Botnet

(get it in RSS or Atom)

SSCC 148 - Cloud privacy policies not related to data security [PODCAST]

sscc-148-250

The Chet Chat comes to you this week from Hanoi, Vietnam with special guest Sean Richmond from Sophos Australia.

This week they tackle the FBI's crackdown on the Blackshades malware, more flaws in Chip-and-PIN, the latest Apple updates, and the EFF's "Who has got your back" report.

The Dirty Dozen Spampionship: Who's who in the global spam-sending league?

spampionship-purp-250

It's once again time for our quarterly Spampionship charts.

We looked at the sending countries for all our spam in the first three months of 2014, and turned the figures into a League Table - the sort of league you *don't* want to win!

Zeus malware - nine charged with conspiracy to steal millions of dollars

US charges 9 with stealing millions of dollars with Zeus malware

The US Department of Justice (DOJ) has charged nine individuals over their alleged involvement in a criminal organisation that stole millions of dollars from victims' bank accounts.

Smucker's online store gets stuck in thieves' web

Smucker's online store gets stuck in thieves' web

The US jam and jelly maker is just the latest fly to get stuck in the same web that ensnared dozens of companies last year, including some of the world's largest data brokers and at least one credit card processor.

Guilty plea for SpyEye banking malware author

Guilty plea for SpyEye banking malware author

Panin, a Russian national, admitted to developing and distributing the banking malware, which was sold to over 150 clients through underground cybercrime forums, and is designed to compromise PCs and connect them to botnets of similarly backdoored systems.

Leaks in logfiles, malware on Macs and Korean credit compromise - 60 Sec Security [VIDEO]

2014-01-25-mac-malware-250

Leaky logic leaves logins loose in logfiles; mendacious mails menace Macs with Mavericks malware, and criminal contractor compromises Korean credit company!

60 Sec Security - 25 Jan 2014...

SSCC 130 - Botnets, banking, breaches, patching and the Mavericks controversy [PODCAST]

sscc-130-thumb-250

What's the best way to deal with botnets? Should you use your bank's mobile app? Why all these data breaches? What about Patch Tuesday? Do you really *have* to update your Mac to Mavericks?

Listen as Chet and Duck dissect and explore the week's security stories...

Target admits "there was malware on our point-of-sale registers"

target-ryg-250

The Target data breach story has turned into a bit of a bus: it's big, has lots of momentum, and three just came along at once.

First: 40M payment card details stolen. Second: 70M names, addresses and the like stolen. Third: looks like there was a specialised botnet involved.

Sophos Techknow - Understanding Botnets [PODCAST]

techknow-logo-250-150

Botnets, short for "robot networks", are more than just malware: they're the money making machinery of modern cybercriminals.

Paul Ducklin and James Wyke help you to understand the What, How and Why of this troublesome topic...

Have we seen the end of the ZeroAccess botnet?

zero-snake-thumb

Since Microsoft took positive action against the ZeroAccess botnet at the beginning of December, SophosLabs has been paying close attention to see if the owners would attempt to revitalise the botnet and return it to profitability.

James Wyke looks into what happened...

Microsoft and partners fight back against the ZeroAccess botnet

zeroaccess_thumb

Microsoft, in conjunction with Europol and the FBI, has successfully taken down the click fraud servers used by ZeroAccess, disrupting one of the world's largest and most resilient botnets.

Million-dollar fine for sneaky Bitcoin botnet builders

ease-250

New Jersey has slapped a million-dollar fine on an on-line gaming company that sneakily used its own anti-cheating software to mine Bitcoins on its customers' computers.

The company is paying under protest, claiming a "deep misunderstanding of the nature of our business."

From the Labs: New PlugX malware variant takes aim at Japan

px-jp-250

SophosLabs Principal Researcher Gabor Szappanos takes on a recent PlugX malware sample.

He finds a curious mixture of similarities and differences with earlier versions - and a brand new target group: users of the Japanese-language word processor Ichitaro...

LG TVs grab data, GitHub attacked, vBulletin breached - 60 Sec Security [VIDEO]

2013-11-23-sneaky-tv-250

How honest is your TV? Why do crooks like source code hacks? Should you brag when you publish a breach notification?

Find out now in 60 Second Security.

Spam from an anti-virus company claiming to be a security patch? It's Zbot/Zeus malware...

zeus-250

A spam campaign that seems to originate from a whole raft of different security and anti-virus companies...

...is actually an effort to trick to into installing a new variant of Zbot/Zeus onto your computer.

SSCC 120 - Vulnerabilities, backdoors, crypto done right, and crypto done wrong [PODCAST]

sscc-120-thumb-250

Ah, the irony! Good crypto from the bad guys, and bad crypto from the good guys...

Chet and Duck turn the latest security news into an insightful, amusing and educational discussion in the latest episode of their two-weekly podcast.

US indicts 13 suspected Anonymous members for Operation Payback

US indicts 13 suspected Anonymous members for Operation Payback

Operation Payback was first launched in support of file-sharing sites but evolved to back WikiLeaks and to retaliate against the companies that shut down processing of the site's financial support. All participants had to do was to click a link, download the tool, and launch an attack...

Zero Access, vulnerability disclosure and the evils of RTF

VB2013-Wyke-250

Chester Wisniewski writes to us from Virus Bulletin 2013 in Berlin, Germany to share the latest research on malicious documents, bot herders and foos ball.

Latvia blocking extradition of Gozi writer thanks to "disproportionate" US sentencing

Federal Bureau of Prisons - DENIED

One of three men indicted in the US earlier this year in connection with the Gozi banking trojan remains in his native Latvia, after courts twice blocked US requests for extradition.

The Latvian foreign minister has added his weight to the battle to resist the extradition, arguing that the potential 67 year prison sentence cited in the indictment is "disproportionate" to the crime the man is accused of.

ZeroAccess malware revisited - new version yet more devious

za-weird-250

Guess what? The authors of the infamous ZeroAccess malware have pushed out another update, and this time they're using some interesting techniques to stay alive longer.

James Wyke of SophosLabs explains...