Tweet It is important for malware authors to keep a solid network connection between their malware on compromised computers and their own servers so that the malware can receive commands and be updated. However, communication between the malware and the malware servers may be filtered by a gateway or local firewall, or blocked by an […]
As the WORM_VOBFUS story unfolds, new variants are surfacing, including one that connects to a new site and uses Google and MSN to name its dropped files.We recently reported on the wave of WORM_VOBFUS variants that emerged in the wild last November. We have been monitoring the said threat and found out that its latest […]
An Estonian company called Rove Digital was busted last November. Why? Because it was a front for the ad-fraud DNSChanger botnet. And ever since November, the USA’s FBI has been responsible for the substitute DNS servers designed to keep compromised computers from being disconnected (and causing support call chaos).Back in March, we wrote about the […]
Latest Comments