Phishing, attack sites, and malware sites keep getting hotter, as the summer grinds on. Headlines since last time . . .
* Scam Warning: Citadel Malware Delivers Reveton Ransomware
* Another malware sneaks past Google Play’s defenses
* alware deadline passes, very few knocked offline
* Flame malware prompts Windows encryption revamp
* Apple App Store gets first malware app
and more . . .
Flame malware prompts Windows encryption revamp
Windows operating systems will reject encryption keys smaller than 1024 bits from next month, which could cause problems for customer applications accessing web sites and email platforms that use the keys.
The cryptographic policy change is part of Microsoft’s response to security weaknesses that came to light after Windows Update became an unwitting party to Flame Malware attacks, and affects Windows XP, Windows Server 2003, Windows Server 2003 R2, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 operating systems
Full story : Consumer Tech
Scam Warning: Citadel Malware Delivers Reveton Ransomware
The IC3 has been made aware of a new Citadel malware platform used to deliver ransomware, named Reveton.
The ransomware lures the victim to a drive-by download website, at which time the ransomware is installed on the user’s computer. Once installed, the computer freezes and a screen is displayed warning the user they have violated United States federal law.
Full story : Imperial Valley News
Another malware sneaks past Google Play’s defenses
Chalk one more up for malware authors over Google Play’s defenses. A new Trojan that sends premium-rate SMS messages managed to get to, and stay for a while, on Google Play for download by Android devices, security vendor BitDefender said.
“The apps avoided the automated screening process set in place by Google by allowing remote content to be accessed and downloaded. Multi-stage payloads are not uncommon, although we’ve rarely seen it used in legitimate Android apps,” BitDefender said in a blog post.
Full story : GMA News
alware deadline passes, very few knocked offline
If you’re reading this online, you’re fine. The day that was supposed to see thousands of people knocked off the Internet has arrived, but only a few people were affected.
Thousands of Internet users across the U.S. and beyond waited too long or simply didn’t believe warnings that they would lose access to the Internet just after midnight because of malware that took over computers around the world more than a year ago.
Full story : San Francisco Chronicle
Apple App Store gets first malware app
The app, named ‘Find and Call’ managed to get on the store despite Apple’s strict screening process. Kaspersky Lab discovered the Trojan which is widely considered to be the first malware found in the App Store.The security firm explained that the app was thought to be an SMS worm sending text messages to contacts with a url to the app itself. However, it later found that the Trojan uploads the user’s phonebook to a remote server to be used for spam text messages.
Apple said: “The Find and Call app has been removed from the App Store due to its unauthorised use of users’ Address Book data, a violation of App Store guidelines.”
Full story : CSO
If you think you’re a victim, file a complaint with the
FBI Internet Crime Complaint Center : IC3.