Trojan uses Amy Winehouse death
Last week I was talking about how certain cybercriminals used social engineering techniques in order to spread their creations, and today I can show you yet another good example of this, showing how fast these guys react on any news to take advantage of the buzz. In this case they are using the recent death [...]
Brazilians, banking Trojans and social engineering
Maybe you don’t know this, but many guys here in the lab can tell you where a banking Trojan is from just taking a look at it for a few seconds. There are a number of different banking Trojan families, but it’s really easy -once you have analyzed thousands of them- to group them by [...]
My take on the IMF hack
This weekend, while the Anonymous people were DDoSing the Spanish Police web site in what they call “peaceful protests” (are they ignorant or just cynical?) another news came out: the International Money Found was hacked, and had been compromised for months. Shocking news As soon as it was made public all media start talking about [...]
Security industry’s dirty linen
There are a lot of discussions going on about net neutrality. Kevin Townsend talked about that recently in an answer to my Freedom vs Security blog. A big concern nowadays is how certain industries, such as the music one, are lobbying governments to protect their particular interests. I’m not going to discuss this topic today [...]
Bin Laden’s Death and the Royal Wedding: Curiosity killed the cat
It could not be any other way. The two most relevant events over the last few days are being used as bait to trick users and infect their PCs. These events are Osama Bin Laden’s death and the Royal Wedding. The malicious file is the same in both cases, a banking Trojan seemingly originating from [...]
Playstation Network users at risk (updated)
Update 28/04/2011 11:00 GMT Sony has updated some information, indicating that the credit card information was encrypted -it seems that was the only encrypted information – so even though they could have been stolen, cybercriminals could not obtain the credit card numbers, at least in an easy way. However it will depend on the type [...]
Cybercriminals taking advantage of the Japanese earthquake
Yesterday we saw a message that promised to show you a video about the disaster after the earthquake and the tsunami. It included a link, that was an executable file: http://<>/consulado/japones/urgente/desespero-da-equipe-de-resgate-ao-encontrar-milhares-de-corpos-816283hDGJDj36378.youtube.com-AVI.exe This is just a downloader, that downloads and installs more malware in your computer. It also downloads a HOSTS file and overwrites in your [...]
I Love.exe You – Happy Saint Valentine’s day
In a few days, the 14th of February, it will be Saint Valentine’s day. Be ready as we will see malware and spam spreading using this topic to click on links and install Trojans in our computers, as usual. In fact cybercriminals have already started; some days ago I came across a file called “Love.exe”, [...]
Cyber-crime black market undercovered
The first time I performed a somehow deep research on the black market was back in 2007. At that time, most of it was about selling-buying Trojans, infection kits, and of course stolen data, such as bank and credit card details stolen from users around the world. A few years later I thought it was [...]
Security Blogger Summit 2011
In a few weeks will take place in Madrid this year’s Security Blogger Summit. 2 main topic’s will be the focus of discussion: - Cyber-activism: A new Internet sensation. - Cyber-terrorism and cyber-war: Reality or fiction? As always, the event is free, you just have to send an e-mail to comunicacion@pandasecurity.com with your details. And [...]
