November 1, 2011 - The group that initially discovered the original Duqu binaries, CrySyS, has since located an installer for the Duqu threat. Thus far, no-one had been able to recover the installer for the threat and therefore no-one had any idea (continue reading...) Read more
October 31, 2011 - Contributor: Anand Muralidharan Recently, the death of Libyan leader Muammar Gaddafi triggered a malware attack which Symantec previously blogged about. We have observed spammers' continued delight with this news event through the sending of malicious attack and 419 spam messages. In (continue reading...) Read more
October 27, 2011 - Recently, a new threat called Android.Fakeneflic has taken advantage of gaps in the availability of a legitimate video streaming service in order to target mobile users in North America. Here is another example of social engineering at work; (continue reading...) Read more
October 27, 2011 - Over the last few months we have been trying to look deeper into how Web-based malware gets distributed. A lot has been written about the underground economy and how one can buy exploit kits, such as Blackhole, from underground websites. (continue reading...) Read more
October 27, 2011 - In the last few months we have seen a variety of spam campaigns propagating on social networking websites. Most of these attacks use some flavor of social engineering tactics. Every now and then, we see some innovative social engineering techniques (continue reading...) Read more
October 26, 2011 - In recent days, we have seen blogs about a specific type of Mass Injection campaign. We take this opportunity to publish our findings in this blog. This particular campaign has already picked up pace and it is infecting a lot of (continue reading...) Read more
October 23, 2011 - Threat Analysis: Alan Neville As word spreads of the death of Muammar Gadhafi, cybercriminals are starting to take advantage. We are already seeing spam campaigns related to his death with malicious attachments. Here are a couple of examples of what we (continue reading...) Read more
October 21, 2011 - I wrote Symantec's original blog post describing the discovery of Duqu. In that blog I use the term "industrial control system manufacturers" and (after discussions with a variety of parties) we want to change that term to "industrial industry (continue reading...) Read more
October 21, 2011 - As mentioned in our previous blog, W32.Duqu was first brought to our attention by a research lab who had been investigating a targeted attack on another organization. This research was conducted by the Laboratory of Cryptography and System Security (continue reading...) Read more
October 18, 2011 - On October 14, 2011, a research lab with strong international connections alerted us to a sample that appeared to be very similar to Stuxnet. They named the threat "Duqu" because it creates files with the file name prefix (continue reading...) Read more
October 12, 2011 - Contributors: Shunichi Imano October 2011 marks the eighth annual “National Cyber Security Awareness Month” to be held in the United States. One highly visible concern that makes this year different from previous years is the triple-digit growth rates that are being (continue reading...) Read more
October 11, 2011 - Contributor: Christopher Mendes When stalwarts pass away the world mourns their loss, tributes flow and emotions run high. Whenever we lose a legendary figure, their death brings shock or grief and people are hungry for any and every available piece of (continue reading...) Read more
October 11, 2011 - Hello and welcome to this month’s blog on the Microsoft patch release. This is an average month — the vendor is releasing 8 bulletins covering a total of 23 vulnerabilities. Nine of the issues are rated ‘Critical’ and they affect Internet (continue reading...) Read more
October 11, 2011 - For years now, we in the cyber security industry have been saying an explosion of mobile malware is just around the corner. Beginning in earnest this year, we have indeed observed a marked increase in threats targeting mobile devices – (continue reading...) Read more
October 9, 2011 - On October 9th a German hacker group going by the name of the Chaos Computer Club (CCC) published an analysis of what they claim to be government spying software. The analysis is a 20 page PDF file describing how (continue reading...) Read more
October 7, 2011 - Contributor: Anand Muralidharan The sad news making the rounds these days is the death of Steve Jobs, Apple Co-founder and former CEO. His death has been a terrible loss to both Apple and Apple fans everywhere. Spammers are capitalizing on this incident (continue reading...) Read more
October 7, 2011 - Analysis by Poul Jenson and Masaki Suenega Spotted by Karthik Selvaraj Here at Symantec Security Response we have discovered Python.Pytroj, a proof-of-concept virus that infects .pyc files with arbitrary code. In case you are unfamiliar with Python here is a brief (continue reading...) Read more
October 5, 2011 - Technical analysis: Poul Jensen, Illustrations: Ben Nahorney Meet Downloader.Chepvil, a malware that has been creating quite a lot of noise recently, hitting inboxes far and wide. This threat begins life as an innocent-looking email and quickly transforms itself into a (continue reading...) Read more
September 27, 2011 - The holiday season is about to commence and spammers have resurfaced with new offers well in advance. We have already observed spam for Christmas and New Year in the month of September, not to mention spam for Halloween, which is (continue reading...) Read more
September 23, 2011 - Thanks to Shravan Shashikant and the Norton Confidential Online team for providing the data, and to Christopher Mendes for compiling it. Does phish taste better than spam? Yes, perhaps it does. Allow me to explain. The recent past has been one of (continue reading...) Read more