- As if TDSS wasn’t bad enough – Looks like TDSS is getting a nasty new overhaul in it’s deployment mechanism…spreading via LANS and USB sticks! It’s official name is Net-Worm.Win32.Rorpian.
Rorpian sets up a DHCP server on the infected machine and listens for requests from workstations on the LAN. When a workstation receives an ip address from the malicious DHCP server the PC’s gateway become that of the infected machine. When a user opens a browser they are redirected to a fake website residing on the infected pc (the one with the malicious DHCP server) and are prompted to download a mandatory browser update which is just Net-Worm.Win32.Rorpian again. At this point Net-Worm.Win32.Rorpian is just in self replication mode, however I’m sure it capable of much more (i.e. – remote commands). - Adobe release a security fix for Flash player 10.3. This effects Android, Windows, OSX, Linux and Solaris. According to Adobe this is a very important update since this hole…”could be used to take actions on a user’s behalf on any website or webmail provider, if the user visits a malicious website”.
Archive | Malware and Anti-Malware News RSS feed for this section
Malware and Anti-Malware News 6-8-11
Malware and Anti-Malware News 6-1-11
- New version of Mac Defender is released just hours after the May 31 patch issued by Apple. I like how everyone is making a big deal about this. Did they just think that all the variants would just stop? Get used to it Apple…everyday. Oh, btw the new variant is called mdinstall.pkg.
- Microsoft releases System Sweeper – A free bootable Anti-Virus scanner designed to clean an infected 32 or 64 bit PC via the Windows Preinstallation Environment (WinPE). Not only is this great for home users it’s going to really cut down on the duration of their support calls concerning malware. You can download it from here:
http://connect.microsoft.com/systemsweeper
- Malwarebytes 1.51 officially released. New feature highlights are faster updating (who cares), a built-in 14 day trial (useful) and the “on access” protection is now lighter. You can read about the other upgrades here:
http://forums.malwarebytes.org/index.php?showtopic=85992
Subscribe / Connect
Subscribe to our e-mail newsletter to receive updates.
