Hackers flip characters to disguise malware

Thursday, September 8th, 2011

Hackers are using a new trick to cloak malicious files by disguising their Windows file extensions to make them appear safe to download, a Czech security company warned today. The exploit, dubbed "Unitrix" by Avast Software, abuses Unicode for right-to-left languages -- such as Arabic or Hebrew -- to mask Windows ...

Facebook is a nightmare!

Monday, September 5th, 2011

Read the September 5th update at the bottom of this page: http://www.f-secure.com/weblog/archives/00002223.html

DNS attacks on popular websites

Sunday, September 4th, 2011

Keep in mind that today's DNS hacks of popular websites such as acer.com, ups.com, theregister.co.uk were just that.  A DNS hack.  The actual sites themselves have not been compromised.  For example: UPS.com was altered to point to ups.com.85621INNSns1.yumurtakabugu.com The attackers only changed the NS records for the website.  This could have been much worse. References: http://isc.sans.edu/diary.html?storyid=11503&rss http://nakedsecurity.sophos.com/2011/09/04/dns-hack-hits-popular-websites-telegraph-register-ups-etc/

Zeus bank Trojan now fused with Ramnit worm

Thursday, August 25th, 2011

Researchers have uncovered evidence that the infamous Zeus login-stealing Trojan has been blended with the Ramnit worm to create hybrid malware that can attack online bank accounts while spreading across networks. Security company Trusteer said it recently discovered a mutant version of Ramnit that appeared to be using a man-in-the-browser (MitB) ...

Security Essentials now detects the new “killapache.pl” script

Thursday, August 25th, 2011

MS Security Essentials is already detecting the killapache perl script that's floating around the Full Disclosure mailing list. This is one more reason that I love this AV program and strongly recommend it for all Windows' users.