Lately we have been finding some malwares wherein a fast spreading WORM like REATLE is carrying a VIRUS in its body.I dont know if this is something old or new, but all I can think of is that this technique of WORM with a VIRUS maybe used by some malware authors to increase the infection…

Berend-Jan Wever, aka “Skylined”, released an exploit code for the IDN host name heap buffer overrun vulnerability in Mozilla browsers. Mozilla browsers include (Firefox, Mozilla, and Netscape). You can find the source code of the exploit here.http://www.milw0rm.com/id.php?id=1224These two lines are worth noticing in the exploit code.One sploit to rule them all, One sploit to find…

The tandem of a Trojan and a worm is now becoming a favorite technique of malware authors for a more successful propagation or attack of their malicious programs. The combination of a Trojan and a worm started from the Troj_Bagle downloading the Worm_Bagle. However, another example of the trojan-worm tandem technique being noticed is in…

At the end of my boring shift, e mails started arriving and soon I was wide awake.The emails contained in it a copy of a WORM_MYTOB, this is easily distinguished because of the hellmsn.exe drop file and other common WORM_MYTOB traits…or so I thought. 🙂After I few minutes of looking at the malware body, I…

There is a new rumor that Worm/Trojan malwares are utilizing Wi-Fi for their propagation and they particularly attack unpatched Windows XP machines.“The machines lock up and everything including regedit stops working.MS malicious code detection tool does detect it but is unable to clean it.”It is also said that it sets the Wi-Fi card to Ad-Hoc…