We all are familiar with IM worms and how they used different techniques in order to be downloaded and executed into a target machine.One of which is the WORM_SOHANAD (a.k.a worm_sohanat, worm_imaut, worm_autoit) which leverages on the MS06-014 MDAC vulnerability. There’s a previous blog entry regarding this malware here. Today, I would like to show…

After ECARD.EXE, PATCH.EXE and MSDATAACCESS.EXE now comes VIDEO.EXE. Trend Micro Senior Threat Research Consultant Ivan Macalintal says it was just a matter of time. He reports of receiving in his inbox what could be a rehash of the infamous Storm Trojan, a.k.a. NUWAR, which raged during the first quarter of this year and which has…

TrendLabs has identified more Web pages that have been compromised to contain an IFRAME tag that redirects users to a malicious IP address, leading to the downloading of malicious files. The compromised Web pages, which Trend Micro detects as HTML_IFRAME.GN, point to news articles regarding new technologies and, ironically, about the latest malware threats. The…

Last month, a suspicious domain was found to be associated with a certain malware: vvindowsupdate.com. Notice the double Vs used to replace the W–an obvious way to trick users into thinking that this is the real Windows Update link. Well, phishers are picking up where this month-old tactic left off to dupe users into giving…

Job seekers are likely to be familiar with monster.com, a popular job search and online recruitment web site that is the second largest job search engine in the US, with roughly 42 million job seekers per month posting their resumes on the website-that is about 42 million people willingly providing their contact details and additional…