Spyware Security » Trojan

Trojan Abuses Sendspace: A Closer Look

admin — Thu, 09 Feb 2012 21:02:00 +0000

We recently discovered a Trojan that harvested documents on affected systems and uploaded them to the file hosting site, sendspace.com. This post will discuss more of our findings on the said attack. In order to infect users, email disguised as a shipment notification from Fedex were mass-mailed to target victims. This email contains a [...]

How Big will the Android Malware Threat Be in 2012?

admin — Thu, 05 Jan 2012 14:01:24 +0000

In August 2011, we released our Snapshot of Android Threats, which stated that there was a significant increase in the number of Trojanized Android apps and actual malware targeting the Android platform. In our 12 Security Predictions For 2012, we mentioned that smartphone and tablet platforms, especially Android, will suffer from more cybercriminal attacks. [...]

German officials admit to deploying intercept software

admin — Tue, 11 Oct 2011 20:10:21 +0000

Officials in a number of German state governments have owned up to using the Quellen-TKÜ Trojan Horse software in criminal investigations to intercept encrypted telecommunications on PCs. At least one state said it has suspended use of the software, after the Chaos Computer Club discovered that it could be controlled by anyone, not just [...]

A Snapshot of Android Threats [INFOGRAPHIC]

admin — Mon, 22 Aug 2011 15:08:23 +0000

January this year, Trend Micro Chairman and co-founder Steve Chang was quoted as saying that Android devices are less secure than those running on iOS. While his comment caused quite a stir back then, today’s threat landscape seems to agree: since Steve’s statement, our researchers saw a whopping 1410% increase in the number of Trojanized [...]

KOOBFACE Propagates Via Torrent P2P File Sharing

admin — Wed, 17 Aug 2011 20:08:46 +0000

The KOOBFACE botnet became known for using popular social network sites as vector for propagation and abusing these platforms for malicious purposes. Currently, it has been observed that KOOBFACE does not actively propagate via social networks, but rather propagates via a torrent peer-to-peer network through Trojanized shared application files. Based on our research, we found [...]

Trojanized Android App Checks for Keywords in SMS Messages

admin — Fri, 05 Aug 2011 19:08:47 +0000

Android malware monitoring for messages sent to an infected device from specific numbers is something that we’ve frequently seen in the past. This is typically done by malware to intercept messages from premium numbers, in order to prevent the user from suspecting a malware infection in their device. The Android malware we recently saw however [...]

Cybercriminals Use Amazon Web Services (AWS) to Host Malware

admin — Wed, 03 Aug 2011 01:08:29 +0000

As our colleague Jorge Mieres over at Kaspersky recently noted, cybercriminals appear to be using Amazon Web Services (AWS) to host quite a large volume of SpyEye Trojans and exploit kits. In fact, another colleague in my group, Ranieri Romera, recently collected approximately 22Mb of malware hosted on AWS for analysis and detection. My advice is [...]

Cybercriminals Using Amazon Web Services (AWS) to Host Malware

admin — Tue, 02 Aug 2011 02:08:18 +0000

As our colleague Jorge Mieres over at Kaspersky recently noted, cybercriminals appear to have been using Amazon Web Services (AWS) to host quite a large volume of SpyEye Trojans and Exploit Kits. In fact, another colleague in my group, Ranieri Romera, recently collected approximately 22Mb of malware for analysis & detection that was hosted on [...]

New Android Malware on the Road: GoldDream “Catcher”

admin — Thu, 07 Jul 2011 13:07:42 +0000

Recently, we discussed on this blog a sample of a new Trojanized Android app, and today we will discuss another one. This new Android malware is known as GoldDream, and is detected by Trend Micro as ANDROIDOS_SPYGOLD.A. The particular app that was Trojanized was a racing game called “Fast Racing.” For a game, this Trojanized [...]

Trojanized Security Tool Serves as Backdoor App

admin — Thu, 10 Mar 2011 20:03:18 +0000

I recently posted a report about the Trojanized applications which were found in the Android Market. About fifty repackaged versions of legitimate apps were pulled from the Android Market after being found infected with AndroidOS_LOTOOR.A. AndroidOS_LOTOOR.A steals mobile device information, as well as gives unauthorized users root access to an infected device. As course of [...]