Subscribe to Malware Help RSS Feed RSS Feed - Subscribe to Malware Help. Org on Twitter Follow on Twitter - Malware Help YouTube Channel YouTube Channel - Subscribe to Malware Help by Email Subscribe by Email

Phishing: Phishing kits take advantage of novice fraudsters

by Shanmuga

"A phishing kit targeting the Bank of America contains an interesting insight into the intellectual hierarchy involved in Internet fraud. At first glance, the phishing kit looks attractive to any fraudster – it is straightforward to deploy on any web server that supports PHP, and a single configuration file makes it easy to specify an

Read the full article →

Vulberabilities: ID Theft Vulnerability Haunts Firefox

by Shanmuga

"Israeli security researcher Aviv Raff has issued a warning for a fairly serious browser vulnerability that exposes Firefox users to identity theft attacks. Raff, a well-respected hacker who regularly reports security problems in software products, discovered a way to use a browser bug to lure Firefox users into entering login credentials into a maliciously rigged

Read the full article →

Malware: New Malware Demands Pay-By-Phone ‘Activation Fee’

by Shanmuga

"Microsoft may have decided to drop the "kill switch" it developed to penalize Windows Vista users who failed to activate their operating system software, but criminal hackers are taking up the slack. A new Trojan called Backdoor.Win32.Delf.ctk is capable of locking users out of vulnerable systems and demanding a pay-by-phone activation fee.

Read the full article →

Malware: Come see the softer side of spyware

by Shanmuga

"The story goes like this: late last year, Sears.com and Kmart.com began asking users if they wanted to participate in a "community" online (presumably a community made up of Sears and Kmart aficionados). In late December, security researcher Benjamin Googins at Computer Associates noticed, however, that the "community" actually installed software from comScore, a market

Read the full article →

Malware: Malware Evolving Too Fast for Antivirus Apps

by Shanmuga

"If you think that the latest security suites afford complete protection against malware attacks, think again. Today’s for-profit malware pushers use dedicated test labs and other increasingly professional techniques to improve their chances of infecting your computer. And the techniques they employ to outpace security software makers appear to be working.

Read the full article →

Security: Microsoft launches Security Vulnerability Research and Defense blog

by Shanmuga

"The Security Vulnerability Research and Defense blog, introduced Thursday, provides in-depth technical information and ways security professionals can protect an organization from vulnerabilities. The blog will be updated the second Tuesday of every month, called "Patch Tuesday," which is when Microsoft releases security updates for Windows and other software.

Read the full article →

Phishing: Future Phishing

by Shanmuga

"Forget the Nigerian prince. Phishing scams are moving beyond the misspelled, far-fetched ruses that clog your in-box and beg for your bank codes. In the year to come, security professionals are warning of bank code-stealing exploits that are much slicker and more convincing–hidden in guises as harmless as a banner ad on a reputable Web

Read the full article →

Malware: How Antivirus Programs (Don’t) Work

by Shanmuga

"For over 25 years, the computer community has been dealing with malicious software. These little pieces of malware started as minor pranks and theoretical explorations into subverting security controls, but soon developed into more malicious programs that have left a significant impact on the computing community. Over the last decade we have seen viruses/Trojans/worms wreck

Read the full article →

Malware: Hackers exploit Bhutto assassination

by Shanmuga

"Searches for news about Bhutto’s killing and the ensuing chaos in Pakistan listed sites pimping a bogus video coder/decoder (codec), said analysts at McAfee Inc., Symantec Corp. and WebSense Inc. For instance, WebSense found such a site simply by using "benazir" to search on Google. Meanwhile, McAfee quickly located 10 sites hosted on Blogger.com, Google

Read the full article →

Hacking: Analysts warn of Mac hack attacks

by Shanmuga

"…Apple is a victim of its own success. Savvy hackers read the same stories and watch the same television programs as the rest of us, and so they are very aware of the burgeoning popularity of Apple’s products. Hacking Windows still provides a lot more bang per bug than attacks on Apple, but the smaller

Read the full article →

Security: Security’s Biggest Train Wrecks of 2007

by Shanmuga

"The old Chinese curse says, “May you live in interesting times.” It seems a lot of IT security departments may have been cursed in 2007, because most of them have had one “interesting” year. In fact, according to one report, a whopping 85 percent of organizations have experienced at least one reportable breach in the

Read the full article →

Malware: Storm switches tactics third time, adds rootkit

by Shanmuga

"The ongoing Storm Trojan attack that began Monday has morphed again, security researchers said today, changing the malicious file’s name, shifting to new malware hosting servers, and adding a rootkit to cloak the bot code from anti-virus software.

Read the full article →

Security: IT security in 2008 not looking too great

by Shanmuga

"…according to Paul Henry, a longtime industry expert who currently wears the title of "vice president of technology evangelism" at security gateway maker Secure Computing, 2008 is shaping up to be even worse than any year in the past. (Consider that according to McAfee, 2007 was by far the worst year ever for malware exploits,

Read the full article →

Malware: Analysis of the Pushdo Trojan

by Shanmuga

"SecureWorks anti-malware guru Joe Stewart, a veteran reverse-engineer who spends the majority of his time breaking apart malware samples, said the control server that powers Pushdo is preloaded with about 421 different malware executables—waiting to be delivered to infected Windows machines.

Read the full article →

Vulnerabilities: Serious Flash vulns menace at least 10,000 websites

by Shanmuga

"Researchers from Google and a well-known security firm have documented serious vulnerabilities in Adobe Flash content which leave tens of thousands of websites susceptible to attacks that steal the personal details of visitors.

Read the full article →

Vulnerabilities: Antivirus software as a malware gateway

by Shanmuga

"Critical vulnerabilities have been found this year in virtually all antivirus products. But the danger of protective software, of all things, mutating into a gateway for pests is still largely underestimated. Antivirus software is not only the most important protection against pests arriving from the Internet, it could also be one of the most dangerous

Read the full article →

Privacy: FTC issues online ad privacy guidelines

by Shanmuga

"On the same day they cleared Google Inc.’s purchase of online advertiser DoubleClick, federal regulators said industry needs to be more transparent about how consumers’ Web-surfing habits are tracked.

Read the full article →

Privacy: Group says Ask.com privacy feature is flawed

by Shanmuga

"A group of privacy advocates is asking Ask.com to make some changes to its new AskEraser feature so that it better protects consumers’ privacy when they conduct Web searches. Ask launched its AskEraser feature last week, touting it as a tool that erases traces of a consumer’s search activity within hours.

Read the full article →

Site News: Moving to WordPress

by Shanmuga

Hello all. Hope you are all enjoying your holidays. Malware Help. Org has moved to WordPress effective immediately. The old posts and articles will continue to remain with the old software and I don’t expect any trouble in accessing them. The RSS feeds are being directed through Feedburner. There should not be any problem in

Read the full article →