Trojan

(get it in RSS or Atom)

Another breach, sneaky Android malware, and the Privacy Plan Diet - 60 Sec Security [VIDEO]

2014-02-01-3-step-250

Surely not another payment card breach? Android malware that jumps the airgap? And what's this about a Privacy Plan Diet?

60 Sec Security - 01 Feb 2014.

Nude Carla Bruni pics masking Trojan lured G20 attendees to click

Nude Carla Bruni pics masking Trojan lured G20 attendees to click

"Almost everybody who received the email took the bait," one government source told a news outlet. Any cognitive behavioralists out there who can tell us how to overcome the impulse to click on such a well-nigh-irresistible lure?

Destructive malware "CryptoLocker" on the loose - here's what to do

There's a destructive malware threat on the loose that calls itself "CryptoLocker."

It's what's known as ransomware, because that's what it does: holds your files to ransom.

Paul Ducklin tells you what you need to know...

Sextortionist who preyed on Miss Teen USA, Cassidy Wolf, turns himself in

Sextortionist who preyed on Miss Teen USA has turned himself in

The 19-year-old Californian man turned himself in to FBI agents on Thursday. If found guilty, he's looking at up to two years in federal prison on the charge of extortion after allegedly hacking more than a dozen women's computers, taking nude images via their webcams, and contacting then in an attempt to get more images out of them.

California escrow firm shuttered after cyberthieves drained it of $1.5 million

An escrow firm in the US state of California has been run out of business and its nine employees laid off, after a remote access Trojan planted on its system drained it of $1.5 million.

Could this happen to your business?

Stolen webcam video listed at $1 per female victim, $1 per 100 male victims

Stolen webcam video listed at $1 per female victim, $1 per 100 male victims

Do only the truly paranoid stick bandages over their webcams so they don't get surreptitiously recorded? Well, a BBC producer posing as a computer security enthusiast talked to webcam hackers who said that the hack is simple to do.

Malware found sucking up data on new Japanese space agency rocket

Malware found sucking up data on new Japanese space agency rocket

Malware discovered on a Japanese space agency desktop computer has been stealing data on Epsilon - a new, AI-enabled rocket - and beaming it to controllers outside the agency. It's only the latest in a string of data-siphoning incidents that's plagued the agency.

Monday review - the hot 22 stories of the week

Monday review - the hot 22 stories of the week

Here you go. All the stories we wrote in the past seven days, in case you missed anything (or just want to read them again).

Trojan horse designed to steal your photos

Trojan horse designed to steal your photos

A new Trojan is on the scene designed to steal your images and memory dumps. Are the thieves digging for dirt or stealing state secrets?

IP theft attacks can hide on networks for years, unspotted by corporate victims, report claims

IP theft attacks can hide on networks for years, without the knowledge of corporate victims, report claims

Organizations in the financial services and public administration sectors are the primary targets of sophisticated attacks aimed at stealing intellectual property, with attacks involving both external and internal agents and lasting for months or years, according to a new report from Verizon.

Unmasked! Alleged mastermind of "Project Blitzkrieg" online attack plot against US banks

Alleged mastermind of "Project Blitzkrieg" project targeting US banks is unmasked

Claims are made that a cyber gang is recruiting some 100 botmasters for a Trojan attack against 30 US bank, and the plot's alleged mastermind is unmasked.

But given the alleged fraudster's flamboyant claims, can we be sure he's not a trap set by Russian law enforcement?

SourceForge serves up malware-infected phpMyAdmin toolkit

phpmyadmin-logo-250

Being careful where you download from isn't always enough.

SourceForge, the hosting service for phpMyAdmin, has disclosed that the official phpMyAdmin 3.5.2.2 distribution was Trojanised some time last weekend.

Microsoft advisory: Internet Explorer zero day affects most Windows versions

Microsoft advisory: Internet Explorer zero day affects most Windows versions

A newly discovered and serious security hole in Microsoft’s Internet Explorer web browser affects a wide swath of the company’s Windows and Internet Explorer installations, according to a Security Advisory released by the company late Monday.

New IE zero day exploit circulating, used to install Poison Ivy

New IE zero day exploit circulating, used to install Poison Ivy

The gang behind that recent Java zero day attacks apparently hasn't packed up for the season. A researcher examining one of the servers used to launch attacks on vulnerable Java installations said he found a new zero day exploit for Microsoft's Internet Explorer web browser.

Apple zombie malware 'NetWeird' rummages for browser and email passwords

Apple malware 'NetWeird' rummages for browser and email passwords

When we write Naked Security articles about Mac malware, we often end up creating a bit of a stir.

So, with a deep breath, here's some Mac malware news: this time, it's a zombie Trojan called 'NetWeird'.

Bank's shoddy security was to blame for $588,851 online robbery, US appeals court rules

US appeals court holds bank liable for online security breach

A Maine construction company that saw its online bank account fraudulently drained of almost $600,000 might get some of it back due to what a US federal court has deemed shoddy security systems at its bank.

Spying Trojan targets Iranian and Syrian web surfers, dissidents

GreenSimurghlogo250

A proxy tool used by Iranian internet users to evade censorship and oppression is being distributed with a Trojan horse that can log their keystrokes and surfing habits reporting back their activities to its author.

Notcom malware for Android distributed using drive-by downloads

Notcom malware for Android distributed using drive-by downloads

Another Android Trojan is making the rounds, this one is distributed through drive-by downloads on compromised websites. Whether it's a proxy or a bot is not really important, make sure you don't install unsolicited packages on your phone.

Python-based malware attack targets Macs. Windows PCs also under fire

windows-mac-thumb

A new malware attack is targeting Mac computers with a Python-based backdoor Trojan.

And Windows computers aren't getting away scott free either.

SSCC 87 - Mac botnet, Global Payments, Flash Player updater, AES-NI and cloud encryption

Sophos Security Chet Chat

David Schwartzberg is this week's guest on the Chet Chat to talk about the data breach at Global Payments, a new Mac botnet and Flash Player updating. David also explained the new AES-NI encryption acceleration in Intel chips and a new way to safely store files in the cloud.