Eye on Security: Windows Ransomware, DLL Hole, Malware, and More
- Dr. Roy Schestowitz
- 2010-09-03 06:46:58 UTC
- Modified: 2010-09-03 06:46:58 UTC
Summary: Menaces and unpleasant 'niceties' that only affect users of Windows this week
●
Russian cops cuff 10 ransomware Trojan suspects [
via]
PCs infected by the WinLock Trojan at the centre of the scam were rendered unusable because the malware disabled key Windows components. More embarrassingly pornographic images were displayed on compromised machines, IDG adds.
●
Polymorphic ransomware tops malware charts
Ransomware variant TotalSecurity is topping the malware charts, according to the latest threat report from security firm Fortinet.
August was the biggest comeback month since March for TotalSecurity, which locks out applications and data, and then demands a ransom to restore access.
●
Microsoft Releases 'Fix It' for DLL Hole
The DLL security vulnerability first grabbed headlines in August when a Slovenian security research firm pointed out that, under some circumstances, a malicious hacker could deploy a booby-trapped DLL file into a directory where Windows will load it, potentially granting the attacker control over the system. But it later surfaced that a U.S. security researcher had warned Microsoft about the DLL issue almost a year before, and had even published an academic paper on the threat last month.
●
Google Code hosting malware-spreading project
Google Code's project hosting feature has occasionally been used by malicious individuals for storing and spreading malware.
[...]
After this discovery was made public, Google removed the offending project. But this instance shows that the company must find a better way of detecting malware hosted on its sites.
●
University loses nearly 1 million dollars to malware
Thieves appear to have stolen the funds from University of Virginia after compromising a computer belonging to the University's Financial Controller. Malware intercepted the Online Banking Credentials for the University's Bank accounts and initiated a fraudulent wire transfer for $996,000 to a Bank in China.
●
25 percent of Windows malware now targets USB storage devices
In a survey of small businesses, PandaLabs discovered that 48 percent had been victims of malware in the past year. Of those businesses infected, 27 percent were able to verify that a compromised USB device was at the root of the issue.
●
New malware detects browser, shows fake malware warning page
While the malware is a pretty good attempt, it's not perfect. The goal is to get the user to download and install something, shelling out some cash in the process, which neither of the three browser vendors would ever recommend. The Firefox warning page, meanwhile, has an obvious typo ("Get me our of here"). In addition, it's suspicious that a webpage is going out of its way to tell you it is protecting your purchase. It's also not hard to check that the supposedly detected files do not actually exist on the user's computer. All of these missteps should raise red flags immediately; having said that, we've still not before seen this level of detail and effort from the bad guys.
●
Heartland pays another $5.4m for malware infection
The United States' fourth largest credit card payments processing company Heartland Payment Systems has agreed to pay a US$5 million ($5.4 million) settlement to its financial services customer Discover over a data breach caused by a malware infection.
Heartland processed card payments for Visa, Mastercard and other financial service providers to the tune of US$70 billion in 2009.
●
Rogue Win7 AV Copies the Microsoft Security Essentials Site
There are downsides to market success, and in the case of Microsoft Security Essentials is that attackers build malware designed to piggy-back ride the free security solution from Microsoft.
Recent Techrights' Posts
- Speed of GNU/Linux
- The media seldom speaks of the dangers of "proprietary software"
- Proprietary Windows Versus "Linux" News (Trying to Keep People on Windows, Never Exploring GNU/Linux)
- Good editors know better how to recognise threats and not give them lip service
- Ensuring That Every Computer User Anywhere in the World Can Take Control of All His or Her Computers
- We must fight the people who attack general-purpose computing, in particular those who push this agenda very aggressively inside Linux
- Gemini Links 28/04/2025: Autism and Structural Navigation
- Links for the day
- What Happened to the Open Source Initiative (OSI) Elections: The Purge, the Cover-up, and the Witch-hunts
- OSI has gone "full Microsoft"
-
- Links 28/04/2025: Canada's Election, Pakistan-India Conflict
- Links for the day
- Glue Inside Your Pizza (or Why People Will Get Fed Up With Slop)
- People are given "answers" from non-intelligence word dumpsters
- Links 28/04/2025: Cyberattacks Happening, Chatbots Disappointing, and "Free Speech Under Fire"
- Links for the day
- Phone Adoption Very Low in Vatican, Windows Usage Fell Nonetheless
- Even in places where people still use desktops/laptops most of the time (and have access to these) Windows is gradually losing ground
- GNU/Linux 9% in Cuba, Vista 11 Waning, Android Dominant
- Microsoft has pretty much lost Cuba
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Sunday, April 27, 2025
- IRC logs for Sunday, April 27, 2025
- In 24 Countries Observed by statCounter Vista 11 is Still Less Than a Quarter of Windows Users Despite All Other Versions Being 'Expired'
- They ought to move to GNU/Linux
- Links 27/04/2025: Pope Goodbyes, "Politics of Fear", Slop Redux and More Google Shutdowns (Google Debt Had Grown This Year)
- Links for the day
- Links 27/04/2025: Serenity Dialectics, Hockey Jersey Ethics, and More
- Links for the day
- Links 27/04/2025: Death of Nest Thermostats, Death of Metaverse
- Links for the day
- Links 27/04/2025: Projects Workflow and Discovering Technology
- Links for the day
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Saturday, April 26, 2025
- IRC logs for Saturday, April 26, 2025
- Microsoft Isn't on the Map in USSR
- To them, it's either Google or Yandex
- In Central America Windows Became a Small Force
- These are countries where Windows used to have well over 95% of the "market"
- What's Very Vexing to GAFAM, EPO and Others Is That It's Incredibly Hard to Censor Us (and Nobody Ever Successfully Did That Before)
- resist, do not capitulate
- Site May be Even Faster Now
- It basically takes less than a tenth of a second to serve the page
- Receiving SLAPPs and Collecting Them Like Trophies (the SLAPPs Always Fail)
- People who file lawsuits bring even more attention to themselves (or to embarrassing statements about them)
- Year of GNU/Linux on the Laptop?
- It's not happening only in Lenovo
- What People Must Understand About the Open Source Initiative (OSI)
- some facts about the Open Source Initiative (OSI)
- Many of the Scandals Are Interconnected (Overlapping People and Corporations)
- We're only getting started
- More Copyright Lawsuits Against LLM Slop Providers and Suppliers of LLM Slopfarms Would Benefit Society
- It's not just bad for the Web and for society; it's also legally dangerous
- Links 26/04/2025: General Assassinated in the Town of Balashikha, US Promoting Seafloor Mining
- Links for the day
- Links 26/04/2025: Facebook Layoffs Again, Remembering What's Real, and Say No to Mass Surveillance
- Links for the day
- Links 26/04/2025: NOAA Budget Cuts and "Dog Days Ahead"
- Links for the day
- In defence of JD Vance, death of Pope Francis
- Reprinted with permission from Daniel Pocock
- Three Years in Prison for Disney Employee’s ‘Menu Hacking’: The Economic Fallout of Digital Menus
- Reprinted with permission from Ryan Farmer
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Friday, April 25, 2025
- IRC logs for Friday, April 25, 2025