Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

The Perfect Storm

 
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Virus, Worm &Trojan Alerts
View previous topic :: View next topic  
Author Message
datababe
Warrior


Joined: 13 Dec 2004
Last Visit: 10 Oct 2012
Posts: 217
Location: Inside your head

PostPosted: Fri Jan 19, 2007 9:52 am    Post subject: The Perfect Storm Reply with quote

http://isc.sans.org/diary.html?storyid=2071

Quote:
Nothing new to have a disaster followed up by a simple e-mail virus claiming to be a video of the event.

Unfortunately not.

"video.exe"...? Not exactly subtle, is it? Rolling Eyes
Back to top
View user's profile Send private message Visit poster's website
aBenG
Warrior


Joined: 06 Apr 2006
Last Visit: 28 Feb 2012
Posts: 297
Location: Darkest UK

PostPosted: Fri Jan 19, 2007 3:22 pm    Post subject: Reply with quote

http://news.bbc.co.uk/1/hi/technology/6278079.stm

BBC news on the same.
_________________
Inperfect.
Back to top
View user's profile Send private message
quietman7
Warrior Addict


Joined: 20 Dec 2004
Last Visit: 28 Mar 2012
Posts: 768
Location: Virginia, USA

PostPosted: Mon Jan 22, 2007 2:38 am    Post subject: Reply with quote

Storm Worm starts to use Rootkit techniques
Quote:
These variants are now detected as W32/Stormy.AB and Trojan-Downloader.Win32.Agent.bet

http://www.f-secure.com/weblog/archives/archive-012007.html#00001089
_________________
Microsoft MVP - Consumer Security 2007-2012
Member of UNITE, Unified Network of Instructors and Trusted Eliminators
Back to top
View user's profile Send private message
quietman7
Warrior Addict


Joined: 20 Dec 2004
Last Visit: 28 Mar 2012
Posts: 768
Location: Virginia, USA

PostPosted: Tue Jan 23, 2007 4:42 am    Post subject: Reply with quote

Quote:
...The bot machines are now communicating over UDP port 7871, instead of port 4000...the new version of the threat has fully fledged rootkit capabilities, albeit not very sophisticated...It is now capable of hiding several files and registry keys by hooking several kernel functions and patching the tcpip.sys system driver to hide its ports from commands, such as netstat -o or netstat -b....
symantec.com/weblog
_________________
Microsoft MVP - Consumer Security 2007-2012
Member of UNITE, Unified Network of Instructors and Trusted Eliminators
Back to top
View user's profile Send private message
franthy
Junior Member


Joined: 09 Aug 2006
Last Visit: 25 Feb 2008
Posts: 40
Location: Denmark

PostPosted: Tue Jan 23, 2007 7:04 am    Post subject: Reply with quote

Another new warning from F-secure

Storm love

Quote:
This evening a new wave of the Stormy worm has been widely spammed. The subjects used in the e-mails have now changed from news-related events to love-related topics


http://www.f-secure.com/weblog/archives/archive-012007.html#00001092
Back to top
View user's profile Send private message
quietman7
Warrior Addict


Joined: 20 Dec 2004
Last Visit: 28 Mar 2012
Posts: 768
Location: Virginia, USA

PostPosted: Wed Jan 24, 2007 5:08 am    Post subject: Reply with quote

'Storm' Trojan Hits 1.6 Million PCs; Vista May Be Vulnerable

Quote:
The goal of the Trojan seems to be to acquire a large botnet, or collection of compromised PCs, that can be used to send traditional scam spams or for later identity mining...The Trojan horse that began spreading Friday has attacked at least 1.6 million PCs...In addition, it appears that Windows Vista...is vulnerable to the attack...

_________________
Microsoft MVP - Consumer Security 2007-2012
Member of UNITE, Unified Network of Instructors and Trusted Eliminators
Back to top
View user's profile Send private message
quietman7
Warrior Addict


Joined: 20 Dec 2004
Last Visit: 28 Mar 2012
Posts: 768
Location: Virginia, USA

PostPosted: Fri Feb 16, 2007 4:40 am    Post subject: Reply with quote

Update: Storm' Worm Touches Down on IM
Quote:
The Trojan virus that was responsible for countless spam e-mails sent around the globe has spawned a new variant that is using AOL Instant Messenger, Google Talk and Yahoo Messenger to proliferate...

_________________
Microsoft MVP - Consumer Security 2007-2012
Member of UNITE, Unified Network of Instructors and Trusted Eliminators
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Virus, Worm &Trojan Alerts All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group