Blog

Malware

“Battery Doctor” Android Scareware

 October 24, 2011

Estimated reading time: 2 minutes

A new “scareware” targeting mobile devices running Google’s Android operating system claims that it has the ability to recharge the battery, but in reality it is designed to steal information. When the program first executes, the overview window shown below appears. As you can see, it shows information about the...

New Twitter phishing attack

 October 19, 2011

Estimated reading time: 2 minutes

A Twitter phishing attack is spreading rapidly today and is attempting to obtain Twitter login details via Direct Messages. If you receive a message – “Found a funny picture of you!” which is linked to a website called “mugweb.ru”, do not click on the link. Clicking the link takes you...

Netflix application looks alike Android Malware

 October 17, 2011

Estimated reading time: 2 minutes

We have received a new malicous Android malware which looks like a genuine Netflix application and which can be used to steal Netflix account information. This is a classic case of trojanzied malware wherein the fake application, which is identical to the genuine application, lures users to enter their Netflix...

Malicious QR code used for spreading Android malware

 October 7, 2011

Estimated reading time: 2 minutes

Android malware writers have found a new and convenient way of delivering malware to users. This method makes use of malicious QR codes. QR (Quick Response) codes are a type of matrix barcode which contains encoded forms of data. They can also be used to store URL information. Most people...

Microsoft Kills Off a Botnet!

 October 4, 2011

Estimated reading time: 1 minute

In the battle against Internet Scammers, Microsoft opened a new front using the power of a U.S. court to deal a knockout blow to an emerging botnet and taking a provider of free Internet domains offline. Microsoft got the order from the U.S. District Court for the Eastern District of...

Worm Morto Spreading via RDP

 September 1, 2011

Estimated reading time: 1 minute

Our research team came across a Worm file, which upon execution wriggles its way through the systems using the RDP port. This worm is known as Morto and it is spreading very quickly in the wild. Morto uses the RDP (Remote Desktop protocol) to connect to a remote system and...

Android – RogueSPPush Malware

 August 29, 2011

Estimated reading time: 2 minutes

The growing popularity of Android and the tendency of users to store important data on their mobile phones are attracting many hackers. They are targeting users of Google Android mobile operating system with a malicious application that harvests personal information, controls the system and sends it to a remote server....

Android malware disguises itself as Google+ App

 August 18, 2011

Estimated reading time: 2 minutes

We have received a new Android malware from the Anrdoid market whose icon is like a Google+ app. This app is particularly dangerous as it gathers GPS data, call logs, text messages and even records phone calls before sending the information off to a remote server. After installation it asks...

Massive Attack targeting osCommerce sites

 August 6, 2011

Estimated reading time: 1 minute

More than 90,000 websites were found to be infected with an iframe that points to:- willysy(dot)com. The effected websites were found using the osCommerce which is an open source e-commerce package used by small vendors to manage their online shops. An iframe is a line of code inserted into a...

“TrojanBanker.Activator.a” Fake Windows Activation

 August 1, 2011

Estimated reading time: 2 minutes

A new infection has been spreading on the Internet targeting Windows users. In fact, it is a Trojan horse that pretends to be a Windows Activation program. Once infected, you will receive a professional looking screen simulating Microsoft Windows Activation which will state that you need to re-activate your Windows...