Posted 11/13/08 at 03:00:00 PM by Alex Castle

While researching an antivirus article here at Maximum PC, we noticed something very curious: a Google AdWords link for “Antivirus xp 2008,” which led to the url “antivirus-world-2009.com.” (Don't go there)

Anyone who’s been paying attention during the last year or so know that "Antivirus xp 2008" is the name of one of the most widespread and obnoxious bits of malware floating around the internet. It hides itself in your system and launches a bogus antivirus program at intervals to warn you that you’ve got spyware and trojans and the sky is falling. Then, it recommends that you buy the pro version of the program, which presumably also does nothing except rip you off. The virus is frequently updated to evade malware removal tools, and is just generally a pain.

So why is Google advertising for it?

Read on to hear our take.

Read More

Comments 

19

TAGS 

Software, Google, malware, google adsense

Posted 10/30/08 at 05:48:22 PM by Pulkit Chandna

Malware-infected PCs have for long betrayed their users’ most precious financial secrets to internet robbers. But researchers at IBM have developed a USB device to ensure that online banking transactions remain unaffected by malware infections. The device, which is called Zone Trusted Information Channel, can also repel man-in-the-middle attacks.

It secures online transactions by establishing a direct channel to a bank’s online transaction server through a computer’s USB port. As the transaction at the user’s end is made on ZTIC’s own hardware - no reliance on any PC-based software, it is not vulnerable to malware or man-in-the-middle attacks. The prototype is now ready to undergo trials.

Although the idea of a stand-alone security/authentication solution isn’t entirely new – Paypal already offers a stand-alone security device to its users, IBM’s endeavor is slightly different as it looks to be keen on offering a universal solution.

Read More

Comments 

0

TAGS 

usb, malware, ibm, gadgets, hardware, prototype, device, ztic, online banking, man-in-the-middle attack

Posted 10/16/08 at 04:07:25 PM by Mark Edward Soper

I know it, you know it, almost everybody that reads Maximum PC knows it - but that doesn't mean that your family, your co-workers, or your bosses know it. What's it? Simply this: Microsoft never - repeat never - sends out security updates via email.

Cnet reports that yet another fake security email purporting to be from Microsoft is busy delivering a nasty Trojan called Haxdoor to unwary emailboxes near you.

The email, ironically enough, claims that "Since public distribution of this Update through the official website http://www.microsoft.com would have result in efficient creation of a malicious software, we made a decision to issue an experimental private version of an update for all Microsoft Windows OS users." And, it's signed "Steve Lipner, Directory of Security Assurance, Microsoft Corp."

Well, at least the bad guys got Steve's name right. However, he's actually senior director of security engineering strategy in Microsoft’s Trustworthy Computing Group, according to a recent interview.

The message (minus the Trojan, of course), is available at the Microsoft Malware Protection Center blog, where you can see for yourself the classic hallmarks of a fake message: a shaky command of the English language, sentence construction that's so stiff it belongs on a Victorian-era calling card, and off-the-wall sentiments that show it was adapted from a different con job document: "We apologize for any inconvenience this back order may be causing you." Back order? Whaat? I didn't order any malware!

Already getting calls from frantic family, friends, or co-workers wondering why their PCs have slowed to a crawl or become infested by popups? Join us after the jump for solutions. 

Read More

Comments 

1

TAGS 

microsoft, Security, malware, Trojan, social engineering, fake email, Haxdoor

Posted 10/08/08 at 10:49:12 AM by Paul Lilly

Panda Security has released its quarterly report for the third quarter and in it the security vendor notes a sharp rise in the amount of adware. According to Panda, adware accounted for 22.03 percent of adware in Q2, but that number has jumped to 37.49 percent in Q3, which is more than a third of all infections. Panda attributes the trend to the amount of fake antivirus programs in the wild.

The report also puts social networking in the spotlight, the popularity of which has made them particularly prone to cyber attacks. Of the social networking sites, Panda notes that MySpace has been both the first victim and most frequently targeted by hackers.

"Attacks on social networks are not new phenomenon; the first recorded incident occurred in 2005," the report says. "However, attacks have increased ad diversified just as the number of users has grown. These attacks aren't focused exclusively on distributing malware, but also involve phishing, identity theft, or propagation of spam."

Surf safely!

Read More

Comments 

0

TAGS 

Software, Security, malware, report, adware, panda security

Posted 09/10/08 at 09:00:00 AM by The Maximum PC Staff

I am currently running Windows XP Pro. Every time I start my computer, the first thing that appears on my desktop is a pop-up error screen. It’s a rectangular box with “system.exe -Application Error” at the top. On the bottom of the window is a red circle with a white X through it and this message: “The application failed to initialize properly (0xc0000022). Click OK to terminate the application.” I don’t know what this means.

Evan's answer, after the jump!

Read More

Comments 

0

TAGS 

windows, malware, ask the doctor, pop-ups, xp pro, application error, system.exe, clamwin

Posted 09/02/08 at 08:30:18 PM by Pulkit Chandna

A computer worm primarily targeted at online gamers has found a very odd prey in form of the International Space Station. NASA confirmed last week that a computer worm had boarded the International Space Station and infected at least one laptop. Fortunately, though, none of the mission-critical systems were affected by the password-grabbing worm. NASA hasn’t revealed the name of the worm, but a website says that it is W32.Gammima.AG. Most of you might find the entire episode quite surprising and amusing, but the folks at NASA seem to be inured to computer worms aboard the ISS because this is not the first such instance.

Read More

Comments 

2

TAGS 

Software, virus, malware, worm, Password, nasa, international space station, online gaming

Posted 08/08/08 at 04:47:35 PM by Pulkit Chandna

Be warned, a cabal of Russian cyber criminals is on the loose and actively pillaging vast expanses of the internet. The gang slyly assumes the administrative responsibilities of large corporate and government networks and then quickly plants malicious tools on thousands of computers in that network. Security analysts reckon this to be the most well coordinated, systematic use of administrative tools for malicious purposes.

The group’s activities came to light when Joe Stewarts of Atlanta-based computer security firm SecureWorks found that a central program belonging to the Russian bandits was running at a Wisconsin-based Internet hosting facility. He estimated that 100,000 computers had been compromised. He promptly notified a federal law enforcement agency that proceeded to boot of the central program. But the gang, unfazed, quickly relocated the tool to a network in Ukraine.

According to a report, its central program called Coreflood infects computers with spyware that logs keystrokes and screen information. This puts sensitive financial data of users at great risk. The Coreflood software running at the Wisconsin facility accrued 500GB of sensitive data, according to Stewart.

Have you had your financial information like online banking passwords stolen and subsequently misused? If the answer is yes, you have your suspects.

Read More

Comments 

4

TAGS 

network, Software, malware, tools, russian gang, government, coporate, infections, coreflood

Posted 08/08/08 at 01:58:58 PM by Paul Lilly

Gamers have enough trouble trying to come up with a game plan to beat pesky end bosses and single-handedly defeat armies of mutant soldiers. Saving often gives gamers an endless advantage and cheat codes can help in a pinch, but neither of these tactics will do any good against an increasing amount of real-life threats the online gaming scene.

More than just an annoyance, time spend in virtual worlds like Second Life can translate into real currency and it's attracted the attention of organized criminal gangs. According to security software vendor ESET (best known for its NOD32 Antivirus products), "high volumes of malware intended to steal passwords for online gaming and virtual worlds" have been detected since 2007, resulting in a "dramatic upsurge."

The alarming news comes courtesy of ESET's mid-yearly Global Threat Report, which focuses on broad trends in malware over the past six months. In addition to an upsurge in attacks against gamers, ESET notes that malicious software that tries to use the Windows Autorun facility to self-install from removable media continues to flourish.

On the opposite end of the spectrum, the company reports email bound malware is in "dramatic decline," at least when it comes to dirty attachments. Malicious URLs passed through email messages have taken the place of attachments.

Further reading to keep yourself (and your virtual self) protected:

• Heal and Inoculate Your PC
• Internet Security 2.0
• Blizzard Offers Additional Layer of Security with Authenticator Dongle
• Reducing Thumbdrives' Security Risk

Read More

Comments 

0

TAGS 

games, gaming, windows, Software, Security, spyware, virus, malware, second life, threat, Videogames, eset