Posts Tagged ‘automatic execution’

PoisonIvy Uses Legitimate Application as Loader

Jun

2013

I recently obtained a PoisonIvy sample which uses a legitimate application in an effort to stay under the radar.In this case, the PoisonIvy variant detected as BKDR_POISON.BTA (named as newdev.dll) took advantage of a technique known as a DLL preloading attack (aka binary planting) instead of exploiting previously known techniques. The malware was located in […]

Category General Written by Security Intelligence 0 Comments

W32.Flamer: Spreading Mechanism Tricks and Exploits

Jun

2012

Flamer has the ability to spread from one computer to the next. However, Flamer does not automatically spread, but instead waits for instructions from the attackers. Flamer can spread using the following methods: Through network shares using captured credentials, including Domain Administrator Through the Microsoft Windows Print Spooler Service Remote Code Execution Vulnerability (CVE-2010-2729), previously […]

Category General Written by Symantec Security Response Blog 0 Comments

The top 10 threats in June 2011 – Jave exploits, autorun infections and adware bug the users

Jul

2011

* The trend shows the change in rank compared to the previous month What can you do to be protected?Apart from using a comprehensive security solution, home users are highly recommended to keep their system and all of its components (operating systems, software, plug-ins,.) up-to-date. Special advice: JavaProceed to the online Java version detection: www.java.com/en/download/installed.jspIn […]

Category General Written by Security Blog G Data Software AG 0 Comments

The Latest in IT Security

Posts Tagged ‘automatic execution’

PoisonIvy Uses Legitimate Application as Loader

W32.Flamer: Spreading Mechanism Tricks and Exploits

The top 10 threats in June 2011 – Jave exploits, autorun infections and adware bug the users

Categories

Featured

Archives

Latest Comments

About Us

Contact Us