Blog

Malware

Microsoft Kills Off a Botnet!

 October 4, 2011

Estimated reading time: 1 minute

In the battle against Internet Scammers, Microsoft opened a new front using the power of a U.S. court to deal a knockout blow to an emerging botnet and taking a provider of free Internet domains offline. Microsoft got the order from the U.S. District Court for the Eastern District of...

Worm Morto Spreading via RDP

 September 1, 2011

Estimated reading time: 1 minute

Our research team came across a Worm file, which upon execution wriggles its way through the systems using the RDP port. This worm is known as Morto and it is spreading very quickly in the wild. Morto uses the RDP (Remote Desktop protocol) to connect to a remote system and...

Android – RogueSPPush Malware

 August 29, 2011

Estimated reading time: 2 minutes

The growing popularity of Android and the tendency of users to store important data on their mobile phones are attracting many hackers. They are targeting users of Google Android mobile operating system with a malicious application that harvests personal information, controls the system and sends it to a remote server....

Android malware disguises itself as Google+ App

 August 18, 2011

Estimated reading time: 2 minutes

We have received a new Android malware from the Anrdoid market whose icon is like a Google+ app. This app is particularly dangerous as it gathers GPS data, call logs, text messages and even records phone calls before sending the information off to a remote server. After installation it asks...

Massive Attack targeting osCommerce sites

 August 6, 2011

Estimated reading time: 1 minute

More than 90,000 websites were found to be infected with an iframe that points to:- willysy(dot)com. The effected websites were found using the osCommerce which is an open source e-commerce package used by small vendors to manage their online shops. An iframe is a line of code inserted into a...

“TrojanBanker.Activator.a” Fake Windows Activation

 August 1, 2011

Estimated reading time: 2 minutes

A new infection has been spreading on the Internet targeting Windows users. In fact, it is a Trojan horse that pretends to be a Windows Activation program. Once infected, you will receive a professional looking screen simulating Microsoft Windows Activation which will state that you need to re-activate your Windows...

“System process at address 0x3BC3 have just crashed” Ransomware

 July 25, 2011

Estimated reading time: 1 minute

“System process at address 0x3BC3 have just crashed, please follow these steps to deactivate it from your system.” This is a fraudulent system error warning that alerts users of an erroneous system risk and then prompts users to call the premium-rate phone number mentioned to resolve the apparent issue. This...

Phone Hacking: Are we safe?

 July 19, 2011

Estimated reading time: 1 minute

Recent international news about the hacking of celebrities phones by news reporters from News of the World, a now defunct British tabloid newspaper published by News International, are doing the rounds. The allegations state that the individuals and reporters working for the newspaper are engaged in phone hacking. All this...

Harry Potter and the Deathly Hallows search results can point you to malicious web pages

 July 15, 2011

Estimated reading time: 1 minute

The latest Harry Potter movie – Harry Potter and the Deathly Hallows Part 2 – is the final adventure in the Harry Potter film series. It has generated huge interest among Harry Potter fans and Google search is flooded with requests of searches for free pirated copies of the movie....