Skip to content

Facebook users targeted by botnet spam

Friday, October 30, 2009

Facebook users have been targeted by a large-scale spam attack that informs them that their password has been reset, and that the attached zip archive contains their new password. Instead of a new password, users will find a trojan downloader, dubbed “Bredlab” or “Bredolab” by anti-virus companies.

The downloader then downloads additional malware from two servers, including fake anti-virus software, and joins the Bredolab botnet. This gives attackers full control of the PC, allowing them to steal user information or use the PC to send spam emails. One of the servers is based in the Netherlands, with the other in Kazakhstan, according to an alert on Websense, a security research company.

Security companies, including Symantec, Trend Micro, MX Lab and Websense, have issued warnings about the attack. Shunichi Imano, a securt researcher at Symantec told users on the firm’s security blog: “This variant of Bredolab connects to a Russian domain and the infected machine is most likely becoming part of a Bredolab botnet.”

Jamie Tomasello, abuse operations manager for Cloudmark, a messaging security company, said that her company has detected around 735,000 of the phony Facebook messages since Monday, and it continues to rise. “It’s a pretty high volume,” she said.

facebook-password-reset-spam

Filed in Malware | | Comments (0)

Malware included in popular blog

Tuesday, October 27, 2009

Be careful where you browse. Gizmodo, a very popular blog was dishing out malware through it advertisements. The incident was taken care of immediately but some were sure to have been infected. Below is the full story

Cyber attackers managed to place web ads containing malware on the popular gadget website Gizmodo, using a scam similar to one that fooled the New York Times into hosting malware on its website.

“Guys, I’m really sorry but we had some malware running on our site in ad boxes for a little while last week on Suzuki ads,” Gizmodo’s Brian Lam posted on Gizmodo.com Tuesday. “They somehow fooled our ad sales team through an elaborate scam. It’s taken care of now and only a few people should have been affected.”

Lam said Gizmodo didn’t recognize the malvertisements that target Windows computer because “everyone on staff is on OS X or Linux for production machines.”

The site warns that the malware file can be found as “qegasysguard.exe” on infected PCs.

In a similar attack that infected the New York Times homepage in September, the malicious ads spread a fake antivirus scareware attack to web browsers on the site before it was taken down. In that attack, the scammers bought seemingly legitimate ads that they used to insert malicious code on the site.

Web security researchers at Dasient recently reported finding more than 600,000 websites running malicious script without site owners’ knowledge

Filed in Malware | | Comments (0)

Hackers attack anti-virus industry’s reputation with scareware

Tuesday, October 27, 2009

Fake anti-virus software – also called scareware or rogueware – is a wildly successful scam that makes millions of dollars from victims who buy phony anti-virus products. But legitimate AV software also takes a hit from scareware’s success.

Trend Micro CEO Eva Chen said the cybercriminals who peddle scareware by infecting user PCs with Trojan downloaders that warn “your PC is infected” are targeting the anti-virus industry’s infrastructure and undermining its reputation as an effective tool against malware, according to IDG News Service.

“There are really two industries fighting,” Chen said in an interview with IDG News. “The hackers, they are attacking the antivirus industry’s infrastructure.”

Chen said anti-virus companies like Trend Micro fought back against the proliferation of viruses from hackers with blacklisting of malicious code. This led to anti-virus “bloat,” as the software needed to be continuously updated with new detection signatures.

Now, anti-virus companies are moving toward a “whitelisting” approach, which uses reputation-based software to recognize websites that are clean of viruses.

In the battle of cybercriminals and web security companies, the criminals have a revenue stream from scareware that makes them rich and encourages more criminal activity. ADNFCR-1765-ID-19426191-ADNFCR

Filed in Malware | | Comments (0)

Five Reasons to Upgrade to Windows 7

Tuesday, October 27, 2009

Windows 7 offers little more than incremental improvements and cosmetic enhancements over Windows Vista, and Windows Vista users may be wise to simply hold off until its time for a new PC. But the majority of users are still using Windows XP and even Vista users have reason to embrace Windows 7. Let’s look at 5 reasons why you should make the switch to Windows 7 today.

1. Vista haters. Whether you are one of the nearly 19 percent of consumers who are actually running Windows Vista and don’t like it, or part of the larger crowd of those who hate Windows Vista purely based on anecdotal stories and ‘I’m a Mac’ ads from Apple, Windows 7 is not Windows Vista.

The two most common complaints about Windows Vista are poor device driver support and annoyance over the UAC (user account control) pop-up alerts. Windows 7 has vastly superior device support, and Microsoft has modified the functionality of UAC to provide the user with more control over the alert prompts.

2. XP diehards. Security is arguably the best reason for a Windows XP user to make the switch. A lot has changed since the Clinton-era. Windows 7 has UAC, ASLR (address space layout randomization), and DEP (data execution prevention) in addition to improved operating system kernel protection. Certain versions of Windows 7 also include BitLocker and BitLocker-to-Go encryption.

There are also a number of improvements in the user interface that make it simpler and more intuitive to work with the operating system. The Windows Action Center, improved data backup, Blu-ray disc support, and jump lists stand out as good reasons to make the switch.

3. Home networking. Networking Windows-based desktops together in the home has theoretically been possible since Windows 3.11. However, it has been easier said than done and has come with certain security tradeoffs depending on which version of Windows you’re trying to network.

Microsoft is offering Windows 7 in a family pack with 3 licensed copies to allow families to upgrade all of the systems in the home at a discount. If you take advantage of that, you can also take advantage of Home Groups which greatly simplify the process of sharing data and other resources between Windows 7 systems while also providing better protection to prevent guests or unauthorized users from being able to access those same resources.

4. Media sharing. Since the days of Windows XP a lot has changed in terms of digital media. MP3’s are quickly replacing compact discs as the primary music format, and computers with TV tuners can act as DVR’s (digital video recorders).

Windows 7 makes it fairly seamless and intuitive to share audio and video media between the various devices on the network. You can access and share libraries, play audio and video files to remote systems on the network, copy recorded shows from one system to another, and more with relative ease.

5. Go with the flow. When I was a teen lusting after my first computer, I wanted a Mac. The mother of a friend of mine worked for Apple so I got to play with the first-generation Mac at his house and that is what I wanted. My mother nixed that plan because she pointed out that they used PC’s at her work, and my uncle was a programmer on a PC, and we had family and friends with PC’s. The logic was that by getting a PC I would have more resources available to me than if I went with the obscure, albeit cooler, Mac.

Fast forward a few years and I was still trying to be a non-conformist even while using a PC. I ran the IBM OS/2 operating system on an AMD-based system (before it was the household name it is now). I used a non-HP printer and a non-Hayes modem. I made sure my sound card was not from Creative Labs. What I found was that all of that really just made my life more difficult trying to find drivers and make it all play nicely together.

So– reason number 5 to embrace Windows 7 is to go with the flow. Between Windows XP, Windows Vista, and Windows 7, the Microsoft operating system dominates nearly 95 percent of the operating system market share. Now that Windows 7 is out, Microsoft and third-party software providers will be quick to drop support and development for Windows XP.

Filed in Software | | Comments (0)

Disk Encryption Software TrueCrypt 6.3 Released

Thursday, October 22, 2009

TrueCrypt is one of the most popular Open Source disk encryption software programs for the Windows operating system. It can be used to encrypt entire hard disks, partitions and to create encrypted containers on hard disks that have a specific size defined by the user. Some of the latest features that have been added include operating system encryptions and complete system encryptions. The latest version of TrueCrypt brings full support for Microsoft’s Windows 7 operating system that has been released today.

While Windows 7 support is probably the stand-out feature of the True Crypt 6.3 release there are a few others additions and changes that might be interesting to some users. TrueCrypt 6.3 adds full support for Mac OS X 10.6 Snow Leopard as well which should please Mac users who use the software program.

Another addition to this release of the disk encryption software is the “system favorite volumes” option. This comes in handy “when you have volumes that need to be mounted before system and application services start and before users start logging on. It is also useful when there are network-shared folders located on a TrueCrypt volume and you need to ensure that the network shares will be restored by the system each time it is restarted.”

The latest version of True Crypt can be downloaded from the developer’s website where it is available for all supported operating systems.

Filed in Software | | Comments (0)