Email-Worm.Win32.Pluto.b Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/60a7d5e2d446110d84ef65f6a37af0eb.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Email-Worm.Win32.Pluto.b Vulnerability: Insecure Permissions Description: The malware writes a dir a...

Email-Worm.Win32.Trance.a Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/ca18a07560efa0308827dc972351301f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Email-Worm.Win32.Trance.a Vulnerability: Insecure Permissions Description: The malware creates a dir...

Email-Worm.Win32.Sircam.eb Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/cd88a9b686acd9ccf23dba8d248129b4.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Email-Worm.Win32.Sircam.eb Vulnerability: Insecure Permissions EoP Description: Sircam.eb creates a...

Email-Worm.Win32.Agent.gi Remote Stack Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/74e65773735f977185f6a09f1472ea46.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Email-Worm.Win32.Agent.gi Vulnerability: Remote Stack Buffer Overflow - UDP Datagram Description:...

Threat Roundup for August 2 to August 9

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Aug. 2 and Aug. 9. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

New Cridex Banking Trojan variant Surfaces with Self-Spreading Functionality

In an effort to infect large number of people, cybercriminals have developed a new malicious software program that contains functionality to spread itself quickly. Geodo, a new version of the infamous Cridex also known as Feodo or Bugat banking information stealing Trojan works in conjunction wit...

Cridex Variant Geodo Part Trojan, Part Email Worm

A knockoff of the Cridex banking Trojan has surfaced with an appetite for more than online banking credentials. Seculert has called this one Geodo—a take on another of Cridex’s many aliases Feodo—and has confirmed that the malware comes with an efficient self-replicating feature borne of stolen...

Here You Have Email Worm Detection

The remote Windows host has files present on the system that indicate that the 'Here You Have' email worm is present. A user of this host likely received an email containing a malicious '.scr' screen saver file and infected the host as a result of running this file. This malware has several...

New Email Worm Turns Back the Clock on Virus Attacks

There appears to be an actual email worm in circulation right now, using the tried-and-true infection method of sending malicious emails to all of the names in a user’s email address book. As of Friday afternoon, the malicious files had been deleted from the remote server in the UK that was servi...

Update Protection against Recent Malware Threats (21-Oct-09)

The update includes new protections against 11 recent malware threats: Backdoor: Teevsock CRogue-Software: Antivirus Pro 2010Rogue-Software: NoAdwareRogue-Software: Trust WarriorTrickler: Trojan-Downloader.Win32.Agent.cqcvTrickler: TrojanDownloader.Win32.Caxnet.ATrickler:...