Wide variety of malware lurking in Skype messages
Posted on 04.04.2013
A new malware-spreading campaign is targeting Skype users, warns Dancho Danchev.

The attack is mounted via malware-infected users whose compromised Skype account is set to send out messages to their contacts.

The message is very simple - it contains just one goo.gl shortened link and no explanation whatsoever:


Anyone who clicks on the link is subjected to a redirection and is ultimately offered to download a file.

The malware offered for download is rotated. Sometimes it's a banking Trojan, sometimes a backdoor, and occasionally a generic downloader, but unfortunately for the victims, most of the variants pushed onto them are poorly detected by popular AV solutions.

What's interesting to note that one of the Zeus Trojan variants offered phones back to an IP address that has in the past been used as a C&C for the Madi/Mahdi malware campaign and the Flashback one.

To protect themselves against this type of attacks, users are advised always to check with the person that apparently sent the message whether they actually did it or not before following links in any kind of unsolicited message.









Spotlight

How security analytics help identify and manage breaches

Posted on 30 July 2014.  |  Steve Dodson, CTO at Prelert, illustrates the importance of security analytics in today's complex security architectures, talks about the most significant challenges involved in getting usable information from massive data sets, and much more.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Thu, Jul 31st
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //