The email honeypot once again received a fake Ebay mail which has an executable attachment. The attachment disguises itself as a normal PDF using a normal PDF file icon but with an executable (exe) file extension.A similar incident happened about two weeks ago where the attachment of the spammed mail downloads a worm. This time,…

There are reports of a zero-day exploit code out in the wild for client side RealPlayer and Helix Player. A format string vulnerability found in the said media players can be exploited to execute malicious codes in the affected system. A specially crafted media, which include the .RP (realpix) and the .RT (realtext) file formats,…

Hearing Ben Edelman speak about tricky EULAs and the legalities of these contracts yesterday made me realize that these programs can’t twist our arm. They cannot sue clients who uninstalled the bundled spyware from their systems (while retaining the program of choice) just because the EULA specified otherwise. He said that the purpose of these…

As of time of writing, no security firm or individual has been able to confirm the credibility of the report. The security community awaitedly asking for the binaries of the much hyped worm to further prove to the public that they really exists but even the individual (Vlad) who claims that his machine has been…

This new symbian malware is similar to other symbian malware in the sense that it overwrites normal files in the system in order to destroy them. However, it has a particularly interesting characteristic where it attempts to spread infection to a computer running in Windows OS. This is because this malware drops these 4 files…