October 26, 2010 - Earlier today, Mozilla confirmed on its blog that an unpatched vulnerability exists in Firefox 3.5 and 3.6. Unfortunately code exploiting the vulnerability is out in the wild. It has been reported that the website for the Nobel Peace Prize was (continue reading...) Read more
October 26, 2010 - Things are starting to get a little tougher in the botnet world. This year we have witnessed many shutdowns of major botnets and their owners arrested. We have also seen money mules arrested and - more importantly - arrests for (continue reading...) Read more
October 22, 2010 - Zbot, otherwise known as the Zeus botnet, has been around for a quite a while and has been called the "King of Bots"; it has infected millions of computers worldwide. The Zbot construction kit is on-sale and widely available (continue reading...) Read more
October 21, 2010 - According to a recent article in the Wall Street Journal, many of the popular Facebook applications—such as social games—record the Facebook user ID and share them with third-party companies. This issue obviously affects millions of Facebook users who regularly (continue reading...) Read more
October 20, 2010 - By Dan Bleaken, Senior Malware Data Analyst, Symantec Hosted Services In the September MLI report we discussed that it is important for IT managers and HR managers to understand that there will always be a subset of employees that are likely (continue reading...) Read more
October 18, 2010 - On Tuesday, September 21 a cross-site scripting (XSS) vulnerability in Twitter became publicly known and was exploited by attackers, as well as many curious copycats with non-malicious intentions. An issue surrounding the parsing of attributes of posted links allowed JavaScript (continue reading...) Read more
October 18, 2010 - Trojan.Zbot.B!inf, which was discovered on October 1st, has functionality to update Trojan.Zbot by using Windows Crypto API. Crypto API is a set of functions that uses PKI bundled with Windows and has been used by several malicious programs in the (continue reading...) Read more
October 18, 2010 - Halloween is drawing near, so the spammers are busy laying out bait in the form of Halloween jackpots, sweepstakes, gift cards, e-cards, personalized gifts, online contests, and even print products and costumes. Perhaps this is one of those seasons during (continue reading...) Read more
October 15, 2010 - W32.Stuxnet has been a subject of much discussion amongst security researchers and media, and Symantec Security Response has posted a whitepaper along with a series of blogs on the subject. As you may already be aware, Stuxnet (continue reading...) Read more
October 14, 2010 - Harry Potter and the Deathly Hallows is the seventh and (supposedly) final adventure in the Harry Potter novel series. As the grand finale of the series draws nearer, I’m sure all of the Harry Potter enthusiasts are waiting in anticipation (continue reading...) Read more
October 13, 2010 - This is an item you may not have seen amid all the speculation about Stuxnet, Iran and Israel. According to Chinese AV company Rising International, as reported by The H, “millions” of systems in China have been affected by Stuxnet. (continue reading...) Read more
October 12, 2010 - Hello and welcome to this month’s blog on the Microsoft patch releases. This is, by far, the largest Patch Tuesday release since the start of the program. The vendor is releasing 16 bulletins covering a total of 49 vulnerabilities, including (continue reading...) Read more
October 11, 2010 - Adobe has released a new version of Adobe Reader on October 5th. It includes the patched module for the Adobe Reader 'CoolType.dll' TTF Font Remote Code Execution Vulnerability (BID: 43057). As Karthik Selvaraj wrote in a previous blog, this (continue reading...) Read more
October 8, 2010 - In this blog, I’m going to provide extra details about the PLC infection process and how an operator can determine if their PLC is infected. First, recall that Stuxnet’s end-goal is the infection of particular types of Simatic PLCs. In (continue reading...) Read more
October 6, 2010 - The spoofing or obfuscating of email messages to bypass antispam filters is a very common technique for spammers. Spammers try to obfuscate the email headers or email bodies of messages to evade antispam filters, as discussed in one of (continue reading...) Read more
October 6, 2010 - On behalf of Dan Bleaken, Senior Malware Data Analyst, Symantec Hosted Services Recently it has been widely reported that global spam volumes have decreased, especially on Sunday 3rd October 2010, when spam levels dropped to their lowest for some time. This (continue reading...) Read more
October 4, 2010 - In a previous blog we reported on how attackers use social engineering techniques to scare users into purchasing a misleading application. This time around, we have come across a couple of websites that are using a slightly different trick (continue reading...) Read more
October 3, 2010 - The Zeus Trojan is back in the media spotlight once more, and for good reason. Last week the FBI’s Operation Trident Breach made worldwide headlines with over 100 arrests related to organized cybercrime operation activities in the (continue reading...) Read more
September 30, 2010 - We’re pleased to announce that we’ve compiled the results of many weeks of fast-paced analysis of Stuxnet into a white paper entitled the W32.Stuxnet Dossier. On top of finding elements we described in the ongoing Stuxnet summer blog series, (continue reading...) Read more
September 28, 2010 - Facebook now has over 500 million registered users, which makes this social network (like many other social networks) a very attractive “fishing pool” for attackers. There are so many potential victims that could easily fall for any of the scattered (continue reading...) Read more