McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
Create Account | Login  | What is TrustedSource?
 
Home  Threats and Trends  McAfee Research Blog
TrustedSource™ Query
Enter IP address, domain name or URL to check reputation/traffic patterns:
Search
 

McAfee Research Blog

RSS Feed
The TrustedSource Research Team is now part of McAfee Research organization. Our researchers will continue to provide insightful blogs here on www.trustedsource.org and also at www.avertlabs.com/research/blog/. Either site will provide you with all the latest blogs from all the global security experts at McAfee Research teams.

How Much Does My Identity Cost? (the Sequel)

September 1st, 2010
Posted by Francois Paget

Two weeks ago, I posted a blog entry talking about the counterfeiting of legal documents. I have received many comments and requests for further data from various Eastern Europe countries, France, and even the United States, related to this type of fraud. Aside from journalists, for whom it is their job, many people have contacted [...]

More

Zeus Botnet Attacks via FedEx Scam

September 1st, 2010
Posted by BuenoWosotowsky

Yesterday we discovered a new Zeus campaign. Most of the messages associated with the new spam campaign are linked to the Asprox botnet. This time, the focus is on FedEx. Most of the attachments start with either FedExDoc[randomnumbers].exe or FedExInvoice[randomnumbers].exe. Those attachments are recognized as the Bredolab Trojan, which will download the Zeus component. This Zeus variant [...]

More

Labs Releases Whitepaper on Cooperative Anti-Malware on Endpoint and Gateway

August 31st, 2010
Posted by David Marcus

The Anti-Malware engine is a critical and core piece of the McAfee anti-malware solutions. As with any core technology, the engine must be rock-solid stable, fast, and functionally rich. A new McAfee Labs whitepaper outlines these engine technologies and values, covering both endpoint and gateway uses. Beyond introductions to malware detection methodologies–ranging from exact detection to [...]

More

iPhone OS – Safe again?

August 30th, 2010
Posted by Mike Price

Three weeks ago a ‘mysterious’ new jailbreak technique was posted to jailbreakme.com. Research to date indicates that this technique leverages two distinct vulnerabilities to gain access to devices. The first issue exploited is a FreeType CFF font handling issue, exploitable via MobileSafari. The second issue exploited is an IOSurface framework issue that allows for privilege [...]

More

Newegg Password Reset Scam: a Harbinger of Threats to Come?

August 26th, 2010
Posted by Adam Wosotowsky

This blog was updated at 1.15 pm Pacific time on Aug. 26. McAfee Labs has detected a new strain of spam in the wild that is not only a sophisticated forgery of a Newegg purchase receipt, but there is also some indication that the botnet may be attempting to abuse Newegg’s password reset system to further [...]

More

Insecure Library Loading in OS and Applications

August 25th, 2010
Posted by Geok Meng Ong

While reading Microsoft’s confirmation of the DLL preloading risks in arbitrary Windows applications vulnerability, somehow it reminded me of the wave of LD_PRELOAD vulnerabilities that were exploited many years back on multiple non-Windows-based systems. It’s not a new class of vulnerability; the recent LNK file zero-day was probably the last biggest flaw that allows untrusted [...]

More

Three Strikes to Latest Phishing Scam

August 24th, 2010
Posted by Felix Martinez

We unceasingly monitor and combat old and emerging web threats, taking different approaches to best protect our customers. Cybercriminals continuously look for new ways to steal valuable information. A recent phishing scam we’ve seen impersonates three popular institutions: PayPal, Bank of America, and free offers to check your credit score. The recent attack on Bank of America [...]

More

How Much Does My Identity Cost?

August 23th, 2010
Posted by Francois Paget

Phishing and identity theft involve not only the theft of funds. In addition to financial data, information collected by cybercriminals also can allow them to create and sell false legal documents. On top of selling malware, renting botnets, or launching denial-of-service attacks, supplying falsified documents is another well-paid online activity. I visited such a business just [...]

More

Fraud Strikes U.S. Travel Authorization Agency

August 17th, 2010
Posted by Peter Meyer

Last year, the U.S. government passed a law making mandatory online registration for travel for all citizens from countries eligible for the Visa Waiver Program. The Visa Waiver Program is available to citizens from the European Union, but also to citizens from other countries such as Switzerland, Japan, South Korea, and Singapore. The registration has to [...]

More

New Wave of Zbot Trojan

August 14th, 2010
Posted by Pedro Bueno, Guilherme Venere and Abhishek Karnik

McAfee Labs detected a new wave of the PWS-Zbot (a.k.a Zeus) spam campaign this week. Some common phrases used in the email subject headers: Subject: Sales Dept Subject: Another candidate brought to you Subject: Summary of payments These emails carried PWS-Zbot Trojan variants that are a part of the 2.x version of the Zeus botnet, and currently try to access [...]

More

Prolific Carder Arrested in France

August 12nd, 2010
Posted by Francois Paget

On August 7, the French Police National Aux Frontiers arrested Vladislav Anatolievich Horohorin at the Nice airport when he attempted to board a flight to Moscow. This 27-year-old citizen of both Israel and the Ukraine lived, according to rumors, on the French Riviera. At the time of the arrest, the authorities said, he was carrying [...]

More

McAfee Security Journal Fall 2010: Security Takes The Offensive

August 11st, 2010
Posted by Toralv Dirro

Bored by numbers, stats and facts in normal reports? Then the latest McAfee Security Journal is just what you were waiting for! It’s time to be proactive on cybersecurity, the latest McAfee, Inc. Security Journal examines strategies for shifting from defense to offense in cybersecurity. In light of recent cyberespionage, the breakup of cybercrime rings, and the threats [...]

More

McAfee Quarterly Threats Report Released

August 10th, 2010
Posted by Toralv Dirro

Malware has reached its highest levels, making the first six months of 2010 the most active half-year ever for total malware production. At the same time, spam leveled out, with only 2.5 percent growth from last quarter. Malware continued to soar in the second quarter, as there were 10 million new pieces cataloged in the first [...]

More

Weaknesses Undermine Wind River’s VxWorks Operating System

August 6th, 2010
Posted by Yichong Lin

Recently the US-Cert issued two security bulletins (VU#362332 and VU#840249) about weaknesses in Wind River Systems VxWorks embedded operating system. VxWorks is one of the most popular operating systems that runs on a variety of appliances and devices. Some of these appliances are part of the critical infrastructure in an organization, such as routers and [...]

More

Remote iPhone Jailbreak Using PDF Exploit Should Serve as Wake-Up Call

August 3th, 2010
Posted by David Marcus

Like many iPhone users, I “jailbreak” my iPhone. I do this for many reasons, but mainly for console-level access and the darn cool infosec tools that are available through Cydia. Like many iPhone users, I was quite happy when the Electronic Frontier Foundation (EFF) was able to get jailbreaking included under “fair use” within the [...]

More

 Previous Entries  
 
McAfee Homepage | Contact | Privacy Policy

Copyright © 2007-2009 McAfee, Inc. All Rights Reserved.

ANY INFORMATION PROVIDED BY MCAFEE ON THIS BLOG ARE OFFERED "AS IS" WITH NO EXPRESS OR IMPLIED WARRANTIES, CLAIMS, PROMISES OR GUARANTEES ABOUT THE ACCURACY, COMPLETENESS, OR ADEQUACY OF THE INFORMATION CONTAINED IN OR LINKED TO AND NO RIGHTS ARE CONFERRED. BY USING THIS BLOG, YOU ASSUME ALL RISK FOR YOUR USE. IN NO EVENT WILL MCAFEE BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL, EXEMPLARY, OR OTHER DAMAGES WHETHER OR NOT MCAFEE HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH LOSS OR DAMAGE. MCAFEE HAS NO OBLIGATION TO POST BLOG SUBMISSIONS OR RESPONSES.