April 24, 2012 - When pop icon Björk, in an interview with the press, invited hackers and pirates to adapt her app from iOS to other platforms, it seems that some people who rose to the call had a hidden agenda in mind: (continue reading...) Read more
April 23, 2012 - Symantec Security Response, along with some other security vendors, reported the discovery of the OSX.Flashback malware recently patched by Apple. Many people may be surprised to learn the infection volume is reported at over 600,000 computers. On a new front, (continue reading...) Read more
April 20, 2012 - Ransomware is a threat that continues to grow in popularity with cybercriminals due to its success rate and monetary potential. In past blogs such as Rampant Ransomware we have discussed some different Ransomware variants and techniques. Now we have (continue reading...) Read more
April 17, 2012 - Today’s blog is a quick follow up to the OSX.Flashback.K issue. The statistics from our sinkhole are showing declining numbers on a daily basis. However, we had originally believed that we would have seen a greater decline in infections (continue reading...) Read more
April 15, 2012 - Over the past week or so, there has been an ongoing discussion on the Internet about some Android applications that looked suspicious. Most of the apps were supposedly designed to mimic popular games in Japan or play a video in (continue reading...) Read more
April 11, 2012 - OSX.Flashback initially arrived on the scene in late 2011. It has come a long way from its humble beginnings as a social-engineering scam trying to pass off as a fake Flash update using digital certificates purporting to come from Apple. (continue reading...) Read more
April 10, 2012 - Twitter recently filed a lawsuit in the San Francisco Federal Court against five of the most aggressive spammers and spam tool providers. The defendants listed in the suit are TweetAttacks,TweetAdder, TweetBuddy, James Lucerno of justinlover.info, and Garland E. Harris (continue reading...) Read more
April 10, 2012 - Hello, welcome to this month’s blog on the Microsoft patch release. This is an average month—the vendor is releasing six bulletins covering a total of 11 vulnerabilities. Seven of this month's issues are rated ‘Critical’ and they affect Internet Explorer, .NET, (continue reading...) Read more
April 6, 2012 - Recent media reports about the OSX.Flashback malware have put the size of the botnet at over 600,000. The botnet is believed to have reached this size by using vulnerabilities such as the Oracle Java SE Remote Java (continue reading...) Read more
April 4, 2012 - We have previously discussed how mobile users are led to Japanese one-click fraud by clicking on links in spam or through search results on the Web when performing these actions on smartphones. There is also a third vector (continue reading...) Read more
April 4, 2012 - Spammers are traversing through various social networks in order to find a new pool of users to dupe. We recently observed spam on social photo-sharing app Instagram. This campaign is similar to an earlier blog post which highlighted how (continue reading...) Read more
March 28, 2012 - In recent years, scammers have flocked towards social networking sites as they have grown and made it easier to access a large number of potential eyeballs to convert into dollars. Brands have found value in leveraging social media to know (continue reading...) Read more
March 27, 2012 - It was only a few weeks ago that concerns were raised about the lack of restrictions on photo access on the Android platform. That is, no permissions were required to read an image file, which could lead to privacy (continue reading...) Read more
March 27, 2012 - There has been a lot of confusion over the last hours after an application named “МТС Мобильная Почта” was automatically added to the My Apps section of some Samsung devices as an apparent application upgrade. However, these devices have never (continue reading...) Read more
March 27, 2012 - The Taidoor family of Trojans are at the centre of a lengthy and sustained malware campaign that’s been active for several years. The approach used by the Taidoor attackers is the standard textbook email-based targeted attack method. When Taidoor (continue reading...) Read more
March 23, 2012 - Fake antivirus software or "scareware" is nothing new, but these applications continue to get more sophisticated. We recently discovered a relatively new fake antivirus application called Windows Risk Minimizer. The fake antivirus software was promoted through spam sent from a popular (continue reading...) Read more
March 20, 2012 - We recently received a file that looked very familiar. A quick investigation showed it to be a new version of W32.Duqu. The file we received is only one component of the Duqu threat however—it is the loader file used (continue reading...) Read more
March 20, 2012 - .node-content-pad td {padding: 2px 4px !important;}During the past two weeks, Symantec has observed an increase in hit & run spam activities (also known as snowshoe spam) in its Global Intelligence Network. Hit & run spam messages have the following (continue reading...) Read more
March 16, 2012 - A warning against a critical vulnerability in the Remote Desktop Protocol (RDP) was posted by Microsoft on Tuesday, March 13. A patch to close this security hole was released on the same day as part of the regular MS (continue reading...) Read more
March 15, 2012 - Trojan.Hydraq is a piece of malware that we first saw in early 2010. It was a threat that got a lot of media attention—especially since the targets it chose were very high profile organizations. It's been a couple of (continue reading...) Read more