A new variant of the prevalent Citadel crimeware kit has been discovered to target Point of Sale (POS) devices. Find out more, in this analysis from SophosLabs expert James Wyke.
The DoJ has published five "charging documents" filed in New York yesterday against three men accused of operating a bank-raiding malware enterprise.
The documents give a fascinating insight into a cybercrime operation...
CERT Polska has announced takedown action against web properties associated with a huge botnet known as Virut.
Paul Ducklin takes a look at takedowns, and why they are important even if their effectiveness is often short-lived...
Veteran cybercrime investigator Bob Burls looks back on a case where the diligence of an IT professional helped convict a botmaster who had made tens of thousands of dollars.
Ever since the source code of Zeus/Zbot leaked in May 2011, many new variants have appeared.
One particularly prevalent example is Citadel.
James Wyke of SophosLabs puts it under the microscope....
A new particularly virulent version of the malware family known as W32/VBNA (also SillyFDC/Autorun) is spreading very quickly. It takes advantage of Windows Autorun and some very clever social engineering techniques to plant banking Trojans on victim computers.
The Georgian government's CERT (Computer Emergency Response Team) claims it has linked an internet attack to Russia's security services, and even turned the tables on a hacker it believes was involved by secretly taking over his computer and taking video footage of him.
You can thank India for one out of six spam messages in your inbox, up from one in 10 when SophosLabs last put out its list of the Dirty Dozen top spam-relaying countries. The UK has upped its spam output as well, meaning it's rejoined the dirty dozen after an 18-month hiatus.
Skype users are warned to be on their guard, regarding malicious instant messages that have been sent through the service, designed to infect Windows computers.
Just over two weeks ago, we wrote enthusiastically about Microsoft's legal action against 3322 dot org.
That lawsuit has now been settled, with 3322 dot org's operator agreeing to a range of security-related conditions to get his domain back.
Earth Day really did make a difference - at least in the world of internet security.
That's one of the conclusions revealed in a paper presented today at the Virus Bulletin (VB2012) conference in Dallas, Texas.
Duck joins Chet to take on the latest security news.
As usual, they don't mince their words, so take a listen and enjoy a quarter-hour mix of news, opinion, advice and research..
Microsoft has announced, with perfectly rightful excitement, that a court in Virginia, USA, has given it control over the domain 3322 dot org.
This is one of the most prevalent call-home locations used by the Nitol malware - a family with tens of thousands of known variants.
A hacker, believed to have created the Mariposa botnet which compromised millions of computers across the globe, has gone on trial in Slovenia.
There is quite a lot of debate out there about Android devices participating in spamming botnets. Chet Wisniewski tries to clear the air about what we are seeing in SophosLabs.
Criminals have created a botnet of Android phones to send spam messages using Yahoo! mail. The malware problems on Android continue to grow and mimic their Windows cousins.