Anti Spam Email Software

Hackers Turn over File Characters for Camouflaging Their Malware

admin — Sat, 17 Sep 2011 17:48:09 +0000

According to security analysts at Avast Software, one fresh attack code exploits utilities within Unicode the text representative standard of computing companies for disguising malicious executables such that they may seem as "secured" downloads having . jpg or . doc extensions. Avast calls it "Unitrix," so reported MarketWatch in news dated September 7, 2011. Essentially created for exhibiting words read from right-to-left like Hebrew or Arabic, the ‘Unicode’ turns over the written content that’s exhibited following the incorporation of concealed malicious codes like the ‘right-to-left override,’ 0x202E into the file’s label. An instance of this is of a malicious executable that concludes with "gpj. exe" but shows up to the receiver like a rather innocuous appearing "photo_D18727_Collexe. jpg. "According to head Jindrich Kubec of Avast Lab, the standard end-user when reading a file name merely glances at the end of the extension like . jpg that represents an image file but really ends up endangered. The sole method by which he can recognize a file as an executable is when he has certain extra information exhibited elsewhere on his PC alternatively incase an alert pops up whilst he attempts at running the file, the chief states additionally. ComputerWorld published this on September 7, 2011. . . . Read the rest of: Hackers Turn over File Characters for Camouflaging Their Malware

View full post on SPAMfighter News

TDSS Botnet Hired Out for Anonymous Web Operations

admin — Sat, 17 Sep 2011 13:48:18 +0000

An extremely big and advanced TDSS botnet reportedly has been overtly hiring out its contaminated computers for the benefit of anyone who wished using it. The botnet has even designed one Firefox add-on for helping clients, reports KrebsOnSecurity dated September 6, 2011. Further, according to security company Kaspersky, the TDSS botnet is welcoming payments through Visa, MasterCard, PayPal and e-currency such as Liberty Reserve and WebMoney. Researchers Igor Soumenkov and Sergey Golovanov from Kaspersky, who published a thorough study of TDSS during June 2011, explains that the malware installs numerous components among which the "socks. dll" file is noteworthy as it lets others operate the contaminated computers for doing Web surfing in secret. . . . Read the rest of: TDSS Botnet Hired Out for Anonymous Web Operations

View full post on SPAMfighter News

Latest Malware Hits Global Financial Institutions

admin — Sat, 17 Sep 2011 09:47:01 +0000

Trusteer researchers cautioned a malware variant known as Shylock which is attacking global financial institutions, as per the reports by eSecurity Planet on September 7, 2011. Contrast to the non-financial malware Ramnit which Trusteer reported in August 2011 had turned into a fraud platform; Shylock doesn’t integrate methods from the notorious Zeus Trojan. It seems criminals have custom developed monetary fraud capabilities for Shylock. Sadly, Shylock uses a better method of injecting code into browser processes. This method is generally used to insert rogue fields into authentic forms with the objective of stealing monetary data. . . . Read the rest of: Latest Malware Hits Global Financial Institutions

View full post on SPAMfighter News

SpyEye Leads Botnet in First Half of 2011

admin — Sat, 17 Sep 2011 05:46:28 +0000

Though, DIY crimeware kits like Zeus and Neosploit still tops malicious malware, but SpyEye has scored the highest during the first half of 2011, reports Damballa in its survey, on eWeek on September 7, 2011. The Damballa botnet operation generated by the reputed SpyEye do-it-yourself (DIY) construction set bagged the topmost position in 2011 from being the 10th scorer in 2010. The report further revealed that 8 out of top 10 botnet operators have employed off-the-shelf kits and altered the code or even integrated them with new kits eventually for articulating such campaigns. . . . Read the rest of: SpyEye Leads Botnet in First Half of 2011

View full post on SPAMfighter News

PandaLabs Spots a New Ransomware

admin — Fri, 16 Sep 2011 21:44:14 +0000

A new ransomware is in circulation for trapping users into paying a handsome ransom for the sake of using a fraud version of the Microsoft’s operating systems, claimed security experts at security firm, PandaLabs. Through this scam, the victimized are extorted to pay a lofty ransom as the mail alleges the victim of using pirated version of Windows. In actuality, the user’s computer is hacked while following unavoidable instructions through malicious e-mails or through peer-to-peer (P2P) networks. To make the matter more credible to innocent recipients, the hackers even used Microsoft’s logo and the notorious black screen used by Microsoft on forged copies of Windows that are caught while validating counterfeit software. . . . Read the rest of: PandaLabs Spots a New Ransomware

View full post on SPAMfighter News

Child Porn Fraud Compromises Russian Computers

admin — Fri, 16 Sep 2011 17:46:02 +0000

According to BitDefender, cyber-criminals in Russia, while making untrue charges about child pornography, are adding actual software harm within one fresh scam, which tries wringing 500 rubles ($17) out of victimized individuals. MalwareCity. com published this on September 5, 2011. The software damage culminates from a malicious Trojan named Trojan. Agent. ARVP that’s disseminated through innocuous-appearing web-links. When contaminated, the victim gets an alert that there are evidences of child pornography on his PC; therefore, he has to make a payment as fine. Further, the demand is hastened with the Trojan malware effectively locking the PC that can be restored only after paying the ransom. However, the problem doesn’t end there. The Trojan, in addition to alerting the victim, compromises his PC, exhibiting a message, which covers the screen except 10% of it as also stops the systems’ OS from functioning appropriately, BitDefender says. . . . Read the rest of: Child Porn Fraud Compromises Russian Computers

View full post on SPAMfighter News

Web Directories Website takes onto Incognito Malware Kit; Websense

admin — Fri, 16 Sep 2011 13:46:58 +0000

Web Directories, an online site created for assisting website owners and webmasters hunt appropriate directories, is under hackers’ control as it is diverting visitors onto websites hosting an exploit toolkit called Incognito, caution investigators at Websense the security company. The website, which is a highly visited one within Asia and particularly within India, gets massive traffic everyday; hence it’s an ideal conduit to launch malicious software assaults, the security company states. Meanwhile, for the attack, the hackers injected one iFrame inside the top page’s source code within the website; consequently, users on that page are diverted onto another one, which by doing the same takes them onto an ultimate web-page that harbors the Incognito. . . . Read the rest of: Web Directories Website takes onto Incognito Malware Kit; Websense

View full post on SPAMfighter News

Symantec Identifies Fresh Spam Run Surrounding iPhone 5

admin — Fri, 16 Sep 2011 09:48:03 +0000

According to Symantec the security company, one fresh spam run that attempts at cashing in on the soon to be launched iPhone 5 is presently circulating online. The company notes that ‘Apple’ enthusiasts are eagerly looking forward to the upcoming gadget, particularly following the earlier make that accomplished enormous success. Taking advantage of this, spammers tell Apple users that they do not require waiting till there takes place the formal launch, by dispatching them e-mails captioned, "You have been selected to receive an iPhone 5. "But when anybody clicks on the web-link embedded on the e-mail, he’s diverted onto a bogus site containing a survey, which asks certain interesting questions in connection with the iPhone. . . . Read the rest of: Symantec Identifies Fresh Spam Run Surrounding iPhone 5

View full post on SPAMfighter News

Potential Phishing E-Mails Should be Handled with Suspicion, Urges Trend Micro

admin — Thu, 15 Sep 2011 21:48:03 +0000

According to Trend Micro, a renowned security company, online operators who think a phishing campaign may have attacked them are suggested for verifying with friends prior to clicking on potentially malicious electronic mails, published BCS on September 5, 2011. Specifically, Trend Micro’s security, research and communications director Rick Ferguson in charge of the EMEA (Europe, Middle East and Africa) region has recommended the general public that they should treat e-mails from unknown sources, which may be presenting an award, with suspicion for stopping phishing assaults. HostWay published this on September 5, 2011. The director further recommends people that they should twice verify the e-mails’ source if they seem to be from friends. . . . Read the rest of: Potential Phishing E-Mails Should be Handled with Suspicion, Urges Trend Micro

View full post on SPAMfighter News

Over 10% of Movie Posts on Facebook Represent like Jacking Assaults, Discovers Symantec

admin — Thu, 15 Sep 2011 17:46:53 +0000

Symantec the security firm lately estimated that a maximum of 15% of distinct movie files posted on Facebook were likejacking assaults. EBrand published this dated September 6, 2011. Derived from the phrase ‘clickjacking,’ ‘likejacking’ involves getting computer-users for clicking a link that leads to an unintended invisible activity. In addition to causing an awkward feeling due to the content added to the victim’s profile, likejacking also helps scammers in filching Internet account details alternatively contaminating computers with malicious programs. As per Symantec, its researchers have identified some three in twenty of the movie files added to Facebook as likejacking assaults in which fraudsters attempted at duping end-users into finding certain content attractive devoid of their knowledge or permission. . . . Read the rest of: Over 10% of Movie Posts on Facebook Represent like Jacking Assaults, Discovers Symantec

View full post on SPAMfighter News