c server | DataProtectionCenter.com

Andromeda Botnet Resurfaces

12

Mar

2013

The Andromeda botnet – first spotted in late 2011 – has recently resurfaced. This threat arrives via a familiar means: spammed messages with malicious attachments or links to compromised websites hosting Blackhole Exploit Kit (BHEK) code. Here is one spam message we saw recently:Figure 1. Sample spammed messageAndromeda itself is highly modular, and can incorporate […]

Category General Written by Security Intelligence 0 Comments

Latest Java Zero-Day Shares Connections with Bit9 Security Incident

01

Mar

2013

Symantec recently received information on a new Java zero-day, Oracle Java Runtime Environment CVE-2013-1493 Remote Code Execution Vulnerability (CVE-2013-1493). The final payload in the attack consisted of a DLL file, detected by Symantec as Trojan.Naid, which connects to a command-and-control (C&C) server at 110.173.55.187. Interestingly, a Trojan.Naid sample was also signed by the compromised Bit9 certificate […]

Category General Written by Symantec Security Response Blog 0 Comments

Fake Antivirus Renewal Email Rises from the Dead

01

Mar

2013

Over the last few years, many reports, white papers, and blogs have been released detailing targeted attacks. For example, some attacks employ sophisticated infection methods, such as watering hole attacks, and some rely on exploit code hidden in document files mixed with social engineering schemes. Some time ago, when the malware world was still dominated […]

Category General Written by Symantec Security Response Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘c server’

Andromeda Botnet Resurfaces

Latest Java Zero-Day Shares Connections with Bit9 Security Incident

Categories

Featured

Archives

Latest Comments

About Us

Contact Us