Threat Category: Windows malware | Page 35

Vxer host returns

Vxer resource unavailable

Is 29A falling to pieces?

A brief overview of the evolution of malicious code in October 2004.

More from the AVAR 2004 conference in Tokyo

A clean computer gets infected very quickly

Why are viruses given the names that they have?

We found some unusual backdoors in the past few weeks. They seem like standard variants of Agobot, Rbot and other bots controlled via IRC. However, they contain files that work like EPO viruses.

Yesterday was hot with two new Bagles let loose. The worms were mailed using spam methods in one of the largest mass mailings this year. I hope that the weekend will mean the outbreak will calm down.

The third Bagle we saw yesterday was almost identical to the first two, except for a mistake…

We detected a new variant of Zafi today, Zafi.c. The first two Zafi’s spread widely, so we plan to keep a close eye on how things go.

It’s now the end of October and we haven’t seen any serious email worm outbreaks for months.

When I sit down to think of…

Today’s threats spread further and faster than ever before. This makes updating your antivirus databases regularly essential.

The nature of threats encounted by PC users has changed significantly over the years. Today’s threats are more complex than ever before. So is it still worth using a traditional antivirus solution?

Email worms sent the virusology trend in early spring: Bagle, Mydoom and Netsky all spread as attachments to infected emails, and all used social engineering techniques in order to propagate.

Reports

Kaspersky discloses new tools and techniques discovered in 2025 Tomiris activities: multi-language reverse shells, Havoc and AdaptixC2 open-source frameworks, communications via Discord and Telegram.

Kaspersky experts analyze the ToddyCat APT attacks targeting corporate email. We examine the new version of TomBerBil, the TCSectorCopy and XstReader tools, and methods for stealing access tokens from Outlook.

Kaspersky GReAT experts dive deep into the BlueNoroff APT’s GhostCall and GhostHire campaigns. Extensive research detailing multiple malware chains targeting macOS, including a stealer suite, fake Zoom and Microsoft Teams clients and ChatGPT-enhanced images.

Kaspersky researchers discovered previously unidentified commercial Dante spyware developed by Memento Labs (formerly Hacking Team) and linked it to the ForumTroll APT attacks.

Windows malware

Virus writing resource back

Web host for virus writers closed

Benny, Ratter questioned

Malware Evolution: October Roundup

Japan – high technology, high security

How much malicious code is really out there?

More on malware classification

Virus techniques being used in Trojans

Yesterday’s Bagles – how dangerous are they?

New Zafi, New cyberwar?

The end of the Age of Worms?

Antivirus updating – why it’s more important than ever before

Traditional antivirus solutions – are they effective against today’s threats?

Malware Evolution: May Roundup

Reports

Tomiris wreaks Havoc: New tools and techniques of the APT group

ToddyCat: your hidden email assistant. Part 1

Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs

Mem3nt0 mori – The Hacking Team is back!

Subscribe to our weekly e-mails