SophosLabs has discovered a fascinating piece of malware a few days ago, it’s a data-stealing Trojan directed at Mac users. It spread via a type of “undelivered courier item” emails connecting to a dodgy server that checked if you were running Windows or OS X, …
Read More »Guntior Bootkit upgraded
Sophos reports that the Guntior, malware out of China has resurrected with master boot record (MBR) infection techniques and has been common for a while now. These new techniques implemented are to bypass security mechanisms such as Windows PatchGuard and kernel driver signing which were introduced …
Read More »Windows Update phishing emails
New phishing e-mails have surfaced which claim to come from [email protected] – it could be that you’re being targeted in an attack designed to steal your AOL, Gmail, Yahoo or Windows Live password. At first sight, if you don’t look too cautiously, the emails entitled “Microsoft Windows …
Read More »Sophos Shh/Updater-B False Positives
Knowledge base article: http://www.sophos.com/en-us/support/knowledgebase/118311.aspx A few Sophos customers have discovered detections today of Shh/Updater-B. Several of these accounts involve detections of Sophos’s own code, but there are a number of third-party applications which are also being identified. Sophos wants to assure users that these are …
Read More »iFrame drive-by attack demo by Sophos
We show you how iFrames and script tags are being used to infect websites and inflict harm on innocent web servers, this event typically being called drive-by attacks. Find a live Anatomy of an Attack event near you: http://bit.ly/LxLwm4
Read More »