security researchers | DataProtectionCenter.com

Backdoor.Tranwos Abuses EFS to Prevent Forensic Analysis

08

Jun

2013

Recently, we discovered a threat that abuses the Encrypting File System (EFS), which Symantec detects as Backdoor.Tranwos. Not only is it trivial for program code to use EFS, it’s also very effective at preventing forensic analysis from accessing the contents of the file.The threat creates the folder %Temp%\s[RANDOM ASCII CHARACTERS] and then calls the EncryptFileW […]

Category General Written by Symantec Security Response Blog 0 Comments

Microsoft Updates May 2013 – Slew of Internet Explorer Critical Vulnerabilities, Kernel EoP, and Others

15

May

2013

Microsoft released a long list of updates for Microsoft software today. The most interesting appear to be those patching Internet Explorer and the kernel software vulnerabilities. In all, ten critical “use-after-free” vulnerabilities are patched in IE along with one important Information Disclosure vulnerability, and three elevation of privilege vulnerabilities are being patched as well. Almost […]

Category General Written by Securelist / Blog 0 Comments

Backdoor Uses Evernote as Command and Control Server

27

Mar

2013

With its rich functionality and accessibility, Evernote is a popular note-taking tool users. Unfortunately, it may also provide the perfect cover for cybercriminals’ tracks. We recently uncovered a malware that appears to be using Evernote as a communication and control (C&C) server. Detected as BKDR_VERNOT.A, the malware attempted to connect to Evernote via https://evernote.com/intl/zh-cn, which […]

Category General Written by Security Intelligence 0 Comments

The Latest in IT Security

Posts Tagged ‘security researchers’

Backdoor.Tranwos Abuses EFS to Prevent Forensic Analysis

Microsoft Updates May 2013 – Slew of Internet Explorer Critical Vulnerabilities, Kernel EoP, and Others

Backdoor Uses Evernote as Command and Control Server

Categories

Featured

Archives

Latest Comments

About Us

Contact Us