I like many others am a big fan of Twitter, although I’m fairly ruthless about pruning those I follow. Most of the people I follow are either other security professionals or close friends, and they normally tweet content that I am genuinely interested in. The first hint of someone going to the dark side i.e.
In [...]

Post from: TrendLabs | Malware Blog - by Trend Micro

Twitterbuilding.com – stealing your passwords one tweet at a time

This time we’d like to share with you some tweaks made within Outpost’s Anti-malware module for the new line-up. The dramatic growth of our malware database (more than 2,000,000 added signatures for now) goes without saying.

Generally, all product alerts become more visible and clear, this specifically concerns Anti-Malware. More transparent information is delivered with an emphasis on threat type and source and Outpost module in charge, plus the warnings are designed in a user-friendly fashion to indicate relevancy of this or that event.

Here we’ll demonstrate some usability advancements in more detail:

• In compliance with antivirus protection standards, the option to automatically cure infected objects detected by the real-time monitor is now set as default action and applies to all suspicious/infected objects found. This measure caters to average users who rightfully prefer the program to perform an optimal operation rather than rely on their own decision.

• Actionable Quarantine facilitates decision-making regarding neutralized suspicious objects; quarantined files can be easily restored, removed or removed in bulk right from the new menu in a couple of clicks. Detected malware can also be filtered and sorted by certain criteria. For known “beasts” detailed information is available.

• The overall structure of Anti-malware Settings was improved to combine General and Additional Real-Time Protection settings in a single window.

And there are more nice options such as heuristic analyzer settings, to name just one thing of a few. Part of the Antimalware module, the heuristic analyzer turns visible in the interface and more flexible due to adjustable sensitivity levels (normal/high).

This is how it is in Outpost Pro 2009:

And here’s the 2010 structure:

This was a sneak peak of Anti-Malware 2010, keep on reading! And if you haven’t yet subscribed to Agnitum Blog, it’s high time to do so

Less than a month after the so-called “Iranian Cyber Army” reportedly “hacked” the popular micro-blogging site, Twitter, they are back with another attack, this time against another Internet giant, Baidu. Baidu is the China’s most popular search engine, as 62 percent of the total number of Web searches in China are done compared with Google’s [...]

Post from: TrendLabs | Malware Blog - by Trend Micro

Iranian “Cyber Army” Strikes at China’s Search Engine Giant, Chinese Hackers Retaliate

Two new spam campaigns spreading variants of the BANKER family of identity-stealing Trojans have recently emerged. The first campaign features spammed messages containing malicious links to supposed pictures. Once clicked, however, users ended up with TSPY_BANKER.OCN infections. This campaign made use of standalone files (see Figure 1).
The second campaign was more elaborate, as the involved [...]

Post from: TrendLabs | Malware Blog - by Trend Micro

BANKER Scams New Spam Victims

Trend Micro was alerted to the discovery of a recent threat that takes advantage of malicious search results generated from the Microsoft Office’s site.
This threat targets users looking for tips and help-related information on using Microsoft Office products on Microsoft’s official website, particularly those looking to delete meeting notices without notifying the other invitees.
Using the [...]

Post from: TrendLabs | Malware Blog - by Trend Micro

Search Results in Microsoft’s Site May Lead to FAKEAV

Also known as a trojan horse program, this is a deceptive program that performs additional actions without the user’s knowledge or permission. It does not replicate.

Malware: TROJ_HYDRAQ.SMA

Malware: TROJ_HYDRAQ.A