T.J. Campana on the Waledac Botnet Takedown

Dennis Fisher and Ryan Naraine talk with Microsoft’s T.J. Campana about the company’s work to disrupt and take down the Waledac botnet and the other work being done by Microsoft’s Digital Crimes Unit.


To improve the chances of installing their malware on random computers,
scareware peddlers have decided to set up more that 60 websites that
contain hundreds of possible search matches for hot, trending topics. Read the full article. [Help Net Security]

Guest editorial by Roel SchouwenbergOver the last few months, there’s been quite a lot of news chatter around Banker Trojans emptying out online bank accounts of small businesses in the U.S. Today, I was reading one of such stories on Brian Krebs’ site.  After reading that story I came across another news item that described booting from an alternative media to experience safe internet banking.

The Koobface botnet is the tip of the iceberg for the
malicious operations of the online crime ring. Here are the top 10 things you
didn’t know about the Koobface gang. Read the full article. [ZDNet]

SQL injection has become perhaps the most widely used technique for compromising Web applications, thanks to both its relative simplicity and high success rate. It’s not often that outsiders get a look at the way these attacks work, but a well-known researcher is providing just that.

Secunia reports a hole in Google’s Picasa image management and editing software that allows attackers to compromise Windows using specially crafted JPEG images to provoke an integer overflow in the PicasaPhotoViewer.exe file, which can then be exploited to cause a heap overflow. Google closed the hole in the recently released Picasa 3.6 build
105.41, although Google’s release notes say nothing about a fix. Read the full article. [The H Security]

With the help of a U.S. federal judge, Microsoft has struck a blow against one of the Internet’s worst sources of spam: the notorious Waledac botnet. Microsoft said that it had been granted a court order that will cut off 277 .com domains associated with the botnet. Read the full article. [Computerworld]

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.