Virus

the new Fake SSL certificates

Posted by admin on October 09, 2008
Virus / No Comments

The banks use the online cryptographic protocols for exchanging information over the network, hackers and do not hesitate to adapt to this technology. A new case is wrong Secure Sockets Layer (SSL) certificates again shown at the end of the phishing threat, we saw last April and May (see our blog on forged digital certificates, phishing skirt, and an attack similar to Merrill Lynch) .

This time, is the site of Open Business Banking has been strengthened by the malware authors with Rock Phish Kit. The wrong side in the screenshot shows that some banks are in the Community Bank account:

sslcertificate

Following the example of cases of phishing or malware, calls this site Spoofée customers a new security certificate. The website always shows the options for users of Windows and Mac users, but users arrive a. EXE, the execution of malware routines in their systems, their security, for secure online transactions, such as the security certificates do .

sslcertificate
However, another certificate attacking seems even today, this time from Standard Bank. The wrong side (even with a rock phish URL) asks the user to download a 128-bit certificate update. In the file. Exe files have been downloaded, even malicious.

sslcertificate

Trend Micro detects the downloaded files as two TROJ_SMALL.MJZ and TROJ_AGENT.ARNU, respectively. TROJ_SMALL.MJZ loads spyware detected as TSPY_PAPRAS.AR. TROJ_AGENT.ARNU downloads Possible_Crypt time, malware, a similar behavior shows the change in the DNS directories.

The attacker areas are now blocked by the Trend Micro Smart Protection Network. In addition, this technology detects the malicious executable on the desktop and offers solutions aimed at their elimination.

Malicious Software Removal Tool

Posted by admin on March 11, 2008
Virus / No Comments

The Microsoft Windows Malicious Software Removal Tool checks computers running Windows Vista, Windows XP, Windows 2000, and Windows Server 2003 for infections by specific, prevalent malicious software—including Blaster, Sasser, and

Mydoom—and helps remove any infection found. When the detection and removal process is complete, the tool displays a report describing the outcome, including which, if any, malicious software was detected and removed.

Microsoft releases an updated version of this tool on the second Tuesday of each month, and as needed to respond to security incidents. The tool is available from Microsoft Update, Windows Update and the Microsoft Download Center.

Note  The version of the tool delivered by Microsoft Update and Windows Update runs in the background and then reports if an infection is found. If you would like to run this tool more than once a month, use the version on this Web page or install the version that is available in the Download Center

Tags:


 Powered by Max Banner Ads