• Targeted Attacks

  • Is The Raspberry Pi Secure?
  • What Connections Between Attacks Say About Them
  • Hiding in Plain Sight: A New Targeted Attack Campaign
  • Backdoor Built With Aheadlib Used In Targeted Attacks?
  • Malicious PDFs On The Rise
  Bookmark the Threat Intelligence Resources site to stay updated on valuable information you can use in your APT defense strategy

• Mobile

  • Get Free Followers! on Instagram? Get Free Malware, Survey Scams Instead
  • Mobile Ads Pushed by Android Apps Lead to Scam Sites
  • Finding Banking Trojans in Eastern Asia – Report From CeCOS VII
  • How Mobile Malware Uses The Web
  • (Lack of) Android Updates To Come Under FTC Scrutiny?
  For information on all mobile threats and other security risks, see Mobile Threat Information Hub on the Trend Micro Threat Encyclopedia.

Archive for the ‘Botnets’ Category

Tweet

Nov28

Merry Christmas, ZeuS 2:39 pm (UTC-7)   |    by Roland Dela Paz (Threat Researcher)

This morning, I came across an entertaining Christmas-themed ZeuS Web panel while monitoring online forums. Here's what it looks like:

Posted in Botnets | Comments Off

Tweet

Oct16

Another Modified ZeuS Variant Seen in the Wild 9:00 pm (UTC-7)   |    by Jasper Manuel (Threat Response Engineer)

In the past, we reported about the emergence of malware based on the leaked ZeuS code such as Ice IX and ZeuS 2.3.2.0. The usage of the leaked code continued on since then and has resulted in attacks such as the one I'm about to share on. My colleagues and I have been monitoring another new ZeuS version since the latter part of September, one that we believe is also based on the leaked ZeuS source code. Although this new ZeuS variant ...

Posted in Botnets | TrackBacks (2) »

Tweet

Sep27

TDL4 Worm Component Employs Bitcoin Mining 12:07 pm (UTC-7)   |    by Roland Dela Paz (Threat Researcher)

In the past we reported a couple of attacks involving malware that turn infected systems into Bitcoin miners. We also said that cybercriminals will increasingly do so in the future. We recently encountered another familiar and well-known malware family—TDL4—that turns infected systems into Bitcoin miners. TDL4 is a well-known TDSS variant that evades antivirus detection by infecting systems' boot sector. We have since been monitoring TDSS-related developments. Earlier this year, we saw TDL4 exhibit propagation routines through a worm component that ...

Posted in Botnets, Malware | TrackBacks (2) »

Tweet

Sep26

Underground Radar: Possible Compromise of MySQL.com and Its Subdomains 9:34 am (UTC-7)   |    by Maxim Goncharov (Senior Threat Researcher)

We recently found an interesting post in a Russian underground forum in the course of our research. People exchange information about their illegal activities in these kinds of forum. We found a user in the forum with the handle "sourcec0de" and ICQ number 291149 who currently offers root access to some of the cluster servers of MySQL.com and its subdomains. The screenshot above shows that the seller appears to have a shell console window with root access to these servers. The price ...

Posted in Botnets, Exploits, Hacked Sites | TrackBacks (22) »

Tweet

Sep21

The Shifting Motivations Behind Digital Threats [INFOGRAPHIC] 9:56 am (UTC-7)   |    by Danielle Veluz (Technical Communications)

Online threats and malware have been plaguing Internet users for more than 20 years now. While today's cybercsecurity headlines often refer to the latest data breaches, Facebook scams, and the 1410% increase in the Android malware volume, it is interesting to note that the tools cybercriminals use today are, in a sense, the BRAIN-child (pun intended) of two Pakistani brothers who ironically wanted to do good and to prevent software piracy. From the PC boom in the 1980s to the ...

Posted in Bad Sites, Botnets, Malware, Mobile, Spam | 1 TrackBack »