Malware

Researchers analyzing the Dark Comet remote access Trojan (RAT) program say that data from more than 400 campaigns suggests the malicious program is being used for a wide range of jobs, from attacks on online gamers, to potential hacks of air force bases and government Web sites. 

A new downloader uncovered by researchers at the Finnish security firm F-Secure is capable of sniffing out which operating system a user is running and infecting them with a custom malicious payload.

Symantec is warning of new malware masquerading as two apps on Google Play that claimed up to 100,000 victims before the Trojan was removed.Both “Super Mario Bros.” and “GTA 3 Moscow City” racked up 50,000 to 100,000 downloads after being posted June 24 on Google Play.

A new family of malware has infected some 100,000 Android devices via malicious application downloads on nine separate third-party markets in China, according to researchers at the mobile security provider TrustGo.

The security firm Trusteer reports that new Web-based attacks are targeting Android smartphone users in a campaign to circumvent two-factor sign-on features used by many banks to protect account holders.

You know things have gone sideways when NPR and local TV news are talking about the “Internet doomsday” or “Black Monday”. We have DNSChanger to thank for this latest bout of Internet paranoia, and there’s a ton of misinformation and craziness circulating about the malware. We’re here to provide some actual information, luckily for you.

The author of DarkComet, one of the more notorious remote administration tools in use today, has said that he is ending development and sales of the tool after finding out that DarkComet was used by the Syrian government in attacks against anti-government activists.