Cracked[dot]com Spreads Malware

On Monday, November 11th, it was discovered that Cracked[dot]com was infected by malware performing drive by downloads. The discovery comes from Barracuda Labs Research. The malware was spread through a drive-by-download. The number of systems it has infected is unknown. Given the site is ranked by Alexa as number 289 in the U.S. and 654 worldwide the…

FBI Needs Help

The FBI needs help prosecuting Vladimir Tsastsin. Just over a year ago Tsastsin and six of his cohorts were arrested in Estonia charged with running a click fraud scheme that infected more than four million computers in over 100 countries — an estimated 500,000 of those PCs in the United States.  The defendants are suspected of using…

New PCI Data Security Standards

Version 3.0 of the PCI Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS) goes into effect on January 1, 2014. That is only 45 days from today. The PCI SSC published the 3.0 standards in their document library on Thursday. The changes are suppose to allow for more flexibility, with an increased focus…

Malware That Downloads Malware

The Microsoft Malware Protection Center (MMPC) reports a rise in the spread of the Win/32.Upatre Trojan. Upatre is spread via email attachment. Once it has infected a machine its purpose is to download further malware. The chart below shows the uptake in Upatre infections. The most commonly downloaded Malware by Upatre is Win32/Zbot.gen!AM which steals…

FBI Warns Of New Malware

The FBI is warning people of a new type of malware known as Beta Bot. Cyber criminals are using Beta Bot to target financial institutions, e-commerce sites, online payment platforms, and social networking sites to steal sensitive data such as log-in credentials and financial information. Beta Bot blocks computer users’ access to security websites and…

AV-Comparatives Scores Panda 100%

On October 31st Panda Security announced that their cloud based antivirus product, Panda Cloud Antivirus Free Addition, received a 100% detection rating by AVComparatives.org. Considered to be the most complete and rigorous test for antivirus software, AV-Comparatives’ Real-World Protection Test, evaluates how such products perform in real life. The test reproduces everyday user scenarios to see how…

SAP The Target Of New Malware

There is a new Trojan discovered by Doctor Web, a Russian antivirus company, in the last few weeks that is searching for computers containing SAP client applications. For now this is the Trojan’s only activity. This type of action would indicate the criminals are amassing a network for a future attack. SAP makes software for Enterprise Resource…

Google Improves Chrome Security

Google has been paying attention to its forums, which has been riddled with reports of Chrome falling victim to browser hijacking malware. Google responded with two new browser features. The first is a “reset browser settings” button. Under the “Advanced Settings” section you will find this button which will set your browser back to its…

China’s NQ Mobile Inc. A Threat

The investment research firm Muddy Waters LLC released a report on their investigation of the Chinese mobile security company NQ Mobile Inc., an NYSE traded company (NQ), charging they are a “massive fraud.” The report alleges 72% of their 2012 revenues is fictitious. That NQ’s market share is 1.5%, not the 55% they claim. Muddy Waters…

php.net Hack Confirmed

Yesterday in our article php.net Blacklisted By Google Rasmus Lerdorf, the creator of php, claimed Google reported a false positive. Today however php.net admits two of their servers were compromised with malicous JavaScript code. From October 22nd thru the 24th the two servers infected php.net visitors committing code to projects hosted on svn.php.net or git.php.net with malicous JavaScript code.…