Blog

Malware

DNSChanger server shutdown date extended to 9th July

 March 7, 2012

Estimated reading time: 1 minute

The possible Internet outage on 8th March is avoided as the federal judge has agreed to allow 120 days of extension for organisations and individuals to clean systems of the DNSChanger Trojan. This decision was taken late yesterday. As the earlier 4 month deadline of 8th March arrived, it was...

No Internet starting March 8? Not really!

 February 22, 2012

Estimated reading time: 1 minute

There are news stories going around that there will be a complete blockage of the Internet from 8th march. Well this is not the complete and true story. Only the users who are affected with the ‘DNS Changer’ trojan will be facing the Internet blockage and not all the users....

NPAV – Net Protector AntiVirus truth exposed

  • 4
    Shares
 January 30, 2012

Estimated reading time: 2 minutes

Since the last 3-4 days we have come across a lot of cases of reported infection of W32.Xpaj virus and surprisingly, found Net Protector Antivrus (NPAV) installed on the computers of all those cases. We were surprised to find the connection and were attempting to find the connection between this...

Hijacking Facebook Credentials by Ramnit

 January 30, 2012

Estimated reading time: 2 minutes

The Ramnit Virus, which infects Windows executable and HTML files, spreads through removable media and was first detected more than 18 months ago. The Ramnit Virus use the tactics from the Zeus financial malware platform, which was discovered around 2007, and which has the ability to inject HTML code into...

Beware of Fake FedEx Tracking Report Notification

 January 20, 2012

Estimated reading time: 1 minute

Last week some of our customers informed us that they are receiving spam emails claiming to be from FedEx carrying the subject line: “FedEx Shipment Notification”. The email looks like this: The spam email contains a Zip file. Upon extraction, it presents an executable file named “FedEx_Tracking_Report_Notification_ID.exe”. This is a...

Fake emails – American Airlines

 January 18, 2012

Estimated reading time: 1 minute

I have come across some significant activity related to spam email messages that are pretending to be from American Airlines. This email misguides the user that his purchased ticket scan copy is attached with this email and asks him to print it for use. The email has “Ticket.zip” as an...

Phishing Campaign Using Spoofed US-CERT Emails

 January 13, 2012

Estimated reading time: 1 minute

Phishers are using spoofed email addresses from the US Computer Emergency Response Team (US-CERT) to trick recipients into downloading a malicious executable file. The emails are sent from the spoofed email address soc@us-cert.gov with the subject line: “Phishing incident report call number: PH0000003863970”. The fake warning claims US-CERT has opened...

On-going Phishing Attacks on Email Services

 January 13, 2012

Estimated reading time: 2 minutes

A series of phishing attacks aimed at stealing Gmail and Yahoo user login information is on the rise. I believe that the attacks were part of a larger campaign aimed at stealing user data and compromising computer systems. If the users enter the login details on such phishing links, then...

Top 10 Malware Families of 2011

 December 31, 2011

Estimated reading time: 2 minutes

Today is the last day of the year and the right time to list out the top 10 Malwares of this year. The list below is based on our report which is generated from the automated feedback that we collect from Quick Heal installations across India. Top 10 Malware Families...

Top 10 Malware Families (Mobile) of 2011

 December 31, 2011

Estimated reading time: 2 minutes

Today is the last day of the year and the right time to list out the top 10 Android Malware of this year. Below list is based on our report which is generated from the automated feedback that we collect from Quick Heal installations across India. Top 10 Malware Families...