I recently posted a report about the Trojanized applications which were found in the Android Market. About fifty repackaged versions of legitimate apps were pulled from the Android Market after being found infected with AndroidOS_LOTOOR.A. AndroidOS_LOTOOR.A steals mobile device information, as well as gives unauthorized users root access to an infected device. As course [...]
|
||||||
|
TrendLabsSM is currently taking a look at an interesting .ELF file that is actually an IRC backdoor program. We initially found some code suggesting that it performs brute-force attacks on router user name-password pairs. This malware is predominantly found in Latin America but we are also checking the extent of infection in other regions. The [...] Vulnerabilities (designated as CVE-2010-3915 and CVE-2010-3916) have been found in the popular Japanese-language word processor Ichitaro. If exploited, a specially crafted JTD document could be used to drop and execute files. Files exploiting these vulnerabilities are detected as TROJ_TARODRP.SM. Currently, the payload of the attacks using this vulnerability is a dropper detected as TROJ_DROPPER.QVA. [...] Previously, we discussed the “Here You Have” mail attack and the associated malware, WORM_MEYLME.B. Today, let’s look into the backdoor payload, BKDR_BIFROSE.SMU. The “Here You Have” payload: A powerful backdoor Not all backdoor applications are created equal. As such, it can be said that the cybercriminals behind WORM_MEYLE.B deliberately opted to use a BIFROSE backdoor [...] Twitter is becoming a common medium to spread spam, malware and all kinds of badness. Just a few weeks ago, we wrote about FIFA and the Gaza attacks being used as social engineering leverage by Trojan creators, and there are no signs of them stopping any time soon. Over the past two weeks, several Twitter [...] |
||||||
|
Copyright © 2012 Spyware Security - All Rights Reserved |
||||||