One of the most recent security issues that we have discovered in regards to a computer parasite is a Trojan horse called Trojan.Ramvicrype that uses different methods for spreading.

Trojan.Ramvicrype has uncommon “Trojan behavior” because it encrypts data files on the compromised computer but does not ask the user to visit a Website to get the solution to decrypt the data. This particular Trojan renames the files with a new ‘vicrypt’ extension which is rather unheard of from other well-known Trojan parasites.

Learn more...»

The Trojan Zbot, known as a banking Trojan that gives remote attackers access to an infected computer, has been discovered to evade most antivirus detection programs.

Zbot Trojan, or known as Zeus, has been around since the year 2006 where it was spread through spam messages that claimed to be a Microsoft Outlook critical update. A new study, taken place just recently of 10,000 computers infected with Zbot that had a majority running an up-to-date antivirus program, revealed that the antivirus programs only detected Zbot about 23 percent of the time.

Learn more...»

Cybercriminals have come up with a new scheme, spread by a Trojan via spam messages, attempting to warn people that the President of Peru and others have the Swine Flu.

Swine flu has gotten us all a little anxious. Maybe even a little paranoid. Was the man who sneezed next to me on the bus infected? Am I infected? I do feel a little head sore coming on. Regardless, Influenza H1N1 is not the life-threatening plague many might make it out to be.

The same, however, cannot be said for those malware authors out there now seeking to take advantage of the global panic surrounding this illness. These people are a different kind of plague, though, one that is more of an annoyance than life-threatening.

Learn more...»

How would you like for your conversations via Skype VoIP to be recorded and sent to a hacker?

As with any new and promising technology, there comes the inevitable promise that it will become the target of malicious code authors. Such is the case with the transmission technology for delivery of voice communications over IP networks, such as the Internet or other packet-switched networks, more commonly known as Voice over IP (or VoIP).

With VoIP gaining more and more popularity, it should be no surprise that eventually there would be a malware targeting this impressive form of communication. In just this past week alone we have seen the arrival of a Trojan horse called Trojan.PeskySpy. This new trojan is specifically designed to target Skype VoIP communications.

Learn more...»

Fake CNN Email Related to Israel-Gaza Conflict leads you to a CNN.com Phishing Site That Downloads Trojans

An email has been discovered that appears to have come from CNN News that seems to contain news about Israel’s bombardment of Gaza. Within the body of the email is supposed to be a link to a graphic video of Al Jazeera English Report related to the news. As you can probably guess, the link does not go to an actual video but goes to a phishing site that looks like a CNN web page. On the page is a “click to play” icon where an error message popups up if it is clicked on. The message asks that you “Please Download correct Flash Movie Player!”. As we know from old CNN.com malspam attacks, a message like this will result in the download of a fake Flash player file which contains malware. The file was identified as “Adobe_Player10.exe”.

Learn more...»

Have you ever click on a news reader link that took you to a video but later found to be malware or a malicious web site?

Reports have come in of some video links that could lead to malware by clicking a Google reader article link. From this link a computer user may be prompted with a video where if it is clicked to play takes you to a player on a non-Google page which is designed to spread malware. The whole process makes it look like Google is the culprit but it is not.

The attackers that set up this devious process have taken it upon themselves to create Google Reader accounts where they place links on the reader that take computer users to malicious web sites that spread malware. The malware was found to be a Trojan Downloader that includes Browser Helper Objects. This type of infection behaves like typical rogue anti-spyware programs where it prompts you with a fake notification that says you are infected with a virus or spyware.

Learn more...»