[Previous] Banking malware found on Android Marketplace | Graham ...

 [Next] Comodo Cloud Scanner To Scan Malware and Suspicious File...

Some related posts from Technorati and Google.

[VX Heavens] N. Goranin, A. Cenys 'Genetic algorithm based Internet worm ...: Modeling allows Internet worm researchers to predict damage for a new worm threat [10], understand the behavior of malware, including spreading characteristics [11], understand the factors affecting the malware spread, determine the required effectiveness of countermeasures in order to control the spread and facilitate network designs that are resilient to malware attacks [12], predict the failures of the global network infrastructure [13]. Since significant research has been done in the world during the last years to fight the Internet worms the worm evolution has a tendency to changes.

[Fix Email Problems] A Survey on Botnets with Cryptography | Fix Email Problems: With the help of asymmetric cryptography, a botmaster  can take on the role of a trusted certificate authority, which provides an efficient way to rent the botnet to  others in parts or as a whole, for a variable amount of time, and for certain purposes.To protect against malicious lessees, it is advisable to  implement a blacklist containing all invalidated public keys.This blacklist is saved on each bot’s computer and only the botmaster may add or remove public keys using his private key to sign the order. Thus, all certificates which belong to an attacker can be revoked.

[Blog Entries] Dobbs Code Talk - Data thieves exploiting flaws in retail systems ...: Retailers such as 7-Eleven and TJX have been hacked, along with payment processing organizations such as Heartland Payment Systems and Hannaford Brothers. The Heartland and Hannaford crimes involved a single criminal ring that reportedly acquired data for 130 million credit cards.

[Opensc.ws - Trojan programming forum] ZeUS - Opensc.ws - Trojan programming forum: also derives certain iconographic traits from the cultures of the Ancient Near East, such as the scepter. Zeus is frequently depicted by Greek artists in one of two poses: standing, striding forward, with a thunderbolt leveled in his raised right hand, or seated in majesty.

[Ferris Research] M86 Security Releases MailMarshal with Most Advanced Protection ...: Notoriously devious, blended threats defeat or bypass traditional gateway antivirus and spam solutions by replacing malicious attachments with a URL link to a legitimate-looking Website that often executes automated, drive-by downloads that infect users and expose them to vulnerability exploits. Blended threat emails often employ social engineering techniques and clever designs to lure recipients into clicking on the link that then triggers the infection.

[Technology Review RSS Feeds] Technology Review: Breaking the Botnet Code: Watching for changes in the memory registers--the researchers call this "buffer deconstruction"-- allowed them to derive the structure of the botnet communications and infer the function of the various components of each command. "This is relevant for malware, because we typically do not have the executable for the command-and-control server of a botnet," said Paolo Milani, a postdoctoral researcher at the Secure System Lab at the Vienna Institute of Technology and .

[eWeek Security Watch] Botnets - Click Fraud Experts Report New Botnet - eWeek Security Watch: Matt Hines has been following the IT industry for over a decade as a reporter and blogger, and has been specifically focused on the security space since 2003, including a previous stint writing for eWeek and contributing to the Security Watch blog. Hines is currently employed as marketing communications manager at Core Security Technologies, a Boston-based maker of security testing software.

[VX Heavens] Steven Furnell, Jeremy Ward 'True Computer Parasite' (VX heavens): Although frequently used as a catch-all term, the virus is of course only one form of malware, and other categories, such as worms and Trojan Horse programs, had already emerged long before Cohen's paper. However, it was with Cohen's work that the biological analogy first arose, and this has been a lasting contribution to the way in which much of the subsequent literature has considered malware in general (note: although Cohen authored the paper, it was actually his research supervisor, Prof.

[Geekazine 2010» Geekazine 2010] Fone FUD - Geekazine 2010: Here's a whole new market that the anti-malware vendors have not yet successfully tapped. The article contains a major fallacy, embodied in this passage: The mobile operating system and software businesses are not as mature as they .

[McAfee Avert Labs] Donbot - Joining The Club of Million Dollar Botnets - Computer ...: Well, hello Donbot ! Upon investigation, the downloaded malware (MD5: 916DB2E2C2D1ED7AF89DD8EBB9C7D84C) detected generically as Generic.dx appears to be a component of an active botnet called Donbot (also known as Bachsoy). Components of Donbot typically create a proxy on infected machines and may be used to relay spam and HTTP traffic.

[Information Security Resources] Technology And The Advent of Cyber War : Information Security ...: One scheme has been proposed that a nation, particularly the United States, could in times of extreme need, induce their software industry to push updates to their installed base that included malware that could be used to disable their enemy’s computers.

[Robert Hensing's Blog] Robert Hensing's Blog : Wormbotdoorkit? Kitbotwormdoor ...: Malware is getting increasingly more full-featured and increasingly more complex and I think it's time we stop trying to classify what is obviously a collection of independently developed 'malware' (i.e. programs developed by different groups of people for different purposes with different functionality) being dropped onto compromised hosts using a single word like 'backdoor' or 'trojan' and instead we should focus on the attributes and properties of the pieces of malware we have identified on the system and refer to them based on their functionality - but before we do that, we must first agree on what it is we're talking about and thus my proposed definitions above.

[: iovation Blog - Fight Online Fraud with Device Reputation] » When Fighting Online Fraud Not All Device Reputation is Equal ...: botnets, as opposed to identifying PCs that have been used to commit actual online fraud or abuse. iovation pioneered the use of device fingerprinting in a shared database to build device reputations in 2004 and we have a lot of experience with this issue.

[Secure Computing Corporation - TrustedSource Blog] TrustedSource - Blog - Donbot - Joining The Club of Million Dollar ...: When run, W32/IRCbot.gen.a copies itself to <system folder>\netmon.exe.  It then drops a rootkit as <system folder>\drivers\sysdrv32.sys (MD5: 0e219b74e2c68a34ca09d8fe114f6d11) and hooks the Windows tcpip.sys driver to remove the outbound connection limits in Windows XP Service Pack 2 and newer. We successfully detect this rootkit as Generic Rootkit.g trojan.  It then follows to establish an outbound connection with a remote IRC server using following credentials:

[SecurityNowBlog» SecurityNowBlog-Network Security] DLP and Employee Owned Computers, “Do You Feel Lucky? Well, Do Ya?”: The anti-virus/spyware vendors take roughly a month to detect new malware, develop a new malware signature, and finally to distribute the new malware signature to all computers. On the other hand, half of new outbound malware (i.e., the malware that penetrates a computer, not the malware that has already been implanted into a computer) made by cyber criminals is abandoned within 48 hours.

Reflected tags on Technorati: Blog, Malware, Spyget