Clik here to view.
Trojan:Android/SMStado.A and Trojan:Android/FakeNotify.A
We ran across two Android premium-SMS trojans today, coincidentally both targeted at Russian users.First, Trojan:Android/SMStado.A (SHA1: 718b8fbab302b3eb652ee0a5f43a5a2c5c0ad087).As usual, the first...
View ArticleClik here to view.
Premium Rate SMS Trojans in Google's Android Market
Premium rate SMS trojans were discovered in Google's Android Market earlier today.The developer, named "Lagostrod", offered supposed free versions of many popular applications. And while Google has...
View ArticleClik here to view.
Patch For the Zero-Day Vulnerability Used by Duqu
It's patch Tuesday and Microsoft has just issued a patch for the zero-day vulnerability that was used by the Duqu malware discovered in October. To quote the bulletin:What does the update do?The...
View ArticleClik here to view.
Java Considered Harmful
Do you need Java in your web browser? Seriously, do you? If not, get rid of it.Turns out, most users don't need Java any more, yet people keep running it.Do not confuse Java with JavaScript: it's hard...
View ArticleClik here to view.
Dead Software Walking: Update Now!
Some of our legacy software is approaching its end-of-life (EOL).F-Secure has a long history of protecting its customers, and as a result, we have some long established customer relationships. And...
View ArticleClik here to view.
Rumors of Facebook Timeline Troubles
Facebook has started rolling out its new Timeline profile and over the weekend, here in Finland, there were some reports that private messages are being posted to users' profiles.We have seen no solid...
View ArticleClik here to view.
ChatSend Spam Campaign on Both Facebook and Twitter
We're seeing a rather suspicious social spam run on both Facebook and Twitter today.And apparently, it's been spreading for 5 days.The social spam uses a bit.ly short link with various numerical...
View ArticleClik here to view.
Impostor Apps in the Android Market
There seems to be a growing practice where malware authors boldly use similar package names and icons of popular apps for their malware, and then publish this malware on the official Android Market....
View ArticleClik here to view.
Java Exploit on Amnesty International's UK Site
'Tis the season for giving. And anybody visiting Amnesty International's UK website could currently end up with the gift of a keylogger courtesy a Java exploit. Brian Krebs has written about it on his...
View ArticleClik here to view.
About Anonymous, Donations and Charities
Members of the Anonymous collective announced during Christmas that they had broken into stratfor.com.STRATFOR is an organization that gathers open source intelligence for forecasting purposes. They...
View ArticleClik here to view.
Failed Android Premium Rate SMS Trojan
We've found Android trojans that attempt to send SMS messages to premium rate SMS numbers. That's not unusual. What is different though is that these trojans don't work.The trojans (detected as...
View ArticleClik here to view.
440,783 "Silent SMS" Used to Track German Suspects in 2010
The 28th Chaos Communication Congress (28C3) is currently underway in Berlin and on Tuesday, researcher Karsten Nohl gave a presentation called: Defending mobile phones. If you have an hour, it's...
View ArticleClik here to view.
Suo Anteeksi: Polite Variant of ZeuS
There's a run of ZeuS (aka Zbot) trojans currently targeting several Finnish banks. And naturally, our Threat Research team has been working on related cases. Interestingly, they've discovered some...
View ArticleClik here to view.
New Year's Wishes - with Side Order of Data Harvesting
It's almost the end of 2011. What with Christmas recently passed, and the New Year coming up, there's naturally a lot of well wishes and holiday greetings being messaged around. Looks like somebody's...
View ArticleClik here to view.
Anonymous Anonymous Claims Anonymous is Not Anonymous
You've probably heard about the stratfor.com hack by now. Anonymous claimed responsibility. Then Anonymous denied being responsible.But then today, "Anonymous" claimed that the earlier anonymously...
View ArticleClik here to view.
Trojan:Android/FakeNotify Gets Updated
Earlier this month, we did a post about a family of premium rate SMS Trojans, which we detected as Trojan:Android/FakeNotify.A. Now we've found that the trojan has been updated, with changes to make...
View ArticleClik here to view.
Do you think like a German or a Pole?
Today we've been reading through a 208 page European Commission report called: Special Eurobarometer 359, Attitudes on Data Protection and Electronic Identity in the European Union (PDF). One thing is...
View ArticleClik here to view.
Cheap Professional DDoS Service
Now here's something that you don't see everyday, a YouTube video in which a young woman advertises DDoS services, with a smile."Hello, Hackers."The video links to a forum thread that lists the...
View ArticleClik here to view.
Learning to Analyze Computer Viruses: Year Five
For the fifth year now we are arranging a course on malware (malicious software) analysis in co-operation with Aalto University in Helsinki, Finland. The first lecture is on January 18th by our Chief...
View ArticleClik here to view.
Android Permissions: For Apps or Ads?
An Android application package (APK) can include multiple modules; one or more of these modules may be an advertisement SDK. That's pretty normal nowadays, as many Android developers currently use...
View Article