Subscribe to Malware Help RSS Feed RSS Feed - Subscribe to Malware Help. Org on Twitter Follow on Twitter - Malware Help YouTube Channel YouTube Channel - Subscribe to Malware Help by Email Subscribe by Email

Recommended Reads

Recommended Reads – 26 March 2011

by Shanmuga

FireEye Malware Intelligence Lab: An overview of Rustock – “As you might have seen in the news, the largest spam botnet, Rustock, was recently taken down in a collaborated, coordinated way. All parties involved were bound by a sealed federal lawsuit against the John Doe’s involved, but now that the case has been unsealed, it’s

Read the full article →

Recommended Reads – 19 March 2011

by Shanmuga
Thumbnail image for Recommended Reads – 19 March 2011

Following the massive earthquake and tsunamis in Japan late last week, people around the world have been moved to donate money to help aid efforts, many through Web-based credit card donations and text messaging. With instant giving enabled through mobile phones in particular, it’s important to make sure your donation is going to a credible

Read the full article →

Recommended Reads – 05 March 2011

by Shanmuga
Thumbnail image for Recommended Reads – 05 March 2011

Before You Install Windows 7 Service Pack 1 — Krebs on Security – "Microsoft is now offering Windows 7 users “Service Pack 1,” a bundle of security updates and minor feature improvements. If you’re thinking about installing this update, read on for a few caveats and tips that may change your mind. " Your guide

Read the full article →

Crimeware: A new round of confrontation begins…

by Shanmuga

"The article examines the current state of malware attacks on clients of financial organizations, and methods for combating such attacks more effectively. More often than not, the attacks on clients of financial organizations follow a well-trodden path: the search for a suitable victim and the infection of their computer, the theft of their online banking

Read the full article →

Glype proxy may not cloak your identity

by Shanmuga

"A widely used proxy service thought to provide anonymous Web surfing and used to skirt network administrator bans on access to sites like Facebook frequently reveals sensitive information about its users, according to a Swiss security researcher.

Read the full article →

Introduction to Website Parasites

by Shanmuga

"Wikipedia defines Parasitism as a “type of symbiotic relationship between organisms of different species in which one, the parasite, benefits from a prolonged, close association with the other, the host, which is harmed.” This definition perfectly describes relationships between hackers and legitimate websites. As it often happens in real life, the host (legitimate website and

Read the full article →

ZeuS on the Hunt

by Shanmuga

"One of the most prolific threats to be found on computers around the world is the ZeuS Trojan. ZeuS became one of the most widespread and top-selling spyware programs on the Internet’s black market because using it to steal online data is so easy. The Trojan helps cybercriminals gain access to everything that the user

Read the full article →

Bank of America Employee Charged With Planting Malware on ATMs

by Shanmuga

"A Bank of America worker installed malicious software on his employer’s ATMs that allowed him to make thousands of dollars in fraudulent withdrawals, all without leaving a transaction record, according to federal prosecutors. Rodney Reed Caverly, 37, was a member of the bank’s IT staff when he installed the malware. The Charlotte, North Carolina, man

Read the full article →

Google engineer posts sample code to show how to bypass DEP in Windows

by Shanmuga

"The disclosure of a new exploit technique that bypasses an important Windows security feature may result in more successful attacks against Microsoft’s newer operating systems, researchers said today.

Read the full article →

Too many passwords?

by Shanmuga

"How many web sites do you log into? Your bank? Facebook, Myspace and any number of other social networking sites? Auction sites? Shopping sites? Maybe lots of others too. Every site, of course, requires you to create a password. And if the site is serious about security, it may even set certain rules. For example,

Read the full article →

Antivirus software often foxed by malicious URLs

by Shanmuga

"Many malicious URLs are now invisible to URL filters and antivirus software alike, a web security company has found after conducting its own tests.

Read the full article →

Microsoft: Don’t press F1 key in Windows XP

by Shanmuga

"Microsoft told Windows XP users today not to press the F1 key when prompted by a Web site, as part of its reaction to an unpatched vulnerability that hackers could exploit to hijack PCs running Internet Explorer (IE). In a security advisory issued late Monday, Microsoft confirmed the unpatched bug in VBScript that Polish researcher

Read the full article →

Q and A: Malware analysis

by Shanmuga

"Greg Hoglund is the CEO and Founder of HBGary. He has been a pioneer in the area of software security. After writing one of the first network vulnerability scanners, he created and documented the first Windows NT-based rootkit, founding rootkit.com in the process. Greg went on to co-found Cenzic through which he orchestrated numerous innovations

Read the full article →

Websites offered free anti-hijack scans

by Shanmuga

"Web admins and owners are being offered a free service that will scan their sites for malware hijacks, alerting them automatically if malicious code is found. The QualysGuard Malware Detection, launched as a beta this week, uses a combination of ‘static’ and behavioural analysis to take a closer look at web pages under a given

Read the full article →

Microsoft investigates unpatched flaw that affects users running IE7 and IE8

by Shanmuga

"Microsoft on Sunday confirmed it’s investigating an unpatched bug in VBScript that hackers could exploit to plant malware on Windows XP machines running Internet Explorer (IE). The flaw could be used by attackers to inject malicious code onto victims’ PCs, said Maurycy Prodeus, the Polish security analyst with iSEC Security Research who revealed the vulnerability

Read the full article →

Microsoft says malware causing blue screen crashes

by Shanmuga

"A hard-to-detect rootkit may be causing Windows XP systems to crash following Microsoft’s latest security updates. Windows users began flooding Windows support forums this week, saying that their computers had been rendered unusable with a blue-screen-of-death (BSOD) error after installing Microsoft’s February security updates, released Tuesday. On Thursday, Microsoft stopped shipping the MS10-015 update, which

Read the full article →

Rogue antivirus program comes with tech support

by Shanmuga

In an effort to boost sales, sellers of a fake antivirus product known as Live PC Care are offering their victims live technical support. According to researchers at Symantec, once users have installed the program, they see a screen, falsely informing them that their PC is infected with several types of malware.

Read the full article →

Chromium browser remixed as a security Dragon

by Shanmuga

"Windows security software vendor Comodo has added its contribution to the short list of Chromium-based browser remixes that have sprung up in the wake of Google Chrome’s success. Best known for its firewall software, Comodo’s Chromium browser is called Dragon, and it promises better security features than those available in Google Chrome. It is the

Read the full article →

The botnet ecosystem

by Shanmuga

"Botnets are networks of computers infected by malicious programs called bots.Bots allow cybercriminals to take control of a compromised machine and use its resources for their own goals – distributing spam, launching DDoS attacks, scams etc. Since the advent of botnets, the number of cybercrimes has increased enormously. However, botnets are not just a tool

Read the full article →

Rogue antivirus lurks behind Google Doodle searches

by Shanmuga

"It’s the latest example of just how good scammers have become at manipulating Google search results. For months now, they’ve followed Google’s Trending Topics section and then used search engine optimization techniques to push hacked Web pages up to the top of Google’s search results, security experts say. They do this by flooding hacked pages

Read the full article →

Adobe Flash security woes: How to protect yourself

by Shanmuga

"Adobe’s Flash Player software is on 99 percent of Internet-connected desktops, offering up multimedia and video capabilities on a multitude of popular Web sites such as YouTube. But the Adobe Flash platform has been beset by a rash of security problems that give intruders potential access to computers running the software.Issues have included one recent

Read the full article →

Security researchers continue hunt for Conficker authors

by Shanmuga

"There are several ongoing investigations attempting to find the authors of the Conficker botnet, one of the fastest spreading worms in history, but those responsible for the worm have proven elusive. Security expert Mikko Hyppönen, chief research officer at F-Secure Corp., said he is aware of several ongoing investigations, but was asked specifically not to

Read the full article →

Fake antivirus malware gets hoax Microsoft endorsement

by Shanmuga

"A new scareware package tries to sell bogus antivirus software to its victims using an apparent endorsement of the software by Microsoft. A variant of the infection that urges users to buy DefenceLab antivirus software now also directs them to a Microsoft support page where a display describes a new threat and recommends using DefenceLab

Read the full article →