We have received numerous links, even resulting to more than a hundred, which aim to redirect the user to a specific URL. These malicious links may follow the following format:http://{varies}.nl/info.htmlAll of these links have exactly the same contents, an encrypted script, which redirects those unlucky enough to click the malicious link to a malicious HTML…
Read MoreJust a few hours ago, our email honeypot began receiving samples of this new bagle trojan. As of now we have two different files samples coming in:MD5 hash:7B2F9DDEBD027D54E36408C89804AFDB8275444AC2CAAC4B90BFD07D0B2B17BEThe samples have already been submitted to the service team for processing. This bagle variant will be detected as TROJ_BAGLE.ABUpdate Just received another sample of this malware, this…
Read MoreWe have received a total of 11 samples of this malware since 3 am this morning. Here are a few details on this variant: File Size: ~44,032 Bytes (unzipped) packed using PESpin 0.3x – 0.4x MD5 Hash: D37FDEEC3299DFAEF64151FA87880FB7You may view the email details for this malware in our advisories section.
Read MoreRecently, a proof-of-concept worm targetting Oracle databases with default user accounts and passwords was posted on Full-Disclosure. The worm looks for remote Oracle databases through the use of UTL_TCP package. It creates table X in the remote database (harmless but there could always be other ways to turn it into something else) upon discovery of…
Read MoreRootkit? Whenever I hear that word, I alwaysassociate it with malware as a means to hide themselves from AVcompanies. And do we share the same perspective? I bet but not forSony(?!).The rootkit being utilized by Sony BMG is a technology to protectits digital property from atleast casual piracy considering theeasy way of CD burning provided…
Read More