As already mentioned in the previous blog post about Flame, the volume of its code and functionality are so great that it will take several months for a complete analysis. We’re planning on continually disclosing in our publications the most important and interesting details of its functionality as we reveal them. Read Full Article
So, Foncy is dead. And what is Mania? Mania is an SMS Trojan which currently only targets users of Android from France and its code is very similar to the code of the Foncy malware. Read Full Article
Flame is a sophisticated attack toolkit, which is a lot more complex than Duqu. It is a backdoor, a Trojan, and it has worm-like features, allowing it to replicate in a local network and on removable media if it is commanded so by its master. Read Full Article
In the first part of our analysis we looked at the distribution and infection mechanisms used by the Flashfake… Read Full Article
It seems that development of the main module of SpyEye stopped with last autumn’s version 1.3.48. But just because the authors are not developing this platform further, it doesn’t mean that SpyEye is no longer getting new functions. The core code allows anyone to create and attach their own plugins (DLL libraries). I recently spotted a new plugin for the first time – flashcamcontrol.dll. It turned out that it is used to control the webcam of an infected computer. Read Full Article
I am now back from the Kaspersky conference: Security For The Next Generation, the International Cup 2012 which took place in the Netherlands. Kaspersky had invited the winners from the local student conferences taking place all over the world and had them compete for the final title. Not only students attended the conferences, we also had professors from universities around the globe and also some of the experts from the Kaspersky Global Research and Analysis Team. Read Full Article
It is quite rare to analyze a malicious file written in the form of a cross-platform browser plugin. It is, however, even rarer to come across plugins created using cross-browser engines. Read Full Article
According to KSN data, Kaspersky Lab products detected and neutralized almost 1 billion malicious objects in Q1 2012. Read Full Article
Google is set to launch Android 5.0, aka Jelly Bean, this fall. But do we even need it? While Google has made some steps in securing its Play branded marketplace, and offered a few security updates to the operating system, it is a fact that the most targeted Android platform is still 2.x. Why is that? There are several reasons, not the least of which is a lack of security patches provided to previously deployed operating system versions. Read Full Article
The percentage of spam in email traffic was up 2.2 percentage points from March and averaged 77.2%. Read Full Article