Recently, Facebook announced its acquisition of Instagram— a popular photo-sharing smartphone app, which also released an Android version almost a week ago. It was reported that Facebook paid approximately $1 billion (£629m) in cash and stock for the said takeover.
Cybercriminals, soon enough, started to take advantage of Instagram's popularity. We discovered a spoofed webpage containing a rogue version of Instagram. The said webpage mimics Instagram's legitimate download page. The red squares indicate clickable links that lead to the download:
For ...
Days after Microsoft released six bulletins, we now have just spotted a number of Trojanized RTF files circulating in-the-wild. The said files are exploiting CVE-2012-0158, which is included in MS12-027. That particular bulletin affects a number of Microsoft programs, particularly versions of MS Office, Visual FoxPro, Commerce Server, BizTalk Server, as well as SQL Server.
We spotted a Trojanized RTF file that came in the following email message as an attachment:
The email again containing Pro-Tibetan sentiments and sent to a public Tibetan NGO ...
In our previous blog, we focused on the emergence of hybridized malware, in which malware arrives already infected by a file infector. In effect, there are two different malware families that will run on the infected system. In this scenario, attackers are able to maximize system compromise by deploying two different payloads in one execution, leaving a user's machine open to a slew of infection.
This tactic recently re-surfaced during our monitoring of Tibetan-leveraging malware campaigns. It came in the form ...
In another turn of interesting events, during the course of my monitoring of targeted attacks, specifically of advanced persistent threats, I came upon an email with a PDF attachment that had just a measly 4 out of 42 generic or heuristic detections.
I checked out the email and whoa! - it was an email from a trusted researcher colleague and friend in FireEye who was also monitoring these kinds of campaigns, or to put it accurately, looks like it.
Looks legit, right? ...
The Flashback malware discovered last week is raising doubts over the security of the Mac platform. The Trojan, detected by Trend Micro as OSX_FLASHBCK.AB, continues to be a hot topic in the computing industry and it opposes Apple's own concept that their Mac OS are threat-proof. But this attack, along with an onslaught of malware and targeted attacks, put Apple's self-proclaimed security into perspective.
Flashback is not only a piece of malware but a family of Trojans, and most recently, backdoors. ...
