Bonum Certa Men Certa

Eye on Security: Windows Ransomware, DLL Hole, Malware, and More

Tips cup



Summary: Menaces and unpleasant 'niceties' that only affect users of Windows this week

Russian cops cuff 10 ransomware Trojan suspects [via]

PCs infected by the WinLock Trojan at the centre of the scam were rendered unusable because the malware disabled key Windows components. More embarrassingly pornographic images were displayed on compromised machines, IDG adds.


Polymorphic ransomware tops malware charts

Ransomware variant TotalSecurity is topping the malware charts, according to the latest threat report from security firm Fortinet.

August was the biggest comeback month since March for TotalSecurity, which locks out applications and data, and then demands a ransom to restore access.


Microsoft Releases 'Fix It' for DLL Hole



The DLL security vulnerability first grabbed headlines in August when a Slovenian security research firm pointed out that, under some circumstances, a malicious hacker could deploy a booby-trapped DLL file into a directory where Windows will load it, potentially granting the attacker control over the system. But it later surfaced that a U.S. security researcher had warned Microsoft about the DLL issue almost a year before, and had even published an academic paper on the threat last month.


Google Code hosting malware-spreading project

Google Code's project hosting feature has occasionally been used by malicious individuals for storing and spreading malware.

[...]

After this discovery was made public, Google removed the offending project. But this instance shows that the company must find a better way of detecting malware hosted on its sites.


University loses nearly 1 million dollars to malware

Thieves appear to have stolen the funds from University of Virginia after compromising a computer belonging to the University's Financial Controller. Malware intercepted the Online Banking Credentials for the University's Bank accounts and initiated a fraudulent wire transfer for $996,000 to a Bank in China.


25 percent of Windows malware now targets USB storage devices

In a survey of small businesses, PandaLabs discovered that 48 percent had been victims of malware in the past year. Of those businesses infected, 27 percent were able to verify that a compromised USB device was at the root of the issue.


New malware detects browser, shows fake malware warning page

While the malware is a pretty good attempt, it's not perfect. The goal is to get the user to download and install something, shelling out some cash in the process, which neither of the three browser vendors would ever recommend. The Firefox warning page, meanwhile, has an obvious typo ("Get me our of here"). In addition, it's suspicious that a webpage is going out of its way to tell you it is protecting your purchase. It's also not hard to check that the supposedly detected files do not actually exist on the user's computer. All of these missteps should raise red flags immediately; having said that, we've still not before seen this level of detail and effort from the bad guys.


Heartland pays another $5.4m for malware infection



The United States' fourth largest credit card payments processing company Heartland Payment Systems has agreed to pay a US$5 million ($5.4 million) settlement to its financial services customer Discover over a data breach caused by a malware infection.

Heartland processed card payments for Visa, Mastercard and other financial service providers to the tune of US$70 billion in 2009.


Rogue Win7 AV Copies the Microsoft Security Essentials Site

There are downsides to market success, and in the case of Microsoft Security Essentials is that attackers build malware designed to piggy-back ride the free security solution from Microsoft.

Recent Techrights' Posts

Gemini Links 25/05/2024: Emacs Windows 2000 Screenshots and Little Languages
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, May 24, 2024
IRC logs for Friday, May 24, 2024
Ireland Exits Microsoft's Vista 11
Microsoft can't be doing too well in Ireland because Microsoft had tons of layoffs in that country last year
A Recognition for Hard Work
Running this site is a lot of work
The Web We Lost...
Vintage War Censorship Poster...
Daniel Pocock (IND) in European Election Debate
In this segment he speaks of the effects of social control media and phones on children
[Meme] Next Target: Sub Domains
Deb.Ian.Community
The "D" in Debian Stands for Dictatorship That Extents to Censorship at DNS Level
Of course the registrar, which charged for domains until 2025, just went along with it
In Republic of (South) Korea, as of This Month, Android Climbs to Record High of 48%
Judging by statCounter anyway
"Linux" is Second-Class Citizen at IBM
sends the wrong message to Red Hat staff and Red Hat clients
Links 24/05/2024: More Software Patents Invalidated (US), New Fights to Protect Free Speech
Links for the day
"You Touched the Wrong Lady"
What Rianne wrote more than 8 months ago
Links 24/05/2024: Layoffs at LinkedIn and Election Interference Via Social Control Media
Links for the day
Getting a 'Thank You' From Software Freedom Conservancy (SFC) Will Cost You $5,000 to $30,000 (Same as Last Year)
Right now one of their associates (SFC) tries to spend money to censor us
KDE Neon Weirdness
Reprinted with permission from Ryan Farmer
Congratulations to Sirius Open Source, Still Claiming to Employ People Who Left Half a Decade Ago (or More!)
What signal does that send to con men?
[Meme] Bluewashing
Cent OS? No more.
IRC Proceedings: Thursday, May 23, 2024
IRC logs for Thursday, May 23, 2024
Over at Tux Machines...
GNU/Linux news for the past day
Tenfold Increase for ChromeOS+GNU/Linux in Brunei
Brunei Darussalam is a country most people don't know about and never even heard about
Coming Soon: Another Round of 'Cancel Stallman' Chorus
The series required a great deal of patience
Links 23/05/2024: SeekOut Collapsing and Why Microsoft Probably Isn’t Going to Buy Valve
Links for the day
Gemini Links 23/05/2024: The Allure of Vinyl
Links for the day
linuxsecurity.com Still At It! 98% Probability Chatbot Generated, According to GPTZero!
"The Internet is mostly made by AI... but that's ok, it's all being deleted anyway."
Links 23/05/2024: Apple Responds to Streaming Music Fine, DOJ to Sue Live Nation
Links for the day
Links 23/05/2024: UK General Election and Archival
Links for the day
[Video] 3 Major Issues in Nationwide, Including (Potentially) a Major Data Breach
'electronic-bank' security has become the joke of the town
[Meme] Pointing Out Corruption Isn't a "Hate Crime"
The European Commission's reflexive (re)action to any sort of doubt or criticism
More Evidence in "iLearn AI Day" (a Buzzwords Festival) That EPO Intends to Eliminate Staff and Deviate Further Away from Fairness, Law, and Constitutions (Including Its Own!)
The EPO is a very potent danger to Europe's unity and the very concept of lawfulness. It exists to serve international monopolists and patent lawyers.
Microsoft's Windows Has Fallen Below 3% in Democratic Republic of the Congo (100+ Million Citizens)
Microsoft's sharp fall in Congo
The Real Reason Censorship is Attempted Against Us (and Against Others Too)
Microsoft's Windows market monopoly was in trouble
You Are Not The Only One
Reprinted with permission from Cyber Show (C|S)
GNU/Linux in Monaco: From 0.3% to Almost 6%
Monaco is a small country
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, May 22, 2024
IRC logs for Wednesday, May 22, 2024
Microsoft Has Lost Cote D'ivoire (Ivory Coast), Where Android Now Exceeds 60% of the Operating Systems' 'Market Share'
According to statCounter anyway
The Rumour Said Later Today Red Hat (IBM) Might Announce Layoffs
Let's see what happens later today (or next week)
Governments That Fail Journalism
Australia is known for giving us pure garbage like Rupert Murdoch
Windows Has Fallen From 'Grace'
When you tell people that Microsoft watches their every move in Windows many of them will freak out and ask for alternatives