Fake Microsoft update comes via email

Trend Micro blogged a couple of days ago about mail which has a fake Microsoft update included as an attachment.

Message itself looks pretty authentic with even included PGP signature and tells that Microsoft sends this update privately to prevent making more malware because of update.

If users runs attachments it adds itself to start automatically while Windows starts and attempts to download more malware.

After that it opens several ports which allows attackers to execute files, steal information from computer, or upload and download files.

Parody site WhiteHouse.org spreads malware

Trend Micro blogged recently about that issue. Problem is here that not only common visitors will get infected but also those who think that WhiteHouse.org is official website for White House. Real website is www.whitehouse.gov.

Malware there is malicious JavaScript code. It is unclear whether or not site has been yet cleaned.

Banker trojan strikes back

I wrote like a month ago about banker
spreading widely in Finland.

Now another hot Russian lady, Tatjana, seeks for love in Finnish-written email but has a dangerous link included.

Domain originates this time to China.

Banker trojan spread widely yesterday in Finland

Yesterday many Finns got a new kind of spam - this time in Finnish.

It warned of a radioactive cloud spreading from a nuclear reactor close to the Finnish city of Mikkeli.

Well, there is no nuclear power plant near Mikkeli so it didn't get much success ;)

Another version claims to be from a woman seeking love.

File needed to view pictures was actually a banker trojan targeted to Finnish online banks.

Read more here