Security Cadets Forums: Bredolab Revealed;malware Conceals Itself As Boss's Letter - Security Cadets Forums

Jump to content

Join to gain 'free' computer support.

Welcome. We're here to help you in cleaning your computer, securing your computer and any other computer troubles with our 'free' expertise. In order to receive help you have to join to be able to post in the forums below, which requires a registration - Click here to Register a free account!


| Get help with Malware Removal | Get help with SCars (Beta) | Get help with Microsoft WindowsŽ | Get help with Hardware | Get help with Security Software |

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Bredolab Revealed;malware Conceals Itself As Boss's Letter

#1 User is offline   NewsBot 

  • Roving Reporter
  • Group: NewsBot
  • Posts: 6,592
  • Joined: 30-March 08

Posted 02 November 2009 - 03:19 PM

From F-Secure blog:

When BREDOLAB entered the threat landscape several months ago, it was initially thought of as a common downloader (that downloads executable files) designed for malware infection only. However, Trend Micro researchers noticed a sudden increase in its activities by August 2009. This made our researchers delved more on the inner workings and behaviors of BREDOLAB.

Our analysis then observed BREDOLAB’s connections to two notorious malware families, FAKEAV and ZBOT/ZeuS. The samples always include the aforementioned malware in its download repertoire. Adding BREDOLAB in their long list of carriers, these malware families are mostly focused on information and financial theft.

BREDOLAB also exhibited certain similarities with another well-known botnet, PUSHDO in terms of downloading routines. This led our threat researchers to believe that the cybercriminals behind PUSHDO and BREDOLAB are the same.

Trend Micro’s Senior Threat Researcher David Sancho has written an in-depth analysis of this new threat. Read it here: You Scratch My Back…BREDOLAB’s Sudden Rise in Prominence.

http://blog.trendmic...dolab-revealed/

Malware Conceals Itself as Boss’s Letter

Trend Micro threat analysts found spammed messages that pretend to be a letter coming from the “boss”. It bears the subject “get back to my office for more details” and instructs users to read the attached ZIP file, which contains a letter. The ZIP attachment is, of course, not a letter but an .EXE file (info.exe) detected by Trend Micro as TROJ_CUTWAIL.GT.

http://blog.trendmic...s-bosss-letter/

Also, Christmas Spam Spotted

With Christmas just right around the corner, spammers are already flooding users’ inboxes with unwanted emails. No surprises there. Spammers are known to exploit the holidays for its malicious activities.

Just recently, Trend Micro threat analysts found another spammed messages that claimed to be a ‘replication specialist’ and entice users to buy replica products like watches, handbags, and jewelries in a discounted price.

http://blog.trendmic...s-spam-spotted/

http://msmvps.com/ag...?PostID=1737105

View the full article
Want your feed here? Mail me: newsbot AT securitycadets D0T com
  • Each request is subject to private discussions and agreement.
  • Not all requests may be successful.
Posted Image
Please do not send this account a "Personal Message", it won't work
0

SCars - Your reminding system


Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users


SCars - Your reminding system

Home | About | SCars | SCars Support | ASAP Member | Contact Us | PC & Software Help | Donate | Downloads | Support Forums
F1 Fantasy Challenge 2010 | Malware Removal | NewsBot Centre | Rules and Guidlines | Privacy Policy