391 posts
Strange scanner
Yesterday we came across a sample. It is dropper of a virus called W32/Rigel.A Once you execute it, it displays a windows(Shown below), that informs…
December 2006 Top Spyware
Vicen, our spyware researcher has finished compiling the December's Top Spyware list. There are no changes from last month's list, at least on the top…
New 'Rahacks' wave
Yesterday afternoon, we started receiving a big amount of messages from our honeypots. This time it was a new variant from 'Rahacks.worm'. The first variant of…
MS06-044 in the wild (Update)
We have recorded a video, to see the exploit in action. First, the user connects to a web page which uses the exploit to launch…
MS06-044 in the wild
A few days ago some small e-Commerce sites were compromised. You can find more information at [http://www.securityfocus.com/archive/75/455149]. Those sites were being used to distribute payloads for a Microsoft…
Lineage morph
We don't usually talk about Lineage malware. We use to receive samples almost every week. Those samples used to be trojans, specifically password stealers, which affected players…