Articles about Anti-Virus

Brazilian whacks: as economy tanks, cyber-crooks samba

Brazil's economy may be hurtling towards recession but its online criminal underground is booming with wannabe hackers and carders racing to get a cut, research finds. Trend Micro's work is the latest in a series of papers it has published in recent months that examine regional online crime economies including North America, …
Darren Pauli, 13 Jan 2016

Read the Economist last weekend? You may have fetched more than just articles (yup, malware)

Third bathroom reading material The Economist served malware from its website via the compromised PageFair network. The biz mag today alerted readers that it put their PCs at risk last weekend. "If you visited economist.com at any time between Oct. 31, 23:52 GMT and 01:15 GMT, Nov. 1, using Windows OS and you do not have …
Shaun Nichols, 06 Nov 2015
The NSA Unchained

Anti-PRISM Trojan explodes over Jay-Z fans

Fans of rapper Jay-Z who thought they'd grabbed hold of an app granting them access to an early release of his new album Magna Carta Holy Grail have found themselves on the receiving end of an anti-PRISM Android Trojan designed to slurp all their data, according to security researchers. It is not yet clear if the data-stealing …
John Leyden, 05 Jul 2013

John McAfee launches cert authority but it's got a POODLE problem

Eccentric infosec man John McAfee is now the proprietor of a Certificate Authority named BlackCert. Fresh from a shootout friendly discussion with police over drug and firearm possession, the one-time anti-virus boss has made what is badged as a disruptive play into SSL. BlackCert will offer unlimited use of SSL certificates …
Darren Pauli, 13 Aug 2015

TrueCrypt + Norton AV = BSOD, wail disgruntled users

Updated Encrypted disk users who upgrade to Norton 2015 have been confronted by the dreaded Blue Screen of Death. Norton 2015 appears to trigger a crash on Windows 8.1 PCs that runs a disk encryption driver, according to user complaints about the problem in a thread on a Symantec support forum. Many of those affected are running …
John Leyden, 20 Feb 2015

Privacy bods Detekt Hacking Team code nasty dressed as bookmark manager

The Detekt privacy tool has discovered Hacking Team's Windows spyware masquerading as a benign bookmark manager. Detekt was launched last week and offers users of Windows systems to inspect their machines for traces of known government spyware. Developer Claudio Guarnieri said on Twitter the tool discovered the malicious …
Darren Pauli, 26 Nov 2014
The Register breaking news

Sophos punts anti-virus for Klingons

Sophos is now offering anti-virus protection for Klingon speakers. According to the company, you can use Klingon Anti-Virus from Sophos to "quickly perform an on-demand scan and find viruses, spyware, adware, zero-day threats, Betazoid sub-ether porn diallers, and Tribbles that your existing protection might have missed." But …
Cade Metz, 18 May 2009

Ransomware blueprints published on GitHub in the name of education

Turkish security bod Utku Sen has published what appears to be the first openly available source code for ransomware – free for people to use and spread. The "Hidden Tear" ransomware, available to GitHub, is a functional version of the malware the world has come to hate; it uses AES encryption to lock down files and can …
Darren Pauli, 18 Aug 2015
The Register breaking news

Anti-virus vendor trio plug website flaws

White-hat hackers have uncovered vulnerabilities on the websites of anti-virus firms that created a phishing risk. Cross-site scripting (XSS) bugs of varying severity were found on the websites of Symantec (here), Eset (here) and Panda Security (here) by Team Elite, the white-hat hackers who discovered the flaws. We notified all …
John Leyden, 04 Oct 2010
The Register breaking news

Iran cuts off oil plants hit by mystery data-destroying virus

Malware discovered at an Iranian oil terminal forced Iran to disconnect key oil facilities on Sunday. Authorities said an unnamed data-deleting virus prompted them to disconnect the main oil export terminal on Kharg Island in the Persian Gulf. The websites of the Iranian oil ministry and the National Iranian Oil firm went dark …
John Leyden, 25 Apr 2012

AVG defends plans to flog user data as privacy row continues

Security software firm AVG has defended changes in its privacy policy, due to come into effect on Thursday (15 October), allowing it to collect and resell users’ anonymised web browsing and search history. AVG argues that it has no immediate plans to monetise users’ browsing habits. However, independent security experts remain …
John Leyden, 14 Oct 2015
For Sale sign detail

Fourth anti-virus firm buys into behavioural blocking

Web and email security firm Marshal8e6 has bought behaviour-based malware detection specialist Avinti. The terms of the deal, announced Tuesday, were undisclosed. Marshal8e6 said the deal would allow it to offer its customers improved protection against blended threats, emails that attempt to trick recipients into visiting sites …
John Leyden, 14 Apr 2009
Monk tech support

Even 'Your computer has a virus' cold-call gits are migrating off XP

Tech support scammers have begun targeting smartphone and tablet users with offers to fix non-existent problems – for exorbitant fees. Cold call scams that attempt to hoodwink marks into paying for useless remote diagnostic and cleanup services have been a popular scam for years. Victims are often encouraged to sign up to …
John Leyden, 15 Jan 2014

Apple tells Mac users: Get anti-virus

For the first time, Apple is recommending the use of anti-virus tools to protect Mac systems. Long something of a phantom menace, strains of malware capable of infecting Mac machines have gradually been increasing in prevalence over recent months. In addition, VXers are making more use of web-based attack and applications …
John Leyden, 02 Dec 2008

Vigilante VXer FIXES SOHOpeless routers

Threat boffin Mario Ballano says VXers have broken into a host of routers creating a botnet dedicated solely to securing and hardening the devices. The Symantec security man says the botnet first detected in November last year has not launched a single denial of service attack or undergone any form of black hat activity in the …
Darren Pauli, 02 Oct 2015
firing range - target in cross hairs

Apple is picking off iOS antivirus apps one by one: Who'll be spared?

Confusion reigns over whether or not Apple is really pulling all iOS antivirus apps from its online software store. One leading developer says yes, another says no, and Apple is keeping schtum. Security specialist Intego claims the Cupertino idiot-tax operation has yanked anti-malware tools from the iOS App Store, leaving just …
John Leyden, 24 Mar 2015
Freescale Internet of Things overview

We need to know about the Internet of Things, say US Senators

As US lawmakers call on the Government Accountability Office to assess the world of the Internet of Things, Eugene Kaspersky has unloaded on the thingification of home appliances. A bipartisan group of US Senators (Brian Schatz and Cory Booker for the Democrats, Deb Fischer and Kelly Ayotte for the Republicans) released the …
The Register breaking news

Top vendors flunk Vista anti-virus tests

Security vendors including CA and Symantec failed to secure Windows systems without fault in recent independent tests. Twelve of the 35 anti-virus products put through their paces by independent security certification body Virus Bulletin failed to make the grade for one reason or another and therefore failed to achieve the VB100 …
John Leyden, 06 Aug 2009

Kaspersky Lab denies tricking AV rivals into nuking harmless files

Kaspersky Lab deliberately fed bogus malware to its rivals to sabotage their antivirus products, two anonymous former employees allege. Kaspersky says the accusations are false. Reuters reported today that two ex-Kaspersky engineers claim they were tasked with tricking competing antivirus into classifying benign executables …
John Leyden, 14 Aug 2015
The US White House. Pic: Roman Boed

CozyDuke hackers targeting prominent US targets

A newly discovered group of cyber-spies are closely targeting high profile US targets, possibly including both the White House and the State Department. The so-called CozyDuke hackers make extensive use of spear-phishing, sometimes using emails containing a link to a hacked (otherwise legitimate) websites such as "diplomacy.pl …
John Leyden, 22 Apr 2015
The Register breaking news

Google guru blasts Android virus doomsayers as 'charlatans'

Google's open-source program manager has launched an entertaining rant against firms offering mobile security software, accusing them of selling worthless software and of being "charlatans and scammers". Chris DiBona, Google's open-source programs manager, argues that neither smartphones based on Google's Android nor Apple's iOS …
John Leyden, 21 Nov 2011

TorrentLocker scum have better email lists than legit devs, telcos

Spammers deploying the TorrentLocker ransomware are so good at targeting victims that their poison emails hit the mark more frequently than those sent by legitimate software companies and professional marketers. Trend Micro's just analysed the malware in a report titled TorrentLocker Landscape: Targeting Even More Victims in …
Darren Pauli, 09 Sep 2015
apple mac malware vxer

Ex-NSA security bod fanboi: Apple Macs are wide open to malware

A former NSA staffer turned security researcher is warning that bypassing typical OS X security tools is trivial. Patrick Wardle, a former NSA staffer and NASA intern who now heads up research at crowd-sourced security intelligence firm Synack, found that Apple's defensive Gatekeeper technology can be bypassed allowing unsigned …
John Leyden, 07 May 2015
The Register breaking news

Ukrainian cops silence old-skool virus tinkerers' playground

Ukrainian cops have shut down a long-running malware exchange website frequented by old-school virus writers. A message on the front page of the VX Heavens website announces that the site has been forced to shut up shop after the plods seized its servers last Friday as part of a criminal investigation. According to the shuttered …
John Leyden, 29 Mar 2012
Sean Connery in Dr. No

Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER

Amnesty and Privacy International are offering a free-of-charge spyware detection tool designed to help journalists and human rights activists stay one step ahead of government surveillance. The Windows-only Detekt anti-spyware tool is designed to be a supplement, rather than an alternative, to pre-existing anti-virus protection …
John Leyden, 20 Nov 2014

MS scolds businesses for failing to eradicate 7-year-old malware

Zero-day threats and custom malware get all the publicity, but age-old malware strains including ZeuS and Conficker remain active in UK corporates. “The bad guys don’t have to be smart, they can use something that’s 7-8 years old,” Stuart Aston, chief security advisor at Microsoft UK, told delegates at the RSA Unplugged mini- …
John Leyden, 04 Jun 2015
The Register breaking news

Free anti-virus scanner hits the cloud

Avira has added cloud technology to the latest version of its popular freebie anti-virus scanner. Version 10 of Avira AntiVir, released on Tuesday, adds cloud-based detection to a free-of-charge security scanner that competes with similar products offered by (Czech-firm ALWIL's) Avast and AVG. All three firms aim to move …
John Leyden, 24 Mar 2010
The Register breaking news

Looking for code work? Write fake anti-virus scripts

Updated A scareware purveyor has brazenly advertised for recruits on a mainstream job market website. A job ad on Freelancer.com offers work for a coder prepared to turn his hand to the creation of fake anti-virus website redirection scripts. However, prospective applicants are warned not to expect a big payday - the budget for the …
John Leyden, 25 May 2010
Xen project hypervisor logo

Xen hardens up with zero-footprint guest introspection code

The Xen Project's had a nasty run with security of late, thanks to a run of five bad bugs, but has revealed plans to improve matters in the forthcoming version 4.6 of its open-source hypervisor. The Project's new weapon is called libbdvmi and addresses the fact that running security software on a guest virtual machine can be …
Simon Sharwood, 05 Aug 2015

Five-star Flash phish filched from Hacking Team targets bigwigs

The DarkHotel global advanced threat actor group is targeting suit-wearing types with an old-school HTML application stuffed with the Adobe Flash exploit borrowed from stolen Hacking Team data. The flaws were quickly patched after the Hacking Team goring in July, but DarkHotel appears to have started targeting the exploits …
Darren Pauli, 11 Aug 2015
The Register breaking news

Sourcefire jumps into anti-malware market

Sourcefire, the security biz behind the commercial versions of the open-source Snort intrusion-detection software, is bowling itself at enterprises and touting tech designed to quickly detect and block malware outbreaks. FireAMP offers a malware discovery and analysis tool that offers visibility of threats and outbreak control. …
John Leyden, 23 Jan 2012

Net scum respect their elders so long as it leads to p0wnage

Net scum are employing both cool new attacks like the Angler exploit kit and oldies-but-goodies such as macroviruses in their undergoing something of a generational clash, with Cisco reporting both Word macros and the sophisticated Angler exploit kit are the most popular attack vectors this year. Blackhats dumped macros as an …
Darren Pauli, 20 Aug 2015
Flytrap

New twist as rogue antivirus enters death throes

A rogue anti-virus program called Defru has taken to the browser to find a smarter way of infecting users, Microsoft researchers say. The Defru malware blocks users from visiting certain websites and instead displays warnings about fake perceived threats while the correct intended web address was still displayed. Most victims …
Darren Pauli, 21 Aug 2014
Warning: biohazard

Trend, Sophos and McAfee flunk Vista SP1 anti-virus tests

Top tier anti-virus vendors including McAfee, Trend Micro, and Sophos all failed to secure Windows Vista SP1 in recent independent tests. Virus Bulletin, the independent security certification body, said 17 of 37 anti-virus products tested failed to reach the VB100 certification standard. McAfee VirusScan, Trend Micro Internet …
John Leyden, 03 Apr 2008

Trustwave: Here's how to earn $84,000 A MONTH as a blackhat

Exploit kit traders and ransomware slingers are in one of the most profitable industries in the world, landing a whopping 1,425 percent profit margin for raiding legitimate trade. Figures from infosec firm Trustwave show the blackhats who are enjoying what appears to be a current boom can score outrageous amounts of money by …
Darren Pauli, 10 Jun 2015
shutterstock_222258445-roadblock

Blocking mobile adverts just became that little bit easier

For those mobile operators wanting to block adverts and prevent them reaching subscribers' screens (all in the name of reducing bandwidth usage and saving customers’ money of course) Israeli tech company Shine can make that happen. “There is a lot of grey in there between advertisers and publishers,” said Roi Carthy, the …
Simon Rockman, 19 May 2015
Google car

Insurance companies must start buying security companies

The Insurance industry encompasses a very odd paradox: it wouldn’t exist without risk, yet does everything in its power to remove any risks for its policy-holders. Insurers only make money if they don’t pay out, and they won’t pay out if they can keep you from doing any of the things they’ve identified as risky. We’re already …
Mark Pesce, 29 Oct 2015
graph up

Microsoft launches anti-virus public beta

Microsoft has released a free beta of its upcoming anti-virus application. According to Microsoft, the new anti-virus application known as Windows OneCare Live consumer beta is "like taking your PC in for a tune up at the service station". The release is part of the forthcoming Windows OneCare set of deliverables, and yesterday …
SecurityFocus, 01 Dec 2005

Three Estonians jailed for malware spree that infected 4 MILLION computers

Three Estonians have been sentenced to a cumulative 11 years for their cybercrime activities which infected more than four million computers with malware across more than 100 countries. The three crims, who were sent down by US District Judge Lewis A. Kaplan in Manhattan on Thursday, were: Timur Gerassimenko, 35, who received …
man_from_uncle_648

GCHQ: Security software? We'll soon see about THAT

The UK's spook agency GCHQ has been working with the National Security Agency to subvert anti-virus software, according to the latest piece of spoon-fed Snowden info reported on The Intercept. According to Glenn Greenwald's rag, spooks reverse-engineered software products in order to obtain intel – a tactic that will surely come …
Kat Hall, 23 Jun 2015
The Register breaking news

iPad anti-virus shield guards against phantom threat

Mac security specialist Intego has begun offering the first antivirus scanner capable of inspecting Apple's much-hyped iPad, despite the questionable need for security scans on the device. The iPad, which Apple began selling in the US last weekend, runs on the same operating system as the iPhone. Only jailbroken iPhones with …
John Leyden, 07 Apr 2010
thumbs down teaser 75

Microsoft's OneCare flunks anti-virus test

Microsoft's Live OneCare placed last in a test on the effectiveness of anti-virus security packages by Austrian researchers. AV Comparatives put 17 security packages through their paces to see how well they recognised a battery of nearly half a million items of malware. Winner G Data Security's AntiVirusKit (AVK) identified …
John Leyden, 05 Mar 2007
botnet

Cybercrime taskforce collects huge botnet scalp on first go

A sophisticated botnet has been neutered by a consortium starring the Dutch National High Tech Crime Unit and the Joint Cybercrime Action Taskforce. The botnet, known by a number of names, including AAEH and Beebone, was a "polymorphic downloader bot" which installed various forms of malware on victims’ computers. Like an …
Dragon

NOD32 AV remote root wormable hack turns corporate fleets to meat

Google Project Zero bod Tavis Ormandy has disclosed a "trivial" means of remotely hack the ESET NOD32 antivirus platform. Ormandy's finding prompted the Slovak company to rush a patch a day before his disclosure overnight. The remote-root exploit is potentially wormable and, he said, of practical value to criminals. "Any …
Darren Pauli, 25 Jun 2015

US hospitals to treat medical device malware with AC power probes

Two large US hospitals will in the next few months begin using a system that can detect malware infections on medical equipment by monitoring AC power consumption. The unnamed hospitals will be the first in a list to test the add-on monitoring platform dubbed WattsUpDoc to check for potentially life-threatening malware running …
Darren Pauli, 27 Apr 2015
Warning: biohazard

Hackers seed malware on Indian anti-virus site

Hackers planted malicious script on the site of an Indian anti-virus firm this week. The website of AVsoft Technologies was attacked by unidentified miscreants in order to distribute a variant of the Virut virus. AVsoft Technologies makes the SmartCOP antivirus package. One of the download pages of the site was boobytrapped with …
John Leyden, 08 Feb 2008

France fingered as source of Syria-spying Babar malware

France's spy agency has been fingered as the likely author of complex reconnaissance malware, researchers say. The Casper malware is one of a handful with links to the Babar spy program which leaked NSA documents revealed last month to be the handiwork of France's Direction Générale de la Sécurité Extérieure (General Directorate …
Darren Pauli, 06 Mar 2015

Slippery Windows Updates' SOAP bubbles up SYSTEM priveleges

Blackhat 2015: Microsoft has bungled Windows Server Update Services (WSUS), according to hackers Paul Stone and Alex Chapman, with insecure defaults that let them hijack OS updates. Attackers that have previously gained admin privilege on a target system can elevate themselves to system-level access by skipping the normal signed update …
Darren Pauli, 07 Aug 2015

Apple anti-virus advice was nothing new

One of the more famous Get a Mac ads boasted that Apple systems, unlike Windows boxes, didn't need anti-virus software. So when an article on an Apple support site encouraged the use of anti-virus software on Macs it seemed like news. In truth the article reiterated long-standing, though little publicised, advice from Apple. …
John Leyden, 03 Dec 2008
bug on keyboard

Panda antivirus labels itself as malware, then borks EVERYTHING

Panda users had a bad hair day on Wednesday, after the Spanish security software firm released an update that classified components of its own technology as malign. As a result, enterprise PCs running the antivirus software tied themselves in something of a knot, leaving some systems either unstable or unable to access the …
John Leyden, 11 Mar 2015