21 matches found
Hacker reported vulnerability in Kaspersky website; Demonstrated malware spreading technique
The cyber Security Analyst 'Ebrahim Hegazy' @Zigoo0 Consultant at Q-CERT has found an "Unvalidated Redirection Vulnerability" in the website of the giant security solutions vendor "Kaspersky". Ebrahim, who found a SQL Injection in "Avira" website last month, this time he found a Unvalidated...
Predictive Security Analytics Tool Available Free to Researchers
SAN JUAN, Puerto Rico – Dan Hubbard has lately been a regular face at a lot of big data meet-ups. He’s also often been the lone security face at these meet-ups, which are dominated by analytics, search, social media and advertising professionals. That may change soon for the CTO of DNS and securi...
FTC Gives Refunds to Rogue Antivirus Victims
The Federal Trade Commission FTC is sending reimbursement checks to more than 300,000 people victimized by a rogue antivirus scam. According to the FTC, the checks are the result of the settlement between the agency and several defendants named in a complaint the FTC filed in 2008. As part of the...
uTorrent Site Compromised, Client Replaced With Scareware
Attackers on Tuesday hacked the uTorrent.com service, replacing the uTorrent software download with a rogue antivirus program that demanded payment from users in order to remove non-existent malware from their machines. The attack occurred Tuesday just after 4 a.m. Pacific time and the rogue AV...
Google Search Now Displaying Warning About Malware Infections
Google is taking the unusual step of displaying a message at the top of its search results pages for some users, alerting them to the fact that their computers may be infected with malware. The action is the result of an investigation in which the search giant discovered that some malware-infecte...
Scareware Takedown By FBI, Int'l Authorities Results in Two Arrests
The FBI has made a major dent in the huge scareware and rogue antivirus problem that has been plaguing Internet users for years now, arresting two people and seizing dozens of computers, servers and bank accounts as part of a large-scale coordinated operation in twelve countries. The operation,...
Widespread LizaMoon Web Attacks Push Rogue Antivirus
Security firms are warning about a fast-spreading Web based attack that has been linked to the installation of rogue anti virus products. More than 300,000 Web sites have been compromised in a campaign dubbed “LizaMoon,” and are now serving up malicious links to rogue antivirus products, accordin...
Step 7: Practice Safe Browsing
Rogue antivirus and scareware typically requires user interaction to get a toe hold on victims’ computers. Users can protect themselves by steering clear of suspicious or merely opaque links such as the shortened links common on Twitter and other social media platforms. Beware of pop-up ads warni...
Step 6: Update and Patch
With your machine disinfected, take a few moments to update your operating system software and any third party applications to their latest and most secure version. Rogue antivirus and scareware programs are usually delivered as drive by downloads spawned by malicious Web sites. These leverage...
Where to Begin
Scareware is one of the most pernicious online threats. For those who have been infected, it is also one of the hardest to forget. Rogue antivirus software and other forms of scareware hold victims hostage: shutting off access to their desktop and most of the Internet, disabling security software...
Fake AVG: Scam Software Cops Name and Logo of Real AV
We’ve noted for a while that the practices of rogue antivirus software have started to mimic those of legitimate antivirus software vendors. But a new version of FakeXPA scareware take things a bit further: posing as a legitimate commercial AV package, AVG Antivirus 2011. Microsoft’s Malware...
Microsoft botnet take down will not stop spam !
A prominent security researcher said he doubts Microsoft's take down of the Waledac botnet would have any impact on spam levels, as the company claimed. "Waledac just is not a hugely prolific spammer," said Joe Stewart, director of malware analysis at SecureWorks and a noted botnet researcher. "S...
Protozoids Tap Veterans Day Sentiment To Push Malware
How will you know when your dabbling in pharmaceutical spam and affiliate marketing hi jinks have truly poisoned your soul and stolen the last shreds of humanity you had left? Well, probably around the time that you find yourself taking advantage of public sentiment for the sacrifices of our men...
Midterm Election Buzz Fuels Rogue AV Attacks
Interest in the U.S. midterm elections is being used to lure Web surfers to malicious Web pages that are pushing rogue antivirus programs, according to security firm Websense. With voter interest running high in the U.S., Web searches for hot terms like “midterm election polls,” “2010 midterm...
Pulling Back the Curtain on Rogue AV Tech Support
We’ve blogged a few times about rogue AV, explaining how search engines have been abused using Black Hat Search Engine Optimization techniques to redirect web surfers to rogue AV websites. Recently, we’ve noticed that the rogue AVs being spread are all equipped with an “Online Support” button. Se...
MS Warns of Rogue Antivirus 'Security Essentials'
Microsoft has warned Windows users to be on their guard against a piece of rogue antivirus software passing itself off as Microsoft Security Essentials. Security Essentials 2010 is a piece of software Microsoft said installs a fake virus scanner on your machine andmonitors and blocks processes it...
Hackers Using XSS to Insert iFrames in New Attack
In a new twist on a couple of old attack techniques, hackers have begun using cross-site scripting to inject malicious iFrames onto some Web sites, redirecting users to malicious sites designed to install unwanted software. The new attack, which leads to the installation of a rogue antivirus...
Rogue Antivirus Scams Making Moola
The FBI Internet Crime Complaint Center said rogue antivirus writers have raked in $150 million from users. Read the full article. Computerworld...
The Evolution of Rogue Anti-Virus
We often write about the fact that cybercriminals constantly change their tactics to take account of developments in the security and software industries. And I just came across a great example of this: it shows how the people behind rogue antivirus solutions adapt their “products” to exploit...
Phishing Sites, Rogue AV Skyrocket in 2009
From SearchSecurity.com Robert Westervelt Phishing websites and rogue antivirus programs increased precipitously in the first half of 2009, according to a new report issued by the Antiphishing Working Group. The number of unique phishing websites reached a high of nearly 50,000 in June, the secon...