Latest Posts | Page 142

In the September edition of Security Minute with Fortinet, researcher Derek Manky talks about the most prevalent threats and threat trends plaguing the internet over the last 30 days, including the latest Twitter worm, Zeus and Zitmo, various software vulnerabilities, and the "Here You Have" virus. [Read More]
by RSS Rick Popko  |  Sep 30, 2010  |  Filed in: Security Research
Our September 2010 Threat Report is up. Below is a recap of events. Botnets continued to be hot on the malware scene, Sasfis being one of the major detections. The top three detections in our malware list this report indicate packed, malicious samples - most of which relate to Sasfis. On September 14th there was a surge in Sasfis activity - thanks to the Asprox spambot. Asprox has been around for some time, but has been quite silent over the past year. One of our systems tracking Sasfis showed that the botnet downloaded an Asprox spam module... [Read More]
by RSS Derek Manky  |  Sep 29, 2010  |  Filed in: Security Research
While wearing my eyes off on the assembly code of the Symbian malware Zitmo, I had been quite embarrassed not to find any clear link with stealing online banking credentials as the rest of the ZeuS attack seemed to indicate. This issue is now solved, I know how the cyber-criminals did it or intended to. The Zitmo malware is actually a light version (or a cracked one) of the Russian SMS Monitor application. This borderline application is officially meant for "parental control" and "security audit", but it looks like it ended upin the wrong hands... We... [Read More]
by RSS Axelle Apvrille  |  Sep 28, 2010  |  Filed in: Security Research
During the weekend, in our monitoring of the Zeus botnet, my colleague Kyle Yang stumbled upon an unexpected payload: a brand new mobile malware piece we named SymbOS/Zitmo.A!tr (Zitmo standing for "Zeus In The MObile"), likely aimed at intercepting confirmation SMS sent by banks to their customers. This also caught the eye of s21sec with a nice analysis you should read. Basically, the ZeuS network initiated some social engineering operations (via injection of HTML forms in the victims' browser) to get the phone number and phone model of its infected... [Read More]
by RSS Axelle Apvrille  |  Sep 27, 2010  |  Filed in: Security Research
As a follow-up to my earlier blog post on the subject of Trend Micro's history of patent aggression, there are a couple recent developments worth noting: First, on September 16, the United States Patent and Trademark Office (US PTO) issued a formal order granting Fortinet's petition to re-examine the validity of Trend Micro's patent on antivirus functionality, the 5,623,600 patent, stating that a “substantial new question of patentability” exists with respect to the patent based on prior art currently being considered by the US PTO. Second,... [Read More]
by RSS Patrick Bedwell  |  Sep 23, 2010  |  Filed in: Security Research
Network World in conjunction with Fortinet, this week launched a new editorial podcast called Security Landscape that looks at the most recent computer security threats, ranging from exploits to malware to spam campaigns. In this episode, tech influencer Keith Shaw talks with Fortinet threat researcher Derek Manky about the TotalSecurity ransomware threat, social engineering spam campaigns and why we could start seeing lots of Windows XP exploits hitting the top of the charts. Network World is the premier provider of information, intelligence and... [Read More]
by RSS Rick Popko  |  Sep 14, 2010  |  Filed in: Security Research
If you’re in the US, look for the new NASDAQ / Fortinet TV commercial spotlighting Ken Xie, CEO and founder, of Fortinet. It is part of NASDAQ’s 2010/2011 “Dream It. Do It” campaign that highlights a handful of visionary leaders and their companies. The campaign will run on Fox network programs and the MSG Network during these dates: • National media: Sept - Nov 2010 • NY Metro media: October 2010 - April 2011 If you can't wait to see it on your television, check out the video below: [Read More]
by RSS Patrick Bedwell  |  Sep 09, 2010  |  Filed in: Security Research
Last week, a lady from the sales department dropped in to see me for some help with her iPhone. She was worried because she had "suddenly" lost all of her contacts, music and emails. She had turned to a neighbor of hers, an "expert" who had told her she had "a Trojan on her iPhone". Whaow. A Trojan on an iPhone: that was definitely very interesting, as I know of none yet. I know a worm (Eeki) and a couple of spyware (Trapsms, MobileSpy) or other questionable software, but no real Trojan. But, I'm sure you've guessed I am being slightly sarcastic... [Read More]
by RSS Axelle Apvrille  |  Sep 07, 2010  |  Filed in: Security Research
FortiGuard Labs’ August 2010 Threat Report has been posted. Below you will find an activity recap. In March 2010, we saw some elevated activity for Ransomware: malware which locks out applications and data from a users PC demanding ransom before restoring access. TotalSecurity was one such ransomware variant circulating then, and has been quite prevalent again this report. This infection has been in business for at least eight months, and appears to be still going strong. Our #1 malware detection this report was a TotalSecurity loader (W32/FakeAlert.LU)... [Read More]
by RSS Derek Manky  |  Aug 31, 2010  |  Filed in: Security Research
[Read More]
by RSS Rick Popko  |  Aug 18, 2010  |  Filed in: Security Research