Posts Tagged ‘blog entry’

New Sample of Backdoor.Korplug is Signed with a Stolen Certificate

Aug

2012

Symantec recently received a new sample of Backdoor.Korplug that signs itself with a stolen certificate. It also made use of legitimate software, but this time there is something different from what was revealed in our previous blog entry.Figure 1. Loading sequenceFrom the data we have seen, the original executable was most likely signed by NVIDIA. […]

Category General Written by Symantec Security Response Blog 0 Comments

Yahoo! Android App Vulnerability May Allow Spamming

Jul

2012

Just days after reports of a supposed Android botnet spam run surfaced, we found a Yahoo! Android app vulnerability, which when exploited, allows an attacker to send spammed messages using the compromised Yahoo! account. First Spam Run via Android Botnet?Last week, several messages were found peddling fake pharma sites or contain links leading to phishing […]

Category General Written by TrendLabs 0 Comments

Flashfake Removal Tool and online-checking site

Apr

2012

After intercepting one of the domain names used by the Flashback/Flashfake Mac Trojan and setting up a special sinkhole server last Friday, we managed to gather stats on the scale and geographic distribution of the related botnet. We published information on this in our previous blog entry. We continued to intercept domain names after setting […]

Category General Written by Securelist / Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘blog entry’

New Sample of Backdoor.Korplug is Signed with a Stolen Certificate

Yahoo! Android App Vulnerability May Allow Spamming

Flashfake Removal Tool and online-checking site

Categories

Featured

Archives

Latest Comments

About Us

Contact Us