A month back I bloged about the paradigm shift in Spam Image to PDF and now its Microsoft Excel files. We have just received a sudden flood of stock pump-n-dump attachment Spam, this time using the XLS format instead of PDF. Spammers are sending the same XLS files wrapped within ZIP files too. At present […]
Today morning I received a mail which looked strange to me as it sender “Mailer-Deamon”, the word Deamon made me go through it. It seems the postcard (greeting cards) has morphed into this new version. They have changed the text matter and subject line, the body of the mail still contains links to download an […]
Here are some of the Subject seen in the mails containing links to malware file deceive as greetings send by some one close. Celebrate Your Independence Independence Day At The Park Fourth of July Party American Pride, On The 4th God Bless America Happy B-Day USA July 4th Family Day Your Nations Birthday July 4th […]
Mails send from egreetings.Com with malicious links is still floating around. The subject of these mails is formed using below keywords You’ve received [a|n] [greeting|] [postcard|ecard] from a [admirer|class-mate|colleague|family member|friend|mate|neighbor|neighbour|partner|school friend|school mate|school-mate|worshipper]! Here is one of such subject line used ” You’ve received a greeting card from a class mate!” The website page has javascript […]
Now, spammers have added PDF spam to the image spam. We have started receving e-mails having PDF file as attachment. So far we have seen e-mails with bogus text, often in German, each with a PDF in attachment advertising shares.
We have received a proof of concept virus called IRC.Badbunny that uses vulnerability in OpenOffice to infect Windows, Linux and Mac OS X. Respect to the host operating system the virus perform its actions to infect the compromised system. Badbunny will download an image from the remote server. More updates to follow
Microsoft has released Updates for seven critical updates. The vulnerabilities has been found in Excel, Word, Microsoft Office, Microsoft Exchange, Internet Explorer, CAPICOM and Windows DNS Server. All the vulnerabilities could be exploited by a remote user to execute arbitrary code. For more info click here
We have been receving reports of IE7 Beta spam mails containing links to download malwares. All the links in the mail points to “update.exe” file, which is been hosted on various URLs. IE7 Beta spam mail. Update.exe is a Trojan downloader program which in turn download other malware components from other host. We have added […]
This months security patch consists update for Windows CSRSS, Microsoft Content Management Server, Universal Plug and Play, Microsoft Agent and the most widely exploited vulnerability in last few weeks ANI file (Vulnerabilities in GDI Could Allow Remote Code Execution). All the users and reader are requested to apply this patch. for more information https://www.microsoft.com/technet/security/bulletin/ms07-apr.mspx
https://www.microsoft.com/technet/security/Bulletin/MS07-017.mspx This update is posted earlier to the usual second Tuesday monthly Security Release because of the alarming increase of Malwares and sites exploiting the ANI vulnerability. All users and reader are requested to apply this patch.