For the last month, malware known as CryptoLocker has been making its way around the web. It runs on a victim's computer where it then encrypts user-created files on the local hard drive and any mapped network drives where the user has write access. There are at least three variants of CryptoLocker out there. The first version of CryptoLocker demanded $100 to be paid for the … [Read more...]
Malwarebytes introduces Techbench, a USB utility to remove malware
Malwarebytes today announced the launch of a new product. Malwarebytes Techbench is a USB drive with Malwarebytes included on it. It updates silently, has 15GB of free space, and allows unlimited usage - perfect for the compliant technician. From the Malwarebytes blog: If you service computers for a living, this tool will make your day a little easier. Simply plug in the … [Read more...]
Antivirus trials on Windows 8 decreases its security
One of the features of Windows 8 made me excited even though it didn't seem to get a lot of attention from anybody else. Microsoft rebranded Microsoft Security Essentials as the Windows Defender product and included it by default in Windows 8. I thought this could be a game changer. So many of the computers that I see that are infected don't even have an antivirus on them. This … [Read more...]
SourceForge’s DevShare adware program rears its ugly head with FileZilla
SourceForge used to be a reputable place to download open source software. Now, that reputation is doing a full reverse as SourceForge becomes a place to avoid. A little relevant history: SourceForge was acquired by Dice Holdings from the previous owner Geeknet in September 2012. On July 1st of 2013, SourceForge announced a new program for developers called DevShare which … [Read more...]
Analyzing malware Attentive Antivirus files
Earlier this week, a computer was flagged by our security software as still infected. The malware was residing in C:ProgramDataaUs6sdpV with an executable of the same name as the folder. Symantec identified it as Suspicious.Cloud.5.A while others flagged it as AA2014 or Attentive Antivirus 2014 malware. More interesting than the executable itself which ComboFix was able to … [Read more...]