All Posts by Paul

Valentine’s Day Brings More Malware!

Paul

Panda Labs talks about this new technique where it tries to install W32/Waledac.C.worm under the thought of someone special. It sends out email to people hoping to click links such as:

    [ad#ad2-right]

  • hxxp://goodnewsreview.com

  • hxxp://worldnewseye.com

  • hxxp://www.spacemynews.com

  • hxxp://www.worldnewsdot.com

  • hxxp://www.worldtracknews.com

  • hxxp://www.wapcitynews.com

  • hxxp://linkworldnews.com

  • hxxp://goodnewsdigital.com

  • hxxp://waleprojekt.com

  • hxxp://expowale.com

  • hxxp://topwale.com

  • hxxp://waleonline.com

  • hxxp://goodnewsdigital.com

  • hxxp://wapcitynews.com

  • hxxp://bestgoodnews.com

  • hxxp://spacemynews.com

  • hxxp://linkworldnews.com

Once your at the site,  clicking on the hearts you would then download an file that is the worm!!  SO here are some things to remember.

If you don’t know the person, then it’s probably spam.   If you know the person you need to ask them before you run the program.   You also need to scan any downloads before you run them.  Go to my Malware Page and get a free Anti-virus and Firewall.  For the likely possibility this worm seems to search the computer and harvest email addresses, you should also warn the person who email you the link to let them know that they are infected.

MikeTechSHow Listener Roundtable Jan 24, 2009

Paul

We had a great discussion on Windows 7 Beta and I wanted to post this so people can download it and check it out themselves.    You have an idea for the next round table, just leave a comment and I’ll let Mike know.   I enjoyed this one so much and can’t wait for the next one!!

Miketechshow Listener Roundtable

[If your at my post, Hover over link to listen to it]

Show Links –

Please feel free and visit the Miketechshow website, and if you like his site please come back.  Don’t forget to visit the Miketechshow Forums and check it out.  Who knows you might be able to help someone out from time to time.

Brace for Impact, Brace for Botnet! (Conflicker Worm)

Paul

The Worm that has infected 6% of Personal Computers is starting to build into something totally different.  According to some Researchers, they are saying this has to happen soon. And I’ll quote:

In any case, today seems better than the day before and we think that growth of Downadup has been curbed. Disinfection of the worm remains a challenge.

[Via F-secure]

[ad#ad2-right]Although this sounds like it has stopped, I don’t think so I am sure the worm will get even bigger.   I don’t think it has been curbed we might have a rest period before the Worms tries again.

“Why is it taking so long?” asked Huger. “That’s what we’re all asking.” He couldn’t recall an attack of this size with such a long lag time between the initial attacks and follow-on downloads of more malware to the hijacked systems.

[Via PcWorld]

Now We know this exploit is being patched as quickly as possible in some areas of the industry but that leaves the question?  What isn’t being patched, I am guess the next stage of this worm is mutant into a new worm much like the way it tries to communicate to download new software or instruction.   I believe it will be using a newer exploit so that it can infect even more computers.   I also think it will be a botnet and so does others.

But he also pointed out that the clock is ticking. “If they don’t hurry up and do it, someone else will,” he said, explaining that hackers must fend off not only security researchers, but also other criminals, who would like nothing better than to pinch a ready-to-use botnet.

[Via PcWorld]

So they are going to use this Downadup Worm soon, I am counting on it.   Somethings for IT professionals to prevent more infections are to make sure you have patched the latest security holes before they exploit that.   Like my favorite program, the Clone of Autopatcher, which you can create a month by month patch DVD to install on all important systems.   IT professionals must not start getting relax, because of people saying it is on the downfall. In nature there are always going to be periods of rest before growth. So I am sure something will happen rather quickly, and probably in the next week or two.

Looks Like Monster.com and UsaJobs.gov was Hacked : Change your PW!!

Paul

[ad#ad2-right]

As is the case with many companies that maintain large databases of information, Monster is the target of illegal attempts to access and extract information from its database. We recently learned our database was illegally accessed and certain contact and account data were taken, including Monster user IDs and passwords, email addresses, names, phone numbers, and some basic demographic data. The information accessed does not include resumes. Monster does not generally collect – and the accessed information does not include – sensitive data such as social security numbers or personal financial data.

As a further precaution, we want to remind you that an email address could be used to target “phishing” emails. Monster will never send an unsolicited email asking you to confirm your username and password, nor will Monster ask you to download any software, “tool” or “access agreement” in order to use your Monster account.
[Via Monster.com]

UsaJobs.Gov is a partner with Monster.com so You should think about changing your Password.    They Also think this will be used for Phishing, if you have any doubts to the authenticity of email.  I’d suggest doing a google search on the company or name of the person who emailed you that way you can be well informaed before you do decide how you will handle it.   Also Remember most times if they ask you download software, it is probably Malware and should be scanned by your Anti-virus software.

Pirated iWork’09 — Shows users they’ll not smart!!

Paul

Pirated Version of iLife 2009 for Macintosh users are getting hit hard by a Virus.  These users seem to think they are immune to viruses or trojans, and install software without second thoughts.  Now I know this isn’t funny to some but at least 20,000 have been macintosh computers have been infected by this little OSX.Trojan.iServices.ANow did Apple help this out by making people think the OSX was immune to Viruses?  Some reports are saying this little Trojan is hard to get rid off.  Intego puts out a security Alert for this little Trojan.  Microsoft should jump on this like a hot knife through butter with there ad campaigns.  I would be laughing all the way to the mall.  No longer are Macintosh’s  safe from viruses, Trojans, or Spyware.

So you think you have the Trojan? I do not know how to get it off the system because I am a PC user, but I just had to comment on this and make sure people knew what was happening in the world of malware.   I’d suggest checking out my Malware Resource page and maybe there you’d find something that will work for you in removing this trojan.  Although it cost 79$, Mac users need to start using more common sense with their computers and not download software from untrusted sites. Security should be brought to the forefront when it comes to Apple.