As expected, criminals are now taking advantage of the notoriety of Stuxnet as a mechanism to deploy malicious code. Advanced Threats Researcher Ivan Macalintal found poisoned search results that leveraged on this notorious malware threat. Some of the search strings used in this blackhat SEO campaign include “stuxnet SCADA,” “stuxnet removal tool,” “stuxnet cleanup,” [...]
Trend Micro has been alerted that certain ZeuS/ZBOT variants are now able to break into users’ bank accounts in spite of two-factor authentication systems. These are frequently used to enhance bank security. These ZeuS variants can specifically use mobile malware to defeat systems that rely on text messages sent via mobile phones on Symbian [...]
Blizzard’s World of Warcraft (more popularly known as WoW) is one of the most popular massively multiplayer online role-playing games (MMORPGs) in the world. With more than 11.5 million subscribers as of 2008, WoW is plagued by a thriving underground online gaming economy. The most common scam in WoW that Trend Micro has seen [...]
One of the “standard” behaviors of the ZeuS/ZBOT Trojans is that it downloads a configuration file. This configuration file contains details on its bot routines such as what sites to target, what URLs to access to download an updated copy of itself, what URLs to send stolen information to, and what URLs to access to [...]
You might remember that Apple’s Safari browser got hit by a nasty security bug involving its text auto-fill feature in late July. Apple squashed this bug with the Safari 5.0.1 update, but according to the researcher who discovered the auto-fill flaw in the first place, the bug is back.
Read entire article