|
Security Response Weblog
|
Security Response
|
-
Reactive Phishing Defenses - Part 2
My previous blog article was intended to highlight two new features observed in a number of phishing kits that held the aim of making the lives of security analysts more difficult. I want to now focus my attention on another trick that has been used in phishing kits in order to protect the attack against a technique called "dilution."
-
MS08-067 Exploited in the Wild
I am sure by now that many have read about Trojan.Gimmiv exploiting the new MSRPC vulnerability. While we have not seen any evidence of Gimmiv replicating by itself, we analyzed a second component, related to Gimmiv, which is able to exploit the vulnerability patched on Wednesday.
-
Web Attacks Using Microsoft Help and Support Center Viewer
The Symantec DeepSight Threat Analysis team recently observed an interesting attack development related to a known vulnerability type. This seemingly new technique allows attackers to execute a malicious payload immediately on a victim's system, where in the past they weren't able to achieve instant code execution by exploiting such vulnerabilities.
-
A Guide for Beating Phishing Attacks
Phishing is a way for individuals who are known as "phishers" to obtain your private information such as bank account details and passwords. Phishing messages come in the form of an email message that is directed to you and appears to be from a reputable company or business-often one that you have an association with
-
The Security Response Blog Will be Changing its RSS Feed
This Thursday morning (Pacific Daylight Time), October 23rd, we will switch over our RSS feed to a new URL. Please be sure to update your RSS feeds to use the new URL: http://www.symantec.com/xml/rss/srblogs.jsp
-
Vulnerabilities in Malicious Code - Owning the Owners, Part I
Volume XIII of the Symantec Internet Security Threat Report highlighted the fact that the number of vulnerabilities affecting web applications is growing. However, these security issues are not only affecting common legitimate applications, but also malicious code.
-
Keep It Simple Stupid
When someone is asked to present an analysis of a modern threat, the explanation often becomes complicated very quickly. Here I will present a brief analysis of a Trojan that uses the KISS approach-"keep it simple, stupid."
-
Image Spam Trying a Comeback - Without Success
Symantec has observed an increase in the use of image spam attacks over the past few weeks. Symantec defines image spam as an unsolicited message containing an image in the body.
-
Microsoft Patch Tuesday for October 2008
Hello and welcome to this month's blog on the Microsoft patch releases. This is another fairly heavy month, with 11 bulletins covering 20 vulnerabilities.
-
Trojan.Silentbanker Decryption
On Monday we saw that Trojan.Silentbanker had added rootkit functionality in order to hide its own files. Today we'll look at another change that the new version of the Trojan has introduced, namely, the new configuration file format that the Trojan uses.
|
news feeds 
United States : 
Unknown Browser