Web threats

From the dangers of EXIF to the publishing of vacation photos online in a safe manner.

Websites getting defaced, servers getting turned into nodes in botnets, shell accounts and backdoors being sold on the black market – this is what’s happening on the Internet every day

The vulnerability in the Windows Help and Support Center (CVE-2010-1885) has been a constant irritation to antivirus experts for the third week in succession. I will try to provide an analysis of the problem with the help of KSN

Iframes can have several attributes and we often encounter them when analysing malicious sites. They are often used in a hidden way to construct drive-by downloads of malware

The World Cup 2010 is the most popular event running right now. The cyber criminals didn’t want to lose such “good” opportunity for them and already took advantage in some ways.

Attacks of Brazilian cybercriminals on Twitter using Direct Messages and compromised accounts

Twitter for iPhone ™ and unexpected malicious results leading to Trojan Banker to steal on-line bank credentials of the victims!

Today i found a new tool which will allow anyone to create a malicious program with just a few simple mouse clicks. When the malicious program is executed the infected computer is connected to a botnet which communicates via Twitter and is used for various illegal purposes.

A new reincarnation of the infamous Storm Worm — or Zhelatin as it is called by Kaspersky Lab – has been making the rounds in the news lately.

While I was reading the Wired article on how Alberto Gonzalez, the TJX hacker who caused $171.5 million in losses, was sentenced to 20 years in prison, I came across an interesting black SEO campaign that distributes fake AVs through Google.

As I was saying in the yesterday’s blog post, we were expecting the number of Koobface C&C servers to start growing sometime this week

Two weeks ago we recorded a surge in Koobface, the highly prolific worm infecting social networking sites.

2009 was the latest milestone both in the history of malware and in the history of cybercrime, with a marked change in direction in both areas. This year laid the foundation of what we will see in the future.

Another day, another disaster, and once again, the bad guys are exploiting this subject to poison search results so that those looking for some news get lead to a page offering a rogue AV solution.

The first Top Twenty lists malicious programs, adware and potentially unwanted programs that were detected and neutralized when accessed for the first time, i.e. by the on-access scanner.