-
- SophosLabs: 4 yrs jail for man who masterminded Bredolab botnet of 30 million computers http://t.co/yq2q5tkG #huzzah!4 minutes ago
- SophosLabs: Learn more about analog computing - and Bob Moog! http://t.co/B0dQjMdk25 minutes ago
- gcluley: DDoS attack brings down UK webhosting firm 123-reg http://t.co/kMwKEhRS (via @regvulture)about 1 hour ago
- gcluley: Bredolab: Jail for man who masterminded botnet of 30 million computers http://t.co/Sr9Ea3EYabout 3 hours ago
- gcluley: Rock-and-roll Google celebrates analog computing - and Bob Moog http://t.co/Ftd8ouN2about 7 hours ago
Articles by Cliff Wright
July 2010 Patch Tuesday
There are four new releases in this months Microsoft patch release, of which the stand out item must be MS10-042 which is a fix for last months 0-day (CVE-2010-1885) which we saw a number of exploits for. Although none of Read more…
Scribble malware scrambled
Since we first mentioned it on the blog we have seen rather a lot of our favourite polymorphic, mid-infecting friend that is the W32/Scribble virus. So much so that it has almost become a nuisance for us. But not quite... Read more…
A Confick of interest
Earlier this week we witnessed the release of a new propagation technique that exploits a recent Microsoft vulnerability in the Windows Server Service. W32/Confick-A uses this security loop-hole to propagate its malicious DLL across user networks, generally making a real Read more…
SALiTy & cHIPS
A new variant of the Sality virus (W32/Sality-AM) was seen by the Australian lab last night. The polymorphic file infecting virus is quite destructive by today's standards and uses several tricks to make detection and disinfection difficult. Testing in the Read more…
Runtime HIPS stops Virtum infections
Virtum (aka Virtumonde, Virtumondo) is one of the most prevalent malware families we have seen in recent times. Barely a week goes by without seeing more samples of the damn thing. They are constantly changing, making detection difficult and they Read more…
Adobe Flash SWF exploit causes a stir
Yesterday we received several queries regarding a new memory corruption vulnerability affecting Adobe Flash Player and malware that exploits this vulnerability via malicious SWF files. We have received samples and can confirm that the threat is valid. Detection was issued Read more…
Excel exploit squashed by BOPS
After receiving a few queries regarding the recent unspecified Microsoft Excel vulnerability (CVE-2008-0081) recently patched as part of MS08-014 I finally managed to receive a sample this week. As is usually the case with exploits we seem to have received Read more…
Detected or not detected?
Although the advent of our Behavioral Genotype technology has meant that a large number of unknown (zero day) threats are now detected proactively there are still a few that slip through the net. Troj/Agent-GRF is just such an example. Submitted yesterday by Read more…
