Newsletters
The Enterprise Security Supersite NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
Home Network Security Viruses & Malware Cybercrime Security Solutions More Topics...
Get Recognized.
Let an ISACA® certification
enhance your career.

Register for an Exam Today
Network Security
Register for a certification exam.
Average Rating:
Rate this article:  
New Security Threats Keep IT Busy this Week
New Security Threats Keep IT Busy this Week

By Jennifer LeClaire
February 8, 2013 10:46AM

Bookmark and Share
Among the threats in the news this week: fake Federal Express e-mails that encourage users to download a malicious file; the Trojan Nap virus, which works to steal data from victims' machines; and the Bamital botnet, which although it has been taken down, has left malicious code on users' computers that makes them vulnerable to future attacks.
 


It's been a busy week in the hacking and malware world. Anonymous posted sensitive information of more than 4,600 banking executives to a government Web site on Sunday. Then, the Federal Reserve admitted it was hacked Tuesday morning.

Symantec is warning about fake FedEx e-mails circulating the Internet. According to Symantec, the e-mails claim the user must print out a receipt by clicking on a link and then physically go to the nearest FedEx office to receive their parcel.

"Obviously the parcel does not exist and those who click on the link will be greeted by a PostalReceipt.zip file containing a malicious PostalReceipt.exe executable file," said security researcher Shunichi Imano at Symantec. "Instead of receiving a parcel, which the user did not order in the first place, Trojan.Smoaler is delivered to the computer."

Don't Take a Nap

The Trojan Nap also wreaked havoc online this week. Nap is a malicious downloader that works to steal information from victim machines. But Manos Antonakakis, senior director of research at Damballa Labs, told us there is nothing new about Nap.

"Botnets have been using fluxing techniques for years in order to evade statically compiled black lists. Also, anti-VM [virtual machine] analysis techniques are not an infrequent phenomenon in the current malware landscape," Antonakakis said. "If a company employs legacy signature-based systems, then both anti-VM techniques and fluxing botnets -- both from the IP or domain name side -- will evade their perimeter defenses."

Based on previous analysis of this malware from the community, and according to Damballa datasets, he believes this particular threat is related to the Kelihos botnet. The fast flux network, domain registration, and name servers being used all point back to the Kelihos botnet operators. Antonakakis believes the downloader being used is just one component in this campaign.

"AV people should be paying attention to the network behavior and the ecosystem around Internet threats," Antonakakis said. "Binaries employ several different obfuscation techniques, so tracking them in the context of botnets is extremely hard. Let's put it another way: If you rely on seeing the malware, you have already lost the war."

Bamital Bites Browsers

The security roundup would not be complete without a look at the Bamital botnet. The Bamital botnet hijacked search results across various Web browsers offered by companies such as Google, Yahoo and Microsoft. Bamital also fraudulently charged businesses for online advertisement clicks and took control of users computers, allowing Bamital's organizers to install viruses that could engage in identity theft.

Mark Elliott, executive vice president of products at Quarri Technologies, told us the Bamital botnet poses a threat to users across multiple widely used Web browsers.

"While the botnet's takedown removed the cybercriminals' ability to hijack users' browsing sessions, there is a high probability that many end users were unaware the problem existed while the botnet was still functioning," Elliot said. "The availability of free tools and tips to assist users in uninstalling the botnet is a positive development, but many still don't know that they have Bamital installed on their computer."

As Elliot sees it, this accentuates the issue of Web browser security and the dangers end users face if they don't take the proper security measures. He said it also demonstrates the critical need for organizations to provide and enforce the use of a secure, hardened browser session to protect their Web applications from malware.

"This step is critical to protect their most sensitive browser-delivered information," he said, "and prevent unauthorized use and replication of confidential data."
 

Tell Us What You Think
Comment:

Name:



You have the experience and skills, let an ISACA® certification demonstrate your value. Our certifications announce that you have the expertise and insight to speak with authority. ISACA certification is more than a credential; it's a platform that can elevate your career. Register for an Exam Today.


 Network Security
1.   Wall Street Journal Hacked Again
2.   Dropbox for Business Boosts Security
3.   Banks Hit by Android-Skirting Malware
4.   New Technology Defeats Privacy Efforts
5.   Juniper DDoS for High-IQ Networks


advertisement
Android SMS Worm on the Loose
Malware lets bad actors cash in.
Average Rating:
New Technology Defeats Privacy Efforts
Study identifies 3 browser techniques.
Average Rating:
Banks Hit by Android-Skirting Malware
34 institutions, four European countries
Average Rating:


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Wall Street Journal Hacked Again
Hacked again. That’s the story at the Wall Street Journal this week as the newspaper reports that the computer systems housing some of its news graphics were breached. Customers not affected -- yet.
 
Dropbox for Business Beefs Up Security
Dropbox is upping its game for business users. The cloud-based storage and sharing company has rolled out new security, search and other features to boost its appeal for businesses.
 
34 European Banks Hit by Android-Skirting Malware
Criminals have been finding gaping holes in Android-based two-factor authentication systems that banks around the world are using. The result: 34 banks in four European countries have been hit.
 
New Web Tracking Technologies Defeat Privacy Protections
Recently developed Web tracking tools are able to circumvent even the best privacy defenses, according to a new study by researchers at Princeton and the University of Leuven in Belgium.
 
Juniper DDoS Solution Aims at High-IQ Networks
In the face of more complex attacks, Juniper Networks is boosting its DDoS Secure solution to help companies mitigate the threats with more effective security intelligence throughout the network fabric.
 
Large-Volume DDoS Attacks Hit Record in 2014
The number of distributed denial-of-service (DDoS) attacks set a record in the first half of 2014, according to a report by Arbor Networks. The number of attacks over 20 GB/sec doubled.
 
Can Google Put an End to Zero Day Flaws?
Google wants the Internet-using world to know that security is a top priority. That’s the message behind Project Zero, a team of researchers on the prowl for cyber threats and bugs.
 
U.N.: Nations Hide Rise in Private Digital Snooping
Governments on every continent are hiding an increasing reliance on private companies to snoop on citizens' digital lives, the U.N. human rights office says, with grave concerns about privacy.
 
Google Sends Hacker Team to Hunt Bugs
If it takes a thief to catch a thief, Google is hoping that it takes a hacker to catch a hacker. Project Zero is a team of top security researchers whose job is to track down zero-day vulnerabilities.
 
Russian Hackers Attack CNET Database
It’s hardly Anonymous, but the results are similar. CNET was attacked by Russian hackers over the weekend. Twitter user @rev-priv8 put up an image of an apparent remote access to a CNET.com server.
 
FBI Cyber-Expert Is Ex-Discount Furniture Salesman
J. Keith Mularski's world has expanded greatly since he stopped selling discount furniture to join the FBI in 1998. He is now recognized as one of the country's foremost experts on cybercrime.
 
Chinese Man Accused of Hacking into U.S. Computers
Authorities have charged a Chinese businessman with hacking into the computer systems of U.S. companies with large defense contracts, including Boeing, to steal data on military projects.
 
Report: Chinese Hackers Hit U.S. Personnel Networks
Hackers from China broke into the computer networks of the U.S. Office of Personnel Management earlier this year with the intention of accessing the files of tens of thousands of federal employees.
 

Enterprise Hardware Spotlight
Microsoft Makes Design Central to Its Future
Over the last four years, Microsoft has doubled the number of designers it employs, putting a priority on fashioning devices that work around people's lives -- and that are attractive and cool.
 
Contrary to Report, Lenovo's Staying in Small Windows Tablets
Device maker Lenovo has clarified a report that indicated it is getting out of the small Windows tablet business -- as in the ThinkPad 8 and the 8-inch Miix 2. But the firm said it is not exiting that market.
 
Seagate Unveils Networked Drives for Small Businesses
Seagate is out with five new networked attached storage products aimed at small businesses. The drives are for companies with up to 50 workers, and range in capacity from two to 20 terabytes.
 
Another Day, Another Internet of Things Consortium Is Born
In the emerging Internet of Things, zillions of devices will be talking to each other. Samsung, Intel and Dell just formed a consortium to ensure each thing can understand what others are saying.
 
Gartner Sales Study Sees Tablets Up, PCs Down but Recovering
Are PCs on the comeback trail? That depends on how you define "comeback." While tablet sales remain strong, Gartner's latest study found PC shipments aren't dropping as fast as they did last year.
 
Oracle Unveils Upgrades to ZS3 Storage Server Line
Enhancements to the ZFS Storage ZS3 Series were released by Oracle Wednesday, enabling the ZS3-2 to handle more than 16,000 virtual machine boots from a single platform in less than 7 minutes.
 
Intel Heralds New Xeon Server Chip, Most Powerful Ever
It’s called Knights Landing and it’s the most powerful version of Intel’s Xeon Phi supercomputing processor. The chip is set to be available in commerical systems in the second half of 2015.
 
Review: Warming Up to Tablets with Keyboard Covers
If you've ever thought tablets with keyboard covers were just a poor excuse for a laptop, think again. Nokia's Lumia 2520 comes with an optional keyboard cover that just may change your mind.
 
Facebook Unveils Wedge Open-Source Network Switch
It turns out Facebook is into networking that is more than just social, unveiling an open-source, software-defined networking switch that could ultimately disrupt the networking equipment market.
 
Review: Microsoft Surface Pro 3 an iPad Alternative
When Microsoft announced the Surface, the tablet was unsuccessfully pitched as an iPad alternative. Now it's being marketed to consumers as a replacement for both their iPads and MacBooks.
 
Schneider Electric Unveils Data Center Power Modules
New modules for data center electricity needs are being offered by Schneider Electric. The company described the new prefabricated approach as "revolutionary" in its flexibility and customization.
 
Broadcom Unveils XLP500 Series with SDN in Mind
With so much focus on software-defined networks, Broadcom is expanding its XLP II multi-core communications processors line to meet evolving industry needs with the XLP500 Series.
 
Best of Interop 2014 Finalists Announced
Judges have chosen finalists for this year's Best of Interop awards, with winners to be named April 1 in Las Vegas. The nine categories include networking, mobility, security, cloud and data storage.
 
Cisco Telecom Router Ready for Internet Traffic Flood
The Carrier Routing System-X unveiled by Cisco for the telecom industry is a 400 Gbps per slot system that can be expanded to nearly 1 petabit per second, enough to deal with the coming flood in demand.
 
Interop: Networking Leaders Demo Shortest Path Bridging
Avaya, Alcatel-Lucent, Spirent and HP are teaming to endorse Shortest Path Bridging for fabric networking, and they're demonstrating their multi-vendor network for the first time at Interop Las Vegas.
 

Navigation
Enterprise Security Today
Home/Top News | Network Security | Viruses & Malware | Cybercrime | Security Solutions | Mobile Security | Disaster Recovery | Windows Security
Data Security | EST Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.