Eye on Security: Windows Ransomware, DLL Hole, Malware, and More
- Dr. Roy Schestowitz
- 2010-09-03 06:46:58 UTC
- Modified: 2010-09-03 06:46:58 UTC
Summary: Menaces and unpleasant 'niceties' that only affect users of Windows this week
●
Russian cops cuff 10 ransomware Trojan suspects [
via]
PCs infected by the WinLock Trojan at the centre of the scam were rendered unusable because the malware disabled key Windows components. More embarrassingly pornographic images were displayed on compromised machines, IDG adds.
●
Polymorphic ransomware tops malware charts
Ransomware variant TotalSecurity is topping the malware charts, according to the latest threat report from security firm Fortinet.
August was the biggest comeback month since March for TotalSecurity, which locks out applications and data, and then demands a ransom to restore access.
●
Microsoft Releases 'Fix It' for DLL Hole
The DLL security vulnerability first grabbed headlines in August when a Slovenian security research firm pointed out that, under some circumstances, a malicious hacker could deploy a booby-trapped DLL file into a directory where Windows will load it, potentially granting the attacker control over the system. But it later surfaced that a U.S. security researcher had warned Microsoft about the DLL issue almost a year before, and had even published an academic paper on the threat last month.
●
Google Code hosting malware-spreading project
Google Code's project hosting feature has occasionally been used by malicious individuals for storing and spreading malware.
[...]
After this discovery was made public, Google removed the offending project. But this instance shows that the company must find a better way of detecting malware hosted on its sites.
●
University loses nearly 1 million dollars to malware
Thieves appear to have stolen the funds from University of Virginia after compromising a computer belonging to the University's Financial Controller. Malware intercepted the Online Banking Credentials for the University's Bank accounts and initiated a fraudulent wire transfer for $996,000 to a Bank in China.
●
25 percent of Windows malware now targets USB storage devices
In a survey of small businesses, PandaLabs discovered that 48 percent had been victims of malware in the past year. Of those businesses infected, 27 percent were able to verify that a compromised USB device was at the root of the issue.
●
New malware detects browser, shows fake malware warning page
While the malware is a pretty good attempt, it's not perfect. The goal is to get the user to download and install something, shelling out some cash in the process, which neither of the three browser vendors would ever recommend. The Firefox warning page, meanwhile, has an obvious typo ("Get me our of here"). In addition, it's suspicious that a webpage is going out of its way to tell you it is protecting your purchase. It's also not hard to check that the supposedly detected files do not actually exist on the user's computer. All of these missteps should raise red flags immediately; having said that, we've still not before seen this level of detail and effort from the bad guys.
●
Heartland pays another $5.4m for malware infection
The United States' fourth largest credit card payments processing company Heartland Payment Systems has agreed to pay a US$5 million ($5.4 million) settlement to its financial services customer Discover over a data breach caused by a malware infection.
Heartland processed card payments for Visa, Mastercard and other financial service providers to the tune of US$70 billion in 2009.
●
Rogue Win7 AV Copies the Microsoft Security Essentials Site
There are downsides to market success, and in the case of Microsoft Security Essentials is that attackers build malware designed to piggy-back ride the free security solution from Microsoft.
Recent Techrights' Posts
- Traf-O-Data, the Company That Jeffrey Epstein's BFF (Bill Gates) (Co)Founded 53 Years and Went Out of Business Due to Heavy Losses
- Who will die first, Bill or Microsoft?
-
- GNU/Linux Growing in East Asia, Windows by Default No More?
- GNU/Linux is now on the shelf
- Slopwatch: Anti-Linux 'Articles' From Linux-Hostile LLMs
- It is almost always negative things and nobody can be held responsible for it except the charlatans prompting the LLMs
- Links 05/04/2025: Fentanylware (TikTok) "Sale Looks Highly Imminent" (US), Stock Market Drowning in Panic
- Links for the day
- Gemini Links 05/04/2025: Moving Plants, No to Smartwatches, RAID Hygiene
- Links for the day
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Friday, April 04, 2025
- IRC logs for Friday, April 04, 2025
- Techrights Has Dealt With More Potent SLAPPs Than Violent Microsofters Begging to Hide What They Did to Women
- I became accustomed to SLAPPs
- Links 04/04/2025: Fury in South Korea, Flight MH370 Remains Mystery
- Links for the day
- Gemini Links 04/04/2025: Anger and Raspberry Pi CM4
- Links for the day
- Links 04/04/2025: LLM Slop Bubble Bursting and Korea Music Copyright Association Bans Slop 'Music'
- Links for the day
- Why Microsoft's Shares Sank Almost 20% in Recent Months (the Bubble is Imploding)
- verified press reports from the past 24 hours
- A Note on SimilarWeb
- Or why SimilarWeb is meaningless for more than 99% of the sites on the Web
- GNU/Linux Rises to Almost 5% in Algeria While Windows Sinks to All-Time Low
- GNU/Linux grew tenfold
- Where to Get More Gags
- A valued reader recommended that to us
- Links 04/04/2025: Tech Stock (Inc. GAFAM) Fall, Google Pretends to Do End-to-End Encrypted Emails (With Google in Control)
- Links for the day
- IBM Said to be Shutting Down Offices or Sites in the United States
- the press can no longer avoid admitting that IBM moves many jobs to India
- To Participate in Fedora Diversity You Must Use Proprietary Software
- Not for the first time either
- LLM Slop as Attack Vector on the Reputation of Linux
- The attacks on Linux have escalated to information warfare
- Yandex About to Be Three Times Bigger Than Microsoft (Bing) in Asia
- That's about 60% of the world's population
- Gemini Links 04/04/2025: Decoupling Updates, Elaho as Gemini Client
- Links for the day
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Thursday, April 03, 2025
- IRC logs for Thursday, April 03, 2025
- Microsoft's Trouble in Africa and Asia
- A new all-time high for GNU/Linux
- Brett Wilson LLP Reported to the Solicitors Regulation Authority (SRA)
- The saddest thing in all this is that law firms can maintain high standards shall they wish to
- Links 03/04/2025: Tariff Pains and C.D.C. Cuts
- Links for the day
- StatCounter: Microsoft is Masking a Disaster, It's Way Behind DeepSeek Already and Interest in LLMs Has Waned
- it turns out the money "raised" for "Open" "AI" may not even exist at all
- Links 03/04/2025: SoftBank Money for Microsoft "Open" "AI" Probably Doesn't Even Exist, Wikimedia Foundation Blasts LLM Nuisance While Microsoft Admits Demand Has Shrunk
- Links for the day
- Gemini Links 03/04/2025: Patch Panel and Pictures
- Links for the day
- Islamic Republic of Iran: GNU/Linux at All-time High This Month, Windows Falls to 12%
- Vista 10 is up this month despite being "end of life" (EoL) soon
- Indonesia: All-Time Highs for GNU/Linux
- What's noteworthy right now is the growth of GNU/Linux
- statCounter Says GNU/Linux Usage is Up Again (Internationally)
- some preliminary April data
- Only on April 1st Can the Free Software Foundation Associate With Microsoft's Open Source Initiative (OSI)
- We saw some pranks that day linking the FSF to Microsoft (e.g. "endorsing" Windows)
- Confirmed in the Mainstream Media: A Lot of Microsoft "Workloads" Were Just LLM Slop (Helping to Fake Growth for Years, as Microsoft Had Paid "Open" "AI" to Become a "Client") and Demand is Rapidly Waning, Datacentres Canceled and/or Shut Down
- Anything to facilitate further accounting fraud
- Taiwan's Media Covers Closure of Microsoft's "AI" Lab, It's Time to Talk About the Gradual Death of Windows and Implosion of the "AI" Bubble
- Earlier this week we showed that mostly Asian media had the 'nerve' to mention Microsoft silently shutting down its 'AI' lab
- IBM Gets Rid of Kelly Chambliss as Mass Layoffs Reported in IBM Consulting, IBM Loses Key Contracts/Graft
- IBM Consulting has been in disarray lately
- More Gains for GNU/Linux, Based on Web Surveys
- the Steam site shows rapid growth for "Linux" this month
- Slopwatch: Anti-Linux Articles, Not Even Written by Humans
- Why aren't Web sites more vocal about this problem?
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Wednesday, April 02, 2025
- IRC logs for Wednesday, April 02, 2025
- Links 03/04/2025: Apple Fined Over Secret Surveillance, "Elegant Writer For A More Civilized Age"
- Links for the day