Malware

An employee at Spanish antivirus firm Panda Security received a new Android-based Vodafone HTC Magic with malware on it, according to researchers at Panda Labs.

"Today one of our colleagues received a brand new Vodafone HTC Magic with Google's Android OS," researcher Pedro Bustamante wrote on the Panda Research Blog on Monday.

"The interesting thing is that when she plugged the phone to her PC via USB, her Panda Cloud Antivirus went off, detecting both an autorun.inf and autorun.exe as malicious," he wrote. "A quick look into the phone quickly revealed it … Read more

For the second time in less than six months, visitors to the Drudge Report say they got malware in addition to the Web site's usual sensational headlines.

Matt Drudge denied that his site was infecting visitors, however it's likely that the malware is coming from ads delivered by a third-party ad network and not the site itself.

"I can personally vouch for disinfecting my mom's desktop yesterday after visiting this Web page, even taking a screenshot after beginning remedial steps to address the attempted infection," a CNET reader wrote in an e-mail early on Tuesday. &… Read more

Even if your PC is equipped with up-to-date anti-malware software, hardware and software firewalls, and other security measures, it can still become infected. The weak link in computer security is the wetware: the human beings who use the machine. And there's simply no fool-proof defense against operator error.

That's why any PC security plan has to assume that eventually, some piece of malware will breach the defenses. And these days, infections can do considerable damage without being detected. Here are five ways — some more practical than others — to reduce the risk of someone stealing the sensitive data on … Read more

An updated study has found that when it comes to blocking Web sites used in efforts to trick people into installing malware, Internet Explorer has widened its lead over the four other most-used browsers.

NSS Labs, a product analysis company, issued a third installment of an ongoing study of how well browsers avert socially engineered attacks that try to exploit a person's trust with a Web address that actually installs and runs malware. The upshot: "Windows Internet Explorer 8 provided the best protection against socially engineered malware," stopping 85 percent of the attacks at 562 sites.

In … Read more

Spam now accounts for close to 90 percent of all e-mail worldwide due to a surge in February, according to Symantec.

Two botnets named Grum and Rustock helped push spam levels up 5.5 percent in February over the prior month, according to the security firm's report (PDF). After doing business as usual over the past year, Grum suddenly sprang to life in February, increasing the amount of spam it generated by 51 percent. As a result, the botnet is now to blame for 26 percent of all global spam.

Rustock also surged last month, pushing up global spam … Read more

Qualys is set to launch on Monday a free service for Web site operators that will scan their sites for malware.

As part of the service, QualysGuard Malware Detection crawls the pages of customer sites and looks for invisible iFrames, malicious JavaScript code, and other indications of a stealth threat to visitors and provides automated alerts and reports to Web site owners.

The company has profiled Internet Explorer 6 and Adobe's Acrobat, Reader, and Flash Player to understand exactly what happens under normal conditions so it can quickly detect deviations that occur when malware is present, said Wolfgang Kandek, … Read more

Microsoft is intent on eliminating the Waledac botnet and is using the legal system to help.

Tim Cranton, Microsoft's associate general counsel, wrote Thursday on the company's blog that Microsoft has been shutting down Waledac by working with technology partners and taking legal action.

In response to a complaint filed by Microsoft, a federal judge issued on Monday a temporary restraining order to shut down 227 Internet domains believed to be run by cybercriminals spreading the Waledac spambot.

This week's legal takedown of Waledac, known internally at Microsoft as "Operation b49," came after months of … Read more

Windows systems that crashed during the latest Microsoft security update last week did so because they were infected with a rootkit program that made changes to the operating system kernel, Microsoft said late on Wednesday.

"The restarts are the result of modifications the Alureon rootkit makes to Windows Kernel binaries, which places these systems in an unstable state," Mike Reavey, director of the Microsoft Security Response Center, wrote in a blog post. "In every investigated incident, we have not found quality issues with security update MS10-015."

The patch addresses a vulnerability in the 32-bit Windows kernel … Read more

Malware-carrying spam and attacks via Twitter and Facebook grew dramatically in the second half of 2009, says a report (PDF) released Tuesday by security company M86 Security.

The volume of spam shot up last year to more than 200 billion messages each day, or 80 percent to 90 percent of all inbound e-mail sent to organizations, said M86. Spam carrying malware also surged in the second half of the year, hitting 3 billion each day compared with 600 million per day in the first half of 2009.

The vast majority of spam is now sent through botnets hiding on infected … Read more