Latest Threats

  •  
  • What is the Storm Worm?

    The so-called Storm worm is actually not a worm, but rather a family of Trojans that typically have the following components:


  • U.Z.A. O/S Eliminator Worm

    The so-called "U.Z.A. O/S Eliminator" worm appears to have originated in Maldives sometime in late July or early August 2007. The worm exploits the autorun feature, enabling it to spread from removable USB/thumb drives to other computers.


  • Freedom / Outlaw Worm

    A reader writes: "I think I have a virus. I get an error when I try to access the Task Manager and Registry Editor. When I try to click on any of my drives, I receive another error and when I use the right mouse click, there is a command on the menu that reads, "if freedom is outlawed, then only oulaws have freedom" and a second command that reads "just a game" ...


  •  
  • Trojan.MeSpam Makes You the Spammer

    If you've ever had a blog or a web forum, you know the pain of bots - those insidious automatic (im)posters that fill your blog or forum with comment spam that points to porn. Trojan.MeSpam takes it one step further. Instead of relying on bots to do the dirty work, Trojan.MeSpam makes you the culprit. Once infected, every forum post you make, every webmail you send, and every blog comment you leave will also deposit a link pointing to a nefarious website.


  • Rinbot Worm Prompts Repeated Denials

    The Taipai Times reports a new trojan that infected thousands of MSN Messenger users via the Kelvir.B instant messaging worm. According to the article, MSN representatives and Trend Micro identify the downloaded trojan as a new threat, which Trend Micro dubs BKDR_RINBOT.A. A researcher for Symantec quickly dismisses the notion of a new threat, claiming it was the Backdoor.irc.bot worm - which ironically is Symantec's generic detection name for a particular class of threats that have not yet been positively identified.


  • Storm Worm

    Also known as: Trojan-Downloader.Win32.Small.dam, Trojan.Downloader-647, Trojan.DL.Tibs.Gen!Pac13, Email-Worm.Win32.Zhelatin.a (Kaspersky), Downloader-BAI (McAfee), Troj/Dorf-Fam (Sophos), Trojan.Peacomm (Symantec), TROJ_SMALL.EDW (Trend Micro), Win32/Nuwar.N@MM (Microsoft) Type: Email worm, Trojan, Downloader


  • Skype Chatosky Worm: Friend or Foe?

    Okay, so there's no such thing as a good worm, and I truly believe that. Still, thanks to the Chatosky worm, I did uncover some things about the Skype service that I might not otherwise have known.


  • Qspace Javascript Worm Targets MySpace Users

    MySpace users are yet again a victim of another adware attack. Dubbed JS_QSPACE.A by antivirus vendor Trend Micro and JS.Qspace by Symantec, the Javascript worm exploits a cross-site scripting (XSS) vulnerability embedded in a malicious Quicktime .MOV file. Viewing the profile of an affected user results in a redirection to a phishing site, which instructs the visitor to login to view the movie. Once the visitor has supplied their MySpace credentials, their profile is then modified to dish up the same movie and everyone on their contact list is then automatically sent one of the following messages:


  • Rontokbro aka Brontok Worm

    A mass-mailing email worm that also spreads via USB and thumb drives, the Rontokbro worm - also know as Brontok - takes a multifaceted approach to defy detection and removal. Rontokbro / Brontok modifies the HOSTS file to prevent access to antivirus vendor sites, thereby preventing access to signature updates and online scanners. It may also disable antivirus and other security software running on the system, as well as blocking access to Registry Editor and other system tools needed to attempt manual removal of the worm.


  • Stration Worm

    August 15, 2006 Method of Propagation: The Stration worm spreads via email, using a variety of subject lines and message text. The attachment carried by the Stration email may be named one of the following:


  •  
  • Start
  • Prev
  • 1
  • Next
  • End