Viruses - Keep Your AntiVirus/AntiSpyware Up to Date! |
|
Latest Viruses |
|
|
From Sophos
|
Live
up to date virus reports here
New! Live Virus Threat
Information (Continually Updated)
A new feature page that provides you constantly updated
virus threat
information from three well-respected Anti-Virus Services.
![]()
virus:
A program that attempts to spread from computer to computer, often via e-mail, by attaching itself to a host program. It may damage hardware, software, or data.
worm:
A stand-alone, self-replicating program that usually consumes memory, thus causing a computer to slow or stop responding.
|
Fake Microsoft patches themed malware campaigns spreading Link 6-18-09 Gumblar Malware Exploit Circulating added May 18, 2009 at
12:47 pm US-CERT is aware of public
reports of a malware exploit circulating. This is a drive-by-download
exploit with multiple stages and is being referred to as Gumblar. The
first stage of this exploit attempts to compromise legitimate websites
by injecting malicious code into them. Reports indicate that these
website infections occur primarily through stolen FTP credentials but
may also be compromised through poor configuration settings, vulnerable
web applications, etc. The second stage of this exploit occurs
when users visit a website compromised by Gumblar. Users who visit these
compromised websites and have not applied updates for known PDF and
Flash Player vulnerabilities may become infected with malware. This
malware may be used by attackers to monitor network traffic and obtain
sensitive information, including FTP and login credentials, that can be
used to conduct further exploits. Additionally, this malware may also
redirect Google search results for the infected user.
UPS malware attack
bombards inboxes with dangerous attachment
WiniBlueSoft WiniBlueSoft is a rogue anti-spyware program that
deliberately creates fake malware files on your computer in order to
trick you into thinking they are infections. These files, though, are
not real executables or programs and therefore cannot harm your
computer. These fake infection files are randomly made and created in
your C:\Windows and C:\Windows\System32 folders and you can have as many
of 600+ of these types of files created. The reason WiniBlueSoft creates
these files is so that you think your computer is badly infected and
then you purchase the program.
Conficker
Worm According to a report by Xinhua News Agency, Conficker-infected machines are now being turned into servers for e-mail spam. Quoting Vincent Weafer, vice president of Symantec Security Response, Xinhua reported Conficker now installs a second virus--Waledac--that sends out e-mail spam without the computer owner's knowledge. "Expect this to be long-term, slowly changing," Weafer was quoted as saying of the Conficker impact. "It's not going to be fast [or] aggressive." According to security vendor Trend Micro, the worm also installs malware that masquerades as antivirus software. Earlier this month, Trend Micro's advanced threats researcher Paul Ferguson, said Conficker and Waledac originated from the same authors. Waledac has been referred to by some experts as a new version of Storm, a mass-mailing worm that surfaced in early 2007.
The Conficker worm (also known as Downadup or Kido) has been making headlines as it infects computers unprotected by a critical Microsoft security patch.
Make sure your Windows Updates are current! What is Conficker and how does it work? Microsoft released an out-of band update with their security bulletin MS08-067 way back on 23 Oct 2008, but millions of people aren’t installing the patch. Needless to say, not patching has led to many of those computers becoming infected with Conficker. Keep your Windows Updates and Antivirus up to date! Online Removal Tools: Below
Also... Fake alert that downloads malware looks like this.
AntiVirus XP, 360, 2008 or 2009 -
TOP Threat The threat looks like
this
and this.
Or for the geeks among us:
Fake Windows XP activation trojan.
Beware the fake Windows Security Center Windows XP Service Pack 2 added the Windows Security Center, a central location, accessible from Control Panel, where you can view the status and make changes to security related settings. A new Trojan is out there that installs a fake Security Center interface that nags you to install "Windefender 2008." Some users would logically assume that this is a new version of Windows Defender, but it's not. The really insidious part is that the program also interferes with your Internet connection, blocking you from downloading anything else until you pay $40.00 for the fake software. Read more about this scam here: http://www.wxpnews.com/75XE59/081021-Research-Blog
Fake MS Update notifications by email. 10-15-2008 Malicious attackers are once again taking advantage of event-based social engineering attacks, and are currently mass mailing fake notifications for Microsoft’s Patch Tuesday, attaching a copy of Trojan.Backdoor.Haxdoor, next to a legitimately looking PGP signature which is, of course, fake too .
Virus infects BOGUS FedEx Tracking email |
| From Trend Micro Security Spotlight: The Year's Baddies: The Worst Threats of 2008
|