Adobe is no stranger to seeing vulnerabilities in its software being targeted in the wild, but it’s not every day that the company comes across malware masquerading as Adobe software using a valid code signing certificate. Adobe recently received not one, but two such malicious utilities, the company revealed Thursday.
While most of us were relaxing over the Labor Day weekend, the folks at McAfee were finishing up the security firm's second quarter Threat Report (PDF) for 2012. In it, McAfee Labs noted a 1.5 million increase in malware since the previously quarter, as well as a number of new threats like mobile "drive-by downloads" and using Twitter to control mobile botnets. All combined, McAfee detected the largest number of malware in four years.
Windows 8, for those of you who don’t know, relies on something called SmartScreen Application Reputation to identify and warn users of potentially dangerous desktop apps. According to Microsoft, the operating system uses SmartScreen, which was previously restricted to Internet Explorer, to conduct “an application reputation check the first time you launch applications that come from the Internet.” With SmartScreen providing an additional layer of security to Windows 8 users, they will have a lot less to worry about, right? Wrong, according to Canadian security researcher Nadim Kobeissi, who has a serious issue with the way the feature works.
Are you disappointed that Windows 8 might not support Desktop Gadgets? Then you really won't like this news: Microsoft wants you to stop using them on Windows 7 and Vista, too. Immediately. That's not because of some deep-rooted hate for the visual helpers, but because of concerns that hackers could use new Gadget and Sidebar exploits to deep-root your PC.
The e-sky is falling! The e-sky is falling! At least, you'd think so with all the hype the DNSChanger Trojan received in the days leading up to the FBI's disconnection of its servers. It was supposed to spell the end of the Internet for hundreds of thousands of innocent Web goers! Well, the feds flipped the switch yesterday; did the world end? Not so much.
Back in November 2011, the FBI and NASA-OIG worked with Estonian police to arrest a band of cybercriminals known as "Rove Digital" who were operating a botnet that would alter user DNS settings to point infected systems to malicious DNS data centers in Estonia, New York, and Chicago. Come Monday, the Internet will go dark for potentially hundreds of thousands of unsuspecting PC users unaware their system is infected with a DNS changing virus.
During my many years of covering technology I’ve seen all sorts of horror stories when it comes to the fallout of malware, but this one left me scratching my head. Malware authors usually set out with the goal of stealing private information, enslaving your machine, or perhaps forcing you to click popups, but printing hundreds of pages of junk? “Trojan.Millicenso” as it is known among security researchers has hit thousands of office printers around the world, and has destroyed countless reams of paper.
Knowledge is power, and Spiderman always said that great power came with great responsibility, but what we're learning this week isn't making us feel proactive -- instead it's making us want to don our tinfoil hats and curl up in a ball in the deepest corner of our darkest closets. A day after Google filled us in on just how many speech-squashing takedowns it gets from the U.S. government, the company pulled the curtain even farther with a blog post this morning sharing just how many badware-peddling sites are online. It's a lot.
Malware writers figured out long ago that infection rates go up when you target current trends. Potential victims who aren't particularly computer savvy tend to let their guard down when an email arrives related to current events, and with the London Olympics less than two months away, malware writers are getting a head start by sending out malicious Olympic themed emails.
Some of the ways scammers part fools and their money sure are deviously ingenuitive. A new variation of scareware is making the rounds in Europe, but rather than sticking to the age-old "Your computer is infected, buy this antivirus program now!" trope, this malware claims that the government is locking down your PC until you pay a fine for downloading music illegally.