Home > Knowledge Centre > 2010

Rogue software uses the name “Microsoft Security Essentials”

  • Ranjeet Menon / 15 years
  • 0
  • 1 min read

“Fake Microsoft Security Essentials Rogueware Alert” pop ups declaring that it was unable to remove Unknown Win32/Trojan threat Once user clicks on clean, it recommends to online scan and shows legitimate AVs names. In addition it also shows free install for Rogue software “Red Cross”, “Peak Protection”, “Pest Detector”, “Major Defense Kit” “AntiSpy Safeguard” Once […]

Vulnerability in ASP.NET

  • Ayush Sonavane / 15 years
  • 0
  • 4 min read

MS10-070 security update resolves a publicly disclosed vulnerability in ASP.NET. The vulnerability could allow information disclosure. An attacker who successfully exploited this vulnerability could read data, such as the view state, which was encrypted by the server. This vulnerability can also be used for data tampering, which, if successfully exploited, could be used to decrypt […]

Orkut attacked by ‘Bom Sabado’ Worm

  • Vishal Dodke / 15 years
  • 0
  • 1 min read

Many user on Orkut are receiving scraps form their friends with words “Bom Sabado!”. The word “Bom Sabado” means “Good Saturday” in Portuguese. This is a Worm which has attacked the social networking service today. The worm seems to be posting scraps with the text “Bom Sabado” and also adding affected users to new Orkut […]

Trojan “Oficla” pushesh Rogueware “Antimalware Doctor”

  • Pravesh Shinde / 15 years
  • 0
  • 1 min read

We have analyzed a suspicious email in our security lab that email shown below Above email has an attachment. This attachment is a zip archive which contain a trojan oficla variant. This trojan has a Microsoft word file icon. Upon execution it downloads below script file. https://ilovelasvegas.ru/web/St/bb.php?v=200&id=881716830&b=23avgust&tm=72 The script contains string as shown below: “[info]runurl:https://91.204.48.46/kasuli.exe|taskid:39|delay:15|upd:0|backurls:[/info]” […]

Online Form Site Builder usage

  • Ranjeet Menon / 15 years
  • 0
  • 1 min read

The phishing community has discovered new way to collect the information from victims. They now are using Online Form Site Builder service to create form and collect victim’s data. We received a mail targeting ICICI bank user, which contained a html file as an attachment. The subject line of the mail is “Exclusive Privacy Option […]

‘Here you have’ virus hits some major companies in US.

  • Sanjay Katkar / 15 years
  • 0
  • 1 min read

Thursday we observed a new worm that started to spread over Internet by emailing the address books of infected PC. The email contains the subject line as “Here you have” or “Just for you” and contains a link to a file which seems to be a PDF file. The email when received in inbox looks […]

Zero Day critical vulnerability in Adobe Reader and Acrobat Reader

  • Sanjay Katkar / 15 years
  • 0
  • 1 min read

A critical vulnerability (CVE-2010-2883) exists in Adobe Reader 9.3.4 and earlier versions for Windows, Macintosh and Unix and Adobe Acrobat 9.3.4 and earlier versions for Windows and Macintosh. This vulnerability could cause a crash and potentially allow an attacker to take control of the affected system. Currently we have not come across such sample but […]

Visa bill pay scam

  • Ayush Sonavane / 15 years
  • 1
  • 1 min read

Yesterday I received a mail regarding “Payment Processed by Visa Bill Pay” as below… If one open this file then a Trojan get installed on system in application data folder, this Trojan connect to below domain and it may further lead to fake antivirus scams, malicious redirects, viruses, trojans, rogue installers, key loggers, droppers, browser […]

United Parcel Service (UPS) Tracking scam email

  • Ranjeet Menon / 15 years
  • 0
  • 1 min read

We are seeing rise in scam email posing as tracking mail notification from US based delivery company United Parcel Service. The mail pretends to be from UPS it has subject line Delivery problem. It notify user… We failed to deliver postal package sent on so on date… in time because the recipent’s address is wrong. […]

Lottery Winning Notification Scam

  • Vishal Dodke / 15 years
  • 0
  • 2 min read

Today I received scam mail as below related some lottery in which i won, this one i never bought …Lottery scam letters are sent out by the thousands every day. There are only two things the bad guys want: your money and your identity. ******************************************* from GRAHAM SMITH to date Thu, Aug 26, 2010 at […]