About Us Industry News McAfee Avert Labs McAfee Avert Labs Blog
McAfee Avert Labs
  • Widespread Reporting of “Here you have” Virus (aka W32/VBMania@MM)
    – Update 2:36 PM PDT – McAfee Labs is currently investigating a new threat commonly referred to as the “Here you have” virus due to the email subject line the worm uses during propagation.  It looks like multiple variants may be spreading and may take some time to work through them all to paint a clearer [...]

  • Adobe PDF Zero-Day Exploit Discovered in the Wild
    Just after Adobe released its out-of-band patch for CVE-2010-2862, we discovered a malware exploiting a new zero-day vulnerability in the wild. Similar to the iOS PDF jailbreak vulnerability and CVE-2010-2862, this zero day occurs while Adobe Reader is parsing TrueType Fonts. We’ve analyzed and confirmed that the vulnerability affects the latest Adobe Reader, Version 9.3.4. This [...]

  • How Much Does My Identity Cost? (the Sequel)
    Two weeks ago, I posted a blog entry talking about the counterfeiting of legal documents. I have received many comments and requests for further data related to this type of fraud from various Eastern Europe countries, France, and even the United States. Aside from journalists, for whom it is their job, many people have contacted [...]

  • Zeus Botnet Attacks via FedEx Scam
    Yesterday we discovered a new Zeus campaign. Most of the messages associated with the new spam campaign are linked to the Asprox botnet. This time, the focus is on FedEx. Most of the attachments start with either FedExDoc[randomnumbers].exe or FedExInvoice[randomnumbers].exe. Those attachments are recognized as the Bredolab Trojan, which will download the Zeus component. This Zeus variant [...]

  • Labs Releases Whitepaper on Cooperative Anti-Malware on Endpoint and Gateway
    The Anti-Malware engine is a critical and core piece of the McAfee anti-malware solutions. As with any core technology, the engine must be rock-solid stable, fast, and functionally rich. A new McAfee Labs whitepaper outlines these engine technologies and values, covering both endpoint and gateway uses. Beyond introductions to malware detection methodologies–ranging from exact detection to [...]

  • iPhone OS – Safe again?
    Three weeks ago a ‘mysterious’ new jailbreak technique was posted to jailbreakme.com. Research to date indicates that this technique leverages two distinct vulnerabilities to gain access to devices. The first issue exploited is a FreeType CFF font handling issue, exploitable via MobileSafari. The second issue exploited is an IOSurface framework issue that allows for privilege [...]

  • Newegg Password Reset Scam: a Harbinger of Threats to Come?
    This blog was updated at 1.15 pm Pacific time on Aug. 26. McAfee Labs has detected a new strain of spam in the wild that is not only a sophisticated forgery of a Newegg purchase receipt, but there is also some indication that the botnet may be attempting to abuse Newegg’s password reset system to further [...]

  • Insecure Library Loading in OS and Applications
    While reading Microsoft’s confirmation of the DLL preloading risks in arbitrary Windows applications vulnerability, somehow it reminded me of the wave of LD_PRELOAD vulnerabilities that were exploited many years back on multiple non-Windows-based systems. It’s not a new class of vulnerability; the recent LNK file zero-day was probably the last biggest flaw that allows untrusted [...]

  • Three Strikes to Latest Phishing Scam
    We unceasingly monitor and combat old and emerging web threats, taking different approaches to best protect our customers. Cybercriminals continuously look for new ways to steal valuable information. A recent phishing scam we’ve seen impersonates three popular institutions: PayPal, Bank of America, and free offers to check your credit score. The recent attack on Bank of America [...]

  • How Much Does My Identity Cost?
    Phishing and identity theft involve not only the theft of funds. In addition to financial data, information collected by cybercriminals also can allow them to create and sell false legal documents. On top of selling malware, renting botnets, or launching denial-of-service attacks, supplying falsified documents is another well-paid online activity. I visited such a business just [...]

Home     l    Solutions     l    Products      l    Services      l    Contact Us
redundancy
redundancy
redundancy
redundancy
grandioso
grandioso
grandioso
grandioso