There's a rather large malvertising-driven attack running at the moment, that's attempting to trick people into installing or upgrading a fake version of Java. It looks pretty believable, if you disregard the domain name (tartd.info having no obvious linguistic connection to "Java"): (The fine print at the bottom, if you're having trouble reading it, says […]
In the past few days/weeks we have been seeing some nasty vBulletin infections that are proving difficult to find. In this post we’ll describe it and what we have done to remove it. We recently wrote about Conditional Malware, this is but another instance of that. In this instance, the conditions are set around specific […]
I took another quick look yesterday to monitor how we're doing in identifying new sites and servers in the big Fake-AV attack that we blogged about twice in April. The analysts have been keeping an eye out for them, and Maria sent me some this week. Here is a closer look at two of them: […]
Latest Comments