DecryptedTech

Tuesday16 August 2022

Displaying items by tag: Malware

broken-lock

As we have been working with Windows 8 and Windows 2012 server we have become increasingly concerned about security. Although Microsoft has claimed that they have improved security through items like the locked UEFI boot process there are still glaring omissions in security that keep popping up very recently it was noted that despite the claims from Microsoft of a more secure login process the password hint is exposed in the SID database and easily recovered remotely. We also found that users’ contact lists are also left in the open (and in plain text) and available to anyone that can gain remote elevated privileges; which is what almost all Viruses and Malware try to do.

Published in Editorials
News light-virus-1

It appears that the earlier claims from FireEye about a link between Gauss and Flame were a little premature. According to their blog they had found what appeared to be a shared command and control server. This was a significant find as it linked the two serious pieces of malicious code together and would have made Gauss another in the growing list of suspected State-Sponsored cyber-attacks. Unfortunately for FireEye, what they thought was a command and control (CNC) server turned out to be a sinkhole run by Kaspersky Labs.

Published in News
News light-virus-1

Another day another bit of malware hits the internet. This time the malware is a very nasty bit of code and one that you should be very concerned about. The new malware named Shamoon was first reported on Thursday and has the nasty capability to grab user information before attempting to render the system unusable. Both Symantec and Kaspersky have independently reported on the malware and from their reports on the new bug seem to feel it is definitely worth keeping an eye on.

Published in News
top-10-computer-viruses-631

Leveraging the hype around the 2012 Olympics in London cyber criminals are pushing out malware via spam emails claiming that Gabrielle Douglas, who won a gold medal in Women's  Gymnastics All Around, will face lifetime ban from sport.  Obviously they are expecting that false news about doping scandals will help a lot in spreading the malware. The email is suggesting a link that will open up a false youtube page and prompt you to download  Adobe Flash plugin to view the content. Sophos, which first reported on this spam, detects the malware as Troj/Agent-XIK and Troj/JSRedir-IA.

Published in News
News light-virus-1

Remember the Faceboook malware we warned you about? You remember the one that relied on the fact that people love to see pictures of themselves on the internet? Well it looks like either the same group that was behind that malware or another equally clever group has moved from Faceboook to Twitter. We have heard multiple reports of tweets showing up that claim to have a link to a picture of the user. Unfortunately due to the widespread use of shortened links it is hard to spot many malicious payloads. Fortunately in this case you can identify the bad link by the .ru at the end… for now.

Published in News
News 3d Apple Logo 102

Time Apple news for July 26th 2012. Today we have Apple’s “we should not have to pay” defense, a new worm in the iTunes store, and new Malware that has popped up for OSX users. These three things have loads of laughs and some interesting twists which we think you will enjoy. So up on deck first we will take a look at Apple’s we should not have to pay defense which they are presenting in one of the patent cases they have going with Samsung.

Published in News
News light-virus-1

If you have been around computers for long you might remember the “I Love You” malware or the Nimda malware. Both of these relied on our habits of opening up links and attachments without out considering the email or subject. What made Nimda and I Love You even more dangerous is that they came from people we know. Now it looks like there is a new Facebook malware running around the internet. The new malware that was caught by Sophos Labs takes advantage of user trust of links claiming to have posts about them. It is an often used form of social engineering that has been effective ever since some of the first Spam malware hit the net.

Published in News
News light-virus-1

There is trouble in the Google Play Store as someone (Symantec) has discovered a Trojan downloader application that appears to be rather prevalent in the form applications masquerading as different applications (two of the most downloaded were Mario Brothers and GTA 3 Moscow City). The new malware appears to be concentrating on the Eastern European area right now as it utilizes premium SMS services that are tied to specific regions using certain numbers.

Published in News

News light-virus-1Hearing about a flaw in one product from a competitor in a product is sort of like asking your dog what food he likes best. You know you are not going to get a good answer and, of course, the dog is only going to stare at you and eat pretty much anything (including a bug…). So when we heard that a Microsoft Anti-Spam Engineer was reporting a new Android based email spam botnet we took it with a grain of salt (remember Microsoft has a new Phone OS coming out soon).

Published in News

daedalusThere is an interesting habit in the world of science; when you cannot explain or categorize something add “dark” to the front of the regular word and that makes it all ok. We have seen this in astrophysics, particle physics, theoretical physics, and now to IT. With this maxim we get Dark Matter, Dark Energy and my favorite “Darknet” It just sounds cool right?

Published in News
Page 14 of 17