Neosploit, a crimeware kit thought by some security experts to have been retired, has reared its ugly head again, and may have been used in one of the biggest organized crimeware attacks in history.  Ian Amit, a security researcher investigating the possible resurrection of the notorious kit, discovered a server hosting the login credentials of more than 200,000 servers in more than 86 countries around the world.  According to Amit, he has uncovered evidence suggesting that 80,000 legitimate web sites from dozens of countries have been infected with the malware, which in turn infect visitors to these sites with various Trojans and other malware.

Last April, the neosploit development team had announced that it was discontinuing support and development of the kit, despite the success of the “product,” citing concerns with the ongoing viability  of the business.  Now it appears that this statement was a ruse designed to buy the gang some time to perfect the next release of the kit.  The latest discoveries by Amit and his crew indicate that a new version was used to compromise the data of millions of users across hundreds of thousands of systems.  These include major overseas weapons manufacturers, the U.S. Postal Service, Fortune 500 companies, universities, and government departments.

Amit is working with US-CERT (a department of Homeland Security) as well as other local and international law enforcement agencies to investigate and shut down the servers operated by these criminals, and to notify and work with infected enterprises to clean up their systems.

Author: Christopher

(1 votes, average: 5 out of 5)

 Loading ...

Here is September’s most widespread malware according to Kaspersky Security Network. The most interesting thing the previous leader Trojan.Win32.DNSChanger.ech is nowhere to be found.

Source: Kaspersky Lab

Author: Christopher

(1 votes, average: 5 out of 5)

 Loading ...

Long considered to be malware and a threat to privacy and security, keylogging software has been found on Microsoft Internet Explorer 8 and Google Chrome. However, these keyloggers were not placed there by hackers—the companies put them there on purpose.

Google and Microsoft added keyloggers to their browsers in an attempt to improve searches for their users. Keylogging allows the browser to determine common or most likely searches based on the user’s past usage. They also store user log-ins and passwords for the user’s convenience, track activity to help determine the cause of errors, and employers use keyloggers to track employee productivity. While this is all very useful for the companies doing the tracking, it makes anti-malware protection more complicated, because the malware applications like Kaspersky AntiVirus cannot simply delete all keyloggers as they have up until this point.

Cyber criminals use keylogging to capture and record each keystroke you make to steal personal information like user IDs, passwords and anything else they can use to steal your identity. However, some companies are now using keylogging for more legitimate purposes.

In order to determine the best course of action regarding keyloggers, Kaspersky Labs, an industry leader in anti-malware protection, is seeking legal counsel. While they do not want to accuse legitimate companies of wrongdoing, they still want to provide the best and most comprehensive anti-malware protection on the market. If it were up to Eugene Kaspersky, CEO of the company, users would not stand for these privacy-invading programs to be present on their browsers and request the companies to remove them. “That would save us a lot of work, and we already have plenty to do,” he told Computer Weekly. Google is already reacting to the public’s aversion to keylogging by promising to keep the information anonymous, but Microsoft has made no such announcements as of yet.

What it all comes down to is this: is the convenience provided by keylogging worth compromising the security of your computer?

Author: Christopher

(1 votes, average: 5 out of 5)

 Loading ...

In its second month of compiling data, the new Kaspersky Security Network (KSN) technology revealed some significant changes amongst the most widespread malicious programs.

The first table is based on statistics provided by our 2009 antivirus products. This table shows the malicious programs detected on users’ computers.

 1              Trojan.Win32.DNSChanger.ech
 2    New    Trojan.Win32.Pakes.kab
 3    New    Trojan-Downloader.Win32.Agent.xqz
 4    New    Trojan-Downloader.Win32.Agent.yaw
 5    New    Trojan-Downloader.Win32.Agent.xws
 6    New    Trojan-Downloader.Win32.Small.zie
 7    New    Trojan-Downloader.Win32.Agent.xna
 8    New    Trojan-Downloader.JS.Agent.chk
 9    New    Trojan.Win32.Agent.tfc
10    +6      not-a-virus:AdWare.Win32.BHO.ca
11    New    not-a-virus:AdWare.Win32.Agent.cp
12    -3      Trojan.Win32.Agent.abt
13    New    Trojan-Dropper.Win32.Agent.tbd
14    New    not-a-virus:AdWare.Win32.BHO.sc
15    New    not-a-virus:AdWare.Win32.BHO.vp
16    New    Trojan-GameThief.Win32.OnLineGames.sjbb
17    New    Trojan-Clicker.Win32.Agent.bkd
18    +1      Trojan.Win32.Chifrax.a
19    New    Trojan.RAR.Qfavorites.a
20    New    Trojan-GameThief.Win32.OnLineGames.sgpq

A total of 28940 different malicious and potentially unwanted programs were detected on users’ computers in August. That is an increase of more than 8000 on July’s figures and points to a significant increase in the number of in-the-wild threats.

Source: Kaspersky Lab

Author: Christopher

(1 votes, average: 5 out of 5)

 Loading ...

As Dan Kaminsky recently demonstrated at the Black Hat conference in Las Vegas, the DNS security flaw presents a serious vulnerability.  In case there was previously any doubt, he [...] Continue Reading…

Author: Christopher

(2 votes, average: 5 out of 5)

 Loading ...

In February, Pfizer, the world’s leader in biomedical and pharmaceutical research, reported stolen a laptop computer which carried classified information for 800 contractors as well as current and past [...] Continue Reading…

Author: Christopher

(1 votes, average: 5 out of 5)

 Loading ...