The revelation that the open-source Unreal IRC server download has been infected with malware for some eight months is pretty worrying. But the added discovery that this Trojan horse made its way into the Gentoo distro is real reason for the Linux community to re-examine how trusted repositories are handled.
Hackers compromised the website of the Jerusalem Post on Monday so that it served up malware.
The attack relied on planting scripts on the site itself, rather than the more common tactic of compromising its ad-serving system to serve tainted ads. The attack ultimately attempted to dump Windows-based malware on the Windows PCs of visiting surfers.
The eSoft Threat Prevention Team has uncovered thousands compromised web servers hosting fake YouTube pages. Attempting to play the video on these fake pages prompts the user to install a ‘media codec’ which then infects the machine with malware.
The fake YouTube pages are well crafted and look almost identical to the real site. By using websites like YouTube, cyber criminals are taking advantage of a users’ inherent trust in the site and are able to infect more machines.
Attackers have laced applications for Windows Mobile devices with malware that could cost users serious money in unauthorised charges.
The offending apps are ”3D Anti-Terrorist,” ”PDA Poker Art” and a Codec pack for Windows Mobile 1.0, and were available on several sites providing legitimate mobile software, according to Kevin Mahaffey, CTO of mobile security company Lookout. The company is currently trying to contact sharewareplaza.com, which is the only remaining site researchers found still offering the infected games, he said.
Recent reports have detailed Google's actions to phase out the internal use of Microsoft's operating system for security reasons following targeted attacks that the company has experienced. The targeted espionage attacks took place in January of this year and were carried out with the aim of gaining access to the Gmail accounts of Chinese human right activists.
Now as Google employees consider the option to select either Apple Macs running OS X or PCs running the open source Linux operating system, the question is whether other corporations will follow this practice.
"Malware embedded into legitimate-looking games designed for Windows Mobile has appeared, automatically dialing up foreign telephone services to rig up hundreds of dollars in illicit charges for users behind their backs," Prince McLean reports for AppleInsider.
Mac security firm Intego has issued a warning about a Mac twist on a two-year-old Windows spyware app that sends a variety of potentially sensitive information to external servers. Dubbed "OSX/OpinionSpy," the spyware is installed along with a number of widely available third-party Mac OS X screensaver modules, as well as with at least one shareware tool to strip audio tracks from Flash videos.
A hacking tool advertised as being capable of enabling users to hack Windows Live accounts and grab Windows Live Messenger passwords is actually used by attackers to spread their malicious code. According to BitDefencer, HackMSN.exe will not only not permit users to recover Windows Live passwords, but will instead infect them will malware, namely the Backdoor.Bifrose.AADY.
After having been told for years that Macs are much safer and more secure than Windows-based PCs, it’s kind of satisfying when a nasty piece of malware hits the Apple operating system.
According to anti-virus company Intego, a new high-risk spyware application known as ‘OSX/OpinionSpy‘ has hit Mac OS X.
Kaspersky Lab, a leading developer of secure content management solutions, announces that it has issued its quarterly malware report titled, Information Security Threats in the First Quarter of 2010.
According to the report the US and Russia have surpassed China’s lead in terms of the numbers of servers located on their territories that host malicious programs.
