Stuxnet: A Comprehensive FAQ
Since the Belarus vendor VirusBlokAda pulled the alarm last week on a new malware deemed “Stuxnet”, a whole lot of information has been released here and there on different portions of the threat. As a...
View ArticleYou can’t judge a book by its cover
Last week, a lady from the sales department dropped in to see me for some help with her iPhone. She was worried because she had “suddenly” lost all of her contacts, music and emails. She had turned to...
View ArticleSpyEye Exposes Mules
In prevision of the anticipated merge between the two infamous banking malware ZeuS and SpyEye, our Threat Analyst Kyle Yang spent some time dissecting the most current version of SpyEye we could get...
View ArticleWhat’s new in Zitmo.B?
Zitmo is a mobile malware Fortinet has particularly been focusing on since the beginning (see our first blog post and my presentation at ShmooCon 2011) as it is one of the first palpable signs...
View ArticleHow Android/Fake10086 selectively blocks SMS – step by step
Android devices continue to be the target of malware authors with Android/Fake10086.A!tr. AegisLab spotted this malicious Trojan in the wild in China and posted an interesting write-up on the matter....
View ArticleZitmo hits Android
Zitmo has been used by the ZeuS gang to defeat SMS-based banking two-factor authentication on Symbian, BlackBerry and Windows Mobile for a several months (see my ShmooCon slides). Lately, there’s been...
View ArticleEurograbber is Zitmo
Zitmo Attack Scenario - taken from my slides at ShmooCon, January 2011 Zitmo's attack scenario, taken from CheckPoint's and VerSafe's white paper (Dec 2012) Recently, Check Point and Versafe published...
View ArticleProject Blitzkrieg FAQs
Following the disappointment at the failure of the end of the world, we decided to do a little recap on the Project Blitzkrieg that has been widely talked about in the security community over the past...
View ArticleUranico is Loozfon
I recently came across an Android malware sample that does your usual data stealing i.e. leaking data from the victim’s phone such as the phone number, contact information etc. Most vendors name this...
View ArticleThe Mob attacks PC
Android/Claco.A!tr is a new mobile malware that has been in the news recently for it’s unique ability to infect PCs. Even though we’ve seen an attack vector of this kind on the Symbian OS before...
View Article