Threat Category: Vulnerabilities and exploits | Page 44

On Saturday an alert went out about a new Twitter worm. Could this have been another XSS-Worm? Upon clicking the link users would see the following…

At various times over the last few years, we’ve posted comments on different aspects of UK computer crime legislation, and the policing of cybercrime, on our weblog.

Two Top Twenties have been compiled from data generated by the Kaspersky Security Network (KSN) throughout April 2009.

Watching the Kido/Conficker P2P Network

Over the weekend we’ve seen a number of Cross Site Scripting worms for twitter. We detect these XSS worms as Net-Worm.JS.Twettir variants

BBC crosses the line again

Anyone who is remotely involved in the anti-malware industry will know that testing is a hot topic – the subject has received a lot of attention lately, particularly following the formation of AMTSO, the Anti-Malware Testing Standards Organization, earlier this year.

Smack on the bot for the Beeb

Unlike our previous six-month and annual statistical reports, this report is completely based on data collected and processed using the Kaspersky Security Network (KSN).

Crime and punishment

If you drop by phpbb.com, you’ll be greeted by this notice, which has been there for 5 days now

The term MalWare 2.0 is often used in our reports to denote a model for the complex malicious programs which appeared at the end of 2006. The most striking examples, and the initial members of MalWare 2.0 are the Bagle, Warezov and Zhelatin worms.

Microsoft has now announced it will be issuing a out-of-cycle patch for the IE7 vulnerability today at 1pm EST.

Patching systems remains an essential part of an overall security strategy

Over the last couple of weeks, we’ve been seeing new modifications of the PDF exploits spread and managed by the El Fiesta toolkit.

Reports

Kaspersky researchers analyze updated CoolClient backdoor and new tools and scripts used in HoneyMyte (aka Mustang Panda or Bronze President) APT campaigns, including three variants of a browser data stealer.

Kaspersky discloses a 2025 HoneyMyte (aka Mustang Panda or Bronze President) APT campaign, which uses a kernel-mode rootkit to deliver and protect a ToneShell backdoor.

Kaspersky GReAT experts analyze the Evasive Panda APT’s infection chain, including shellcode encrypted with DPAPI and RC5, as well as the MgBot implant.

Kaspersky expert describes new malicious tools employed by the Cloud Atlas APT, including implants of their signature backdoors VBShower, VBCloud, PowerShower, and CloudAtlas.

Vulnerabilities and exploits

The Twitter worm that isn’t

Cybercrime and the law: a review of UK computer crime legislation

Monthly Malware Statistics: April 2009

Watching the Kido/Conficker P2P Network

Twitter worms aren’t the only threat

BBC crosses the line again

Repercussions of dynamic testing

Smack on the bot for the Beeb

Kaspersky Security Bulletin: Statistics 2008

Crime and punishment

PHP hack

Bootkit: the challenge of 2008

MS issues patch for IE vulnerability

A patch is not just for Christmas…

Fiesta parties on

Reports

HoneyMyte updates CoolClient and deploys multiple stealers in recent campaigns

The HoneyMyte APT evolves with a kernel-mode rootkit and a ToneShell backdoor

Evasive Panda APT poisons DNS requests to deliver MgBot

Cloud Atlas activity in the first half of 2025: what changed

Subscribe to our weekly e-mails