Welcome to Spyware Removal News


Six botnets the culprit of 85 percent of all global spam

According to recent data compiled by Internet security company Marshal, only six botnets are responsible for more than 85 percent of all global e-mail spam. Overall, the Srizbi botnet is generally recognized as being the largest single source of spam, accounting for almost 40 percent of spam e-mail messages globally.

(...Read more)-------------------------------------------------------- Top ^

PayPal Closes a Phishing Vulnerability

It looks like the PayPal login page, but some things are off. For one, the title is "Login - PayPal Phishing Proof of Concept". That is because this isn't the PayPal login page at all, but a Phishing proof of concept. It was hosted on PayPal's servers and secured with PayPal's security certificates, but I had complete control over all the HTML, including where the login form sent usernames and passwords. This page would not have been caught by any of today's anti-phishing programs, because thanks to a vulnerability, PayPal itself was serving this page.

(...Read more)-------------------------------------------------------- Top ^

Fraudsters offer IRS Tax Refund

McAfee Avert Labs has received reports of a new phishing attack that purports to be from the U.S. Internal Revenue Service (IRS). This email attack is similar to IRS phish campaigns seen before and offers victims a $375.20 refund directly to their credit card for filling in an online form.The phish is hosted on a legitimate website based in the United States that deals with special effects for Halloween and movie props.

(...Read more)-------------------------------------------------------- Top ^

To Open or Not to Open

Go on any security Web site and their best practices state that you should “never view, open, or execute any email attachment unless the attachment is expected and the purpose of the attachment is known.” But what if it’s your job to open attachments? In this day and age, human resources (HR) managers post job openings online to get the widest possible distribution. Gone are the days of newspaper ads and window postings; managers want to attract as many qualified applicants as possible and Web postings are inexpensive and effective.

(...Read more)-------------------------------------------------------- Top ^

Fake RootkitBuster Busted!

A URL link to a Trojan posing as a copy of the Trend Micro RootBuster is currently being spammed in the wild.It was found that the email containing the said malicious URL is being spammed to members registered to certain freeware download domains, such as www. bestfreewaredownload.com and betterwindowssoftware.com.

(...Read more)-------------------------------------------------------- Top ^

Top 10 Malware and Spam List 2007

Peed bot – aka "Storm Worm" aka "Nuwar" – was number one on the BitDefender® Top 10 malware list for 2007. According to BitDefender Labs, the spread of the Peed bot has placed it higher that the prolific category of trojan downloaders by almost 10 percent overall, at 33.94 percent of total detections in the past twelve months.

(...Read more)-------------------------------------------------------- Top ^

Google Toolbar: Beware of Buttons

The Google toolbar has found yet another use: as a possible malware vector. Researcher Aviv Raff has released a proof-of-concept (PoC) code, which demonstrates how an attacker may install malicious software or conduct phishing attacks by prompting the user to install a new Google toolbar button.

(...Read more)-------------------------------------------------------- Top ^

Orkut spam worm spotted!

I analyzed some suspicious scrap “2008 vem ai… que ele comece mto bem para vc” from a bunch of friends on Orkut. For a while it was all over Orkut!! Translated to English, it reads “2008 is coming…I wish that it begins quite well for you”.

(...Read more)-------------------------------------------------------- Top ^

MySpace Phishing

myspaceBreaking into someone else's MySpace account has gotten a lot of press recently, with a nasty fight between celebrity hotties Shanna Moakler, Lindsay Lohan, and Paris Hilton. But assuming you're not Paris, why would anyone want your MySpace password? And assuming you're smarter than Paris and don't use your dog's name, how would they get that password?

(...Read more)-------------------------------------------------------- Top ^

Spam e card hides Trojan sting in its tail

spam1Computer users have been warned of a spam campaign that poses as an electronic postcard in an attempt to lure the unwary into downloading a web based Trojan. Sophos reported that it has intercepted hundreds of the messages, which contain the subject line 'You have received a postcard!'.

(...Read more)-------------------------------------------------------- Top ^

Paris Hilton image spam scams spread malware

spam1The same group of hackers who last week promised nude photographs of Britney Spears is now believed to be mass spamming messages that contain a clickable image of Paris Hilton and porn star Jenna Jameson all leading to websites hosting a variety of recently patched exploits.

(...Read more)-------------------------------------------------------- Top ^

Awareness of phishing driving malware writers to other means

phishingAlthough the targets of crimeware writers looking to gain financially from their exploits tend to be larger financial institutions located in Europe or Asia, it's likely that North America will see more online fraud using rootkits and other forms of crimeware in the coming years.

(...Read more)-------------------------------------------------------- Top ^

Fortinet spots malware, phishing on Google Blogger.com pages

googleHundreds of weblogs on Google's Blogger.com platform are being used in phishing attacks or to disseminate malware, according to research released this week by Fortinet. Some traffic to the malicious blogs is being driven by a variant of the Stration mass mailing worm, according to an advisory on Fortinet’s website.

(...Read more)-------------------------------------------------------- Top ^

Spear Phishing

pharming1Spear phishers gather information, usually on the Internet, about an individual, and then craft a personalized email more likely to dupe the mark. According to the FBI, the personalization method has proved so profitable that a significant number of spear phishers, principally located outside the United States, began applying it to death-threat extortion emails for the first time last December. FBI spokeswoman Cathy Milhoan says the problem is "huge."

(...Read more)-------------------------------------------------------- Top ^

'Drive by Pharming' Attacks Potential Threat to Broadband Users

pharming1Researchers at Symantec and the Indiana University School of Informatics have uncovered a new threat to broadband users. The attack, nicknamed "Drive by Pharming", uses JavaScript on a Web site created by a hacker to reconfigure broadband routers. Once the user clicks on a link, the malicious JavaScript code changes the DNS settings on the user's router so that every time the user logs on to a Web site, DNS resolution will be performed by the attacker.

(...Read more)-------------------------------------------------------- Top ^

Adult Spam Has Been Going Down

spam1Security firm Symantec dropped its latest report onto the Internet, and noted how spam activity for January held pretty consistent with trends they have seen over previous months. Spam continues to be a massive inbox pest. Symantec said there was a little good news, as the total spam seen at the SMTP layer dropped to about 69 percent.

(...Read more)-------------------------------------------------------- Top ^

Casino Spam on the Increase

spam1Over the past month we have seen a significant increase in Casino related spam. On one day alone recently it reached over 10% of all spam we saw on that day. It appears that some U.S. online gambling companies have turned to spam in order to get more customers in Europe since the U.S. government brought in tough legislation aimed at making internet gambling illegal.

(...Read more)-------------------------------------------------------- Top ^

MySpace files law suit against 'Spam King'

spam1MySpace.com has filed a lawsuit against the self proclaimed "Spam King" for allegedly blasting the portal with spam through the use of compromised user accounts, the Web site said on Monday. MySpace also seeks a permanent injunction to bar Scott Richter, who has fought with Microsoft and the state of New York over spam, and his affiliates from using the popular social networking site.

(...Read more)-------------------------------------------------------- Top ^

Swedish bank hit by 'biggest ever' online heist

hackingbewareSwedish bank Nordea has told ZDNet UK that it has been stung for between seven and eight million Swedish krona up to $1.1 million in what security company McAfee is describing as the "biggest ever" online bank heist. Over the last 15 months, Nordea customers have been targeted by emails containing a tailor made Trojan, said the bank.

(...Read more)-------------------------------------------------------- Top ^

Image Spam Goes Boom

spam1They say that a picture is worth a thousand words, and no one took that aphorism to heart more than the criminals who plague millions of email users around the globe. Pump and dump stock scams that used to arrived as plain text now drop into inboxes as images instead.

(...Read more)-------------------------------------------------------- Top ^

Trojans fuel ID theft boom

ID Theft1Identity theft, both offline and online, is on the rise with keylogging Trojan software often forming the weapon of choice for would be fraudsters, according to a new study by net security firm McAfee. McAfee reckons the number of keylogging malware packages increased 250 per cent between January 2004 and May 2006.

(...Read more)-------------------------------------------------------- Top ^

Experts warn of dramatic rise in phishing and ID theft

ID Theft2Industry experts warned today of a "dramatic increase" in online identity theft over the past two years. A new report from McAfee said that the instances of key logging malware to capture passwords and other private information increased by 250 per cent between January 2004 and May 2006.

(...Read more)-------------------------------------------------------- Top ^

You can minimize the risk of identity theft

ID Theft1When it comes to the growing problem of identity theft, the best offense is a good defense. The Federal Trade Commission logged more than 250,000 complaints of identity theft in 2005, up about 3 percent from 2004. The identities of 9 million Americans are stolen each year, accounting for $56 billion in losses.

(...Read more)-------------------------------------------------------- Top ^

UTI Bank hooked in a phishing attack

phishing2Fraudsters of cyberspace have reared its ugly head, the first of its kind this year, by launching a phishing attack on the website of Ahmedabad-based UTI Bank, a leading private bank promoted by India's largest financial institution, Unit Trust of India (UTI).

(...Read more)-------------------------------------------------------- Top ^

Anti phishing tips from Panda

phishing3PandaLabs, Panda Software's virus detection laboratory, has predicted that theft of confidential data on the Internet will become one of the most significant IT threats over the coming year. For this reason, PandaLabs is offering a set of simple tips to safeguard the confidentiality of users’ financial data.

(...Read more)-------------------------------------------------------- Top ^

Make your own man in the middle attack online kit found

phishing3Fraudsters are hawking free trials of "universal" man in the middle phishing kits through an online forum, security researchers said today. RSA's Anti Fraud Command Center (AFCC) discovered an internet forum populated by fraudsters that is offering a set of tools to create a man in the middle scheme, according to a company news release.

(...Read more)-------------------------------------------------------- Top ^

Spam shows sudden slide

spam1Worldwide spam levels have mysteriously dropped off over the past week, according to managed email provider SoftScan, possibly as a result of a major botnet going out of service. Spam levels continued to rise in December, but crashed by 30 percent in the first week of January, SoftScan said on Tuesday.

(...Read more)-------------------------------------------------------- Top ^

Man in the middle phishing scheme targets Amazon.com

amazonWashington Post reporter Brian Krebs reported today on his Security Fix blog that hackers have created a bogus site meant to dupe users of the popular online retailer into giving up their login information.

(...Read more)-------------------------------------------------------- Top ^

'Rock Phish' blamed for surge in phishing

phishingThe first thing you need to know about Rock Phish is that nobody knows exactly who, or what, they are. Wikipedia defines the Rock Phish Kit as "a popular tool designed to help nontechnical people create and carry out phishing attacks," but according to security experts, that definition is not correct. They say that Rock Phish is actually a person, or perhaps a group of people, who are behind as much as one half of the phishing attacks being carried out these days.

(...Read more)-------------------------------------------------------- Top ^

Identity theft: A most personal of crimes

ID Theft1If you don't concern yourself about identity theft, you should. If you've taken some precautions to protect personal information, it's time for a review of your "information security." The holiday shopping season is here. Retail sales are ballooning. Credit cards and charge accounts are flying about like hungry moths in a dry cleaning store.

(...Read more)-------------------------------------------------------- Top ^
Pages: << Prev 1 2 3 4 5 6 7 Next >>