Malware


55,000 Hacked Sites Serving Malware Cocktail

Security researchers are raising an alarm for a potent malware cocktail — backdoor Trojans and password stealers — being pushed to Windows users from about 55,000 hacked Web sites.

According to Mary Landesman, a researcher in ScanSafe’s security threat alert team, the cybercriminals have embedded a malicious iFrame into tens of thousands of Websites to fire exploits at unsuspecting PC users who surf to one of the rigged sites.

Hackers Using Trojans to Steal One-Time Passwords

It seems that hackers have not been taking the move to two-factor authentication lying down. Instead, they have been hard at work figuring out a method for siphoning off the one-time passwords generated by devices such as the RSA SecurID token and using them immediately to steal money from victims’ bank accounts.

Mitigating Web-Based Malware Attacks

In this Google Tech Talk, Neil Daswani, founder of Dasient and a former Google engineer, discusses the recent epidemic of attacks featuring legitimate Web sites that have been compromised by malware and what can be done to combat the threat.


Arbor Networks security researcher Jose Nazario has stumbled upon a crimeware botnet using Twitter as its command-and-control operation.
The botnet, which is linked to identity thieves in Brazil, uses Twitter status messages to communicate with bots — sending new links for the infected computers to contact and new commands and executables to download and run.   Read the full story [arbornetworks.com]

From CNN (John D. Sutter)
 
Remember Conficker? The hugely talked-about computer worm seemed poised to wreak havoc on the world’s machines on April Fool’s Day. And then … nothing much happened.
But while the doom and gloom forecast for the massive botnet — a remotely controlled network that security experts say infected about 5 million computers — never came to pass, Conficker is still making some worm hunters nervous. Read the full story [cnn.com]

From CNet News.com (Elinor Mills)

During their presentation at the Black Hat and Defcon hacker conferences next week in Las Vegas, security experts will release a tool that can be used to break into Oracle databases.

Chris Gates and Mario Ceballos will present Oracle Pentesting Methodology and give out “all the tools to break the ‘unbreakable’ Oracle as Metasploit auxiliary modules,” according to a summary of their presentation on the Defcon Web site. Read the full story [cnet.com]

Malicious hackers have found a new vulnerability in Adobe’s ever-present Flash software and are using rigged PDF documents to launch exploits against Windows targets.

The Adobe Flash Player flaw, which is currently unpatched, affects millions of Windows XP and Windows Vista users.  Adobe has acknowledged a “potential vulnerability” but, inexplicably, has not seen it fit to warn of the zero-day attacks or issue pre-patch mitigation guidance to tens of millions of its customers.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.