upon reading this article at ghacks.net about scanning linux systems for viruses i became aware that there are some misunderstandings over the meaning of the term ‘in the wild’.the article in question is not the only place i’ve seen these misunderstand…

ProtectSoldier is a rogue anti-spyware program from the same family as ProtectDefender, ArmorDefender and TRE Antivirus malware. This is another very disturbing software that enters a computer with the help of Trojans that come from misleading websites such as fake online scanners. It claims to scan your PC for malware but the truth is that [...]

The entire network of the University of Exeter in England had to be shut down because of the virus infection the University had suffered on Monday. It is still not clear what kind of malware has done this damage but according to David Allen, Registrar and Deputy Chief Executive of the University, it came through [...]

Trend Micro has identified new malware samples that exploit the still-unpatched Internet Explorer (IE) vulnerability.  These samples have been detected as JS_ELECOM.C and HTML_COMLE.CXC
Further analysis by TrendLabs threat experts found that the new scripts are versions of JS_DLOADER.FIS (the only difference being the encryption techniques used), which was widely used in the recent and still [...]

Post from: TrendLabs | Malware Blog - by Trend Micro

New IE Zero-Day Exploit Attacks Continue

Windows Defender 2010 is a fraudulent application which is advertised as a reputable antivirus with a reason to rip people off. Many computer experts have announced that WindowsDefender2010 is a scam because it enters the system without being noticed and later uses misleading behavior trying to deceive its victims into purchasing so called “full” version. [...]

The number of systems infected by various SASFIS Trojan variants has been increasing since the end of 2009, affecting networks across the globe. SASFIS variants have recently been spotted in relation to spoofed messages supposedly from Facebook.
SASFIS infections usually result in tons of other malware infections, as this particular family makes systems susceptible to botnet [...]

Post from: TrendLabs | Malware Blog - by Trend Micro

SASFIS Fizzles in the Background

Trend Micro fraud analysts recently came across spammed messages targeting customers of the Fifth Third Bank. The messages urged recipients to log in to a temporary link, http://www.53.com.{BLOCKED}.com.pl/wpserver/cmportal/cblogin.php?session=667882698791972326077742654898739&email=p2t2all@tacobell.com, in order to download and install a digital certificate that would supposedly reinforce the bank’s security. Clicking the link, however, led users to a phishing page that [...]

Post from: TrendLabs | Malware Blog - by Trend Micro

Phishing in the Guise of Enhancing Security