malware was masquerading as a pirated version of Foxit Reader and several anti-virus […]

Read the full article →

Rare Malware A Hint Of Threats To Come

by Shanmuga

"Security researchers are seeing some intriguing malware in small pockets. One piece of malware found on a desktop machine during a forensics investigation was actually pre-coded to steal specific information from the victim’s organization, says Greg Hoglund, CEO and founder of HBGary, whose company sees about 5,000 new pieces of malware a day. "It knew […]

Read the full article →

Conficker hype may have harmed security efforts

by Shanmuga

"Media hype leading up to the Conficker worm’s April 1 update may have distracted computer users from other dangerous security threats, the FBI’s cybersecurity chief said here Thursday.

Read the full article →

Celebrity Viruses Improve Security

by Shanmuga

"Every so often, a computer virus becomes more than just a novelty for anti-virus researchers and moves into the consciousness of the mass media, even if it’s not a grave threat. The recent Conficker outbreak is a fantastic example of this.

Read the full article →

False Security: Scareware Spreads

by Shanmuga

"…What started out as a small-scale racket to defraud computer users is becoming big business. Rogue antivirus programs — also known as "scareware" — had a banner year in 2008. A recent report published by Microsoft Corp. found that scareware infections increased 48% in the second half of 2008 compared with the previous six months, […]

Read the full article →

Spyware Protect 2009 Analysis and Removal

by Shanmuga

Though Spyware Protect 2009, a rogue security software made its appearance early this year, recently it’s in the news due to the fact that the notorious Conficker botnet gang chose to push it to the infected systems. Spyware Protect 2009 is your typical scareware with slight variations. Incessant, hard-to-get-away popups warn about hundred’s of imaginary […]

Read the full article →

Fake security software distributor mimics Google attack site warning

by Shanmuga

I usually don’t check my site statistics log everyday, every week or even every month, I usually have a occasional glance to get a general idea about the browsers being used to access this site and from where the visitors are coming if I sense a spike in website traffic. Last night I was bored […]

Read the full article →

System Security 2009 Analysis and Removal

by Shanmuga

System Security 2009 is one of the newest entrants into the family of rogue antisecurity software. Once installed it surreptiously downloads and installs a malicious backdoor trojan that runs in the background and allows remote access to the compromised system.

Read the full article →

Eyeballing Conficker with eye-charts and maps

by Shanmuga

"…Now that the crazy hype has died down (hopefully!), it’s important for end users to get reliable information on eyeballing the presence of Conficker on a machine and, if it’s found, disinfection instructions from a Web site that isn’t blocked by the malware.

Read the full article →

Did security companies hype Conficker?

by Shanmuga

"Conficker worm did nothing, or not very much, why did it turn into such a story? Was it hype? Is it still hype? Why was Conficker Different and was it really different? It’s fair to point out that elements of Conficker’s design inadvertently attracted attention, namely the fact that it activated at a set date […]

Read the full article →

Infected Sites Tripled in March

by Shanmuga

"According to the March Intelligence Report issued by Symantec’s MessageLabs division on Tuesday, malware-oriented spam reached its highest level since June 2008, accounting for just over 20 percent of all the messages scanned by the filtering specialists this month.

Read the full article →

Vast Spy System Loots Computers in 103 Countries

by Shanmuga

"…The malware is remarkable both for its sweep — in computer jargon, it has not been merely “phishing” for random consumers’ information, but “whaling” for particular important targets — and for its Big Brother-style capacities. It can, for example, turn on the camera and audio-recording functions of an infected computer, enabling monitors to see and […]

Read the full article →