Malware Detection Goes Hybrid
November 8, 2008 by Shanmuga
Filed under Malware, Recommended Reads
"What do we do about malware? The long term solution, at least for managed networks like enterprises, may be whitelisting. But in the meantime we’re still drowning in new variants every day. In the 2009 generation of their products Symantec is trying a new approach: file reputation.
Read more
If you enjoyed this post, make sure you subscribe to my RSS feed!
Symantec Acquires Windows Security Vendor PC Tools
"Symantec has signed a definitive agreement to acquire PC Tools, a provider of security and utilities software for Microsoft Windows. Financial terms of the deal, which is expected to close by the end of 2008, were not disclosed. Headquartered in Australia, PC Tools has offices in the United States, United Kingdom, Ireland and the Ukraine.
Read more
If you enjoyed this post, make sure you subscribe to my RSS feed!
Spam: Why spam isn’t going away soon
“Recently, Symantec said in its February 2008 State of Spam report that 78.5 percent of all e-mail is spam; they also said most of that is now coming from Europe. That’s a change from previous reports that had suggested servers in North America were responsible. What the Symantec report doesn’t explicitly state is that much of the European spam doesn’t come from individuals sitting at their desks pumping out lists. Europe is one of the hotbeds for the Storm worm botnet, notorious for automatically co-opting its victims into spam relays.
Read more
If you enjoyed this post, make sure you subscribe to my RSS feed!
Pharming: Drive-by Pharming in the Wild
"We recently saw instances of actual attackers attempting a basic version of drive-by pharming. Given the simplicity of the attack and the potential widespread implications, we always felt that it would simply be a matter of time before it happened. The building blocks have been out there for some time and anyone with sufficient familiarity could easily put them together. I’ve said before and I’d like to reiterate that the technical details of the attack are not nearly as noteworthy as the potential widespread implications.
Read more
If you enjoyed this post, make sure you subscribe to my RSS feed!
Malicious Code: Trojan.Silentbanker
"The scale and sophistication of this emerging banking Trojan is worrying, even for someone who sees banking Trojans on a daily basis. This Trojan downloads a configuration file that contains the domain names of over 400 banks. Not only are the usual large American banks targeted but banks in many other countries are also targeted, including France, Spain, Ireland, the UK, Finland, Turkey—the list goes on.
Read more
If you enjoyed this post, make sure you subscribe to my RSS feed!
Malware: Hackers exploit Bhutto assassination
"Searches for news about Bhutto’s killing and the ensuing chaos in Pakistan listed sites pimping a bogus video coder/decoder (codec), said analysts at McAfee Inc., Symantec Corp. and WebSense Inc. For instance, WebSense found such a site simply by using "benazir" to search on Google. Meanwhile, McAfee quickly located 10 sites hosted on Blogger.com, Google Inc.’s blog service, that were spreading the fake codec.
Read more
If you enjoyed this post, make sure you subscribe to my RSS feed!
