- Latest
- Aug 2011
- Jul 2011
- Dec 2010
- Aug 2010
- Jul 2010
- Jun 2010
- May 2010
- Apr 2010
- Mar 2010
- Feb 2010
- Jan 2010
- Dec 2009
- Nov 2009
- Oct 2009
- Sep 2009
- Aug 2009
- Jul 2009
- Jun 2009
- May 2009
- Apr 2009
- Mar 2009
- Feb 2009
- Jan 2009
- Dec 2008
- Nov 2008
- Oct 2008
- Sep 2008
- Aug 2008
- Jul 2008
- Jun 2008
- May 2008
- Apr 2008
- Mar 2008
- Feb 2008
- Jan 2008
- Dec 2007
- Nov 2007
- Oct 2007
- Sep 2007
- Aug 2007
- Jul 2007
- Jun 2007
- May 2007
- Apr 2007
- Mar 2007
- Feb 2007
- Jan 2007
- Dec 2006
- Nov 2006
- Oct 2006
- Sep 2006
- Aug 2006
- Jul 2006
- Jun 2006
- May 2006
- Apr 2006
- Mar 2006
- Feb 2006
- Jan 2006
- Dec 2005
- Nov 2005
- Oct 2005
- Sep 2005
- Aug 2005
- Jul 2005
- Jun 2005
- May 2005
- Apr 2005
- Mar 2005
- Feb 2005
- Jan 2005
- Dec 2004
- Nov 2004
- Oct 2004
- Sep 2004
- Aug 2004
- Jul 2004
- Jun 2004
- May 2004
- Apr 2004
- Mar 2004
- Feb 2004
- Jan 2004
- Dec 2003
- Nov 2003
- Oct 2003
- Sep 2003
- Aug 2003
- Jul 2003
- Jun 2003
- Apr 2003
- Nov 2002
- Oct 2002
- Sep 2002
- Aug 2002
- May 2002
- Apr 2002
- Mar 2002
- Feb 2002
- Dec 2001
- Oct 2001
- Sep 2001
- Jul 2001
- Jun 2001
- May 2001
- Apr 2001
- Mar 2001
- Nov 2000
- Oct 2000
- Jan 1995
- Jan 1994
6/30: Doep.A Spreads Via File Sharing
W32.Doep.A is a worm that spreads through file-sharing networks, such as Kazaa, eMule, eDonkey2000, Lphant, and Overnet.
6/30: Bankhook.A Steals User Information
Bankhook.A is a Trojan that installs itself in the affected computer by taking advantage of several vulnerabilities.
6/30: Agobot-KG Sets Up IRC Channel
W32/Agobot-KG is an IRC backdoor Trojan and network worm which establishes an IRC channel to a remote server in order to grant an intruder access to the compromised machine.
6/30: Rbot-CG Allows Unauthorized Access
W32/Rbot-CG is a backdoor Trojan and network worm that allows unauthorized remote access to the infected computer via IRC channels while running in the background as a service process.
6/29: Trojan.Ecure Modifies IE Page
Trojan.Ecure is a Trojan horse that modifies the Hosts file and Internet Explorer home page.
6/29: Downloader-LY Carries Trojan
Downloader-LY is a Trojan that attempts to connect to a remote URL, and downloads Keylog Briss.
6/29: Boxed.D Performs DoS Attacks
Trojan.Boxed.D is a Trojan horse that performs a Denial of Service (DoS) attack on certain Web sites.
6/29: Randex.ATX Remotely Controlled
W32.Randex.ATX is a network-aware worm that may be remotely controlled using IRC.
6/29: Gaobot.AUS Lets Attackers In
W32.Gaobot.AUS is a repacked variant of W32.Gaobot.SN.
6/29: Rbot-CC Has Backdoor Capabilities
W32/Rbot-CC is a member of the W32/Rbot family of worms with backdoor component.
6/28: Agobot-KE Exploits Weak Passwords
W32/Agobot-KE is a backdoor Trojan and worm that spreads to computers protected by weak passwords.
6/28: JS-Scoba.A is Trojan Script
JS-Scoba.A is Trojan script that is usually embedded in malicious Web pages.
6/28: JS-Ject.A Hides in Hostile Web Pages
JS_Ject.A is Trojan script that usually arrives as an encrypted Java script file embedded in malicious Web pages.
6/28: Backdoor-AXY Runs Silently
Backdoor-AXY is a Trojan that upon execution, runs silently, no GUI message boxes appear.
6/28: Backdoor-CCL Running Wild
Backdoor-CCL is a Trojan that when executed, the file runs silently, no GUI message boxes appear.
6/28: Mota May Arrive As Attachment
W32/Mota.worm may arrive as an e-mail file attachment with the file attachment being either a .scr or .pif or .zip file.
6/28: Backdoor.Botex Steals Information
Backdoor.Botex is a backdoor program to allow unauthorized remote access to a compromised system.
6/28: Rbot-CA Allows Remote Access
W32/Rbot-CA is a worm that attempts to spread to remote network shares.
6/25: JS/Scob-A a Java Script Trojan
JS/Scob-A is a Java script trojan that is reported to be appended to HTML files on IIS machines.
6/25: Korgo.U Exploits LSASS Flaw
Korgo.U is a worm that spreads via the Internet by exploiting the LSASS vulnerability in remote computers.
6/25: Korgo.V Exploits Vulnerability
Worm_Korgo.V exploits the Windows LSASS vulnerability, which is a buffer overrun that allows remote code execution and enables an attacker to gain full control of the affected system.
6/25: Sdbot.Fo Exploits LSASS Flaw
Worm_Sdbot.Fo is a worm that spreads by exploiting the Windows LSASS flaw, which is a buffer overrun that allows remote code execution and enables an attacker to gain full control of the affected system.
6/25: BackDoor-AXJ Very Active
BackDoor-AXJ is a Trojan that when run on the victim machine, serves multiple actions.
6/25: JS.Scob Executes Javascript File
JS.Scob.Trojan is a simple trojan that executes a JavaScript file from a remote server.
6/24: Bobax.B Exploits LSASS Vulnerability
Worm_Bobax.B is known to exploit the Windows LSASS vulnerability, which is a buffer overrun that allows remote code execution and enables an attacker to gain full control of an affected system.
6/24: Korgo.R Scans IP Addresses
W32/Korgo-R is a network worm using the LSASS exploit to propagate (MS04-011).
6/24: Downloader.JH Downloads Dialer
Downloader.JH is a Trojan that gets information on the affected computer in order to download a dialer, detected by Panda Software as Dialer.DA, to the computer.
6/24: Korgo.T Exploits LSASS Vulnerability
Worm_Korgo.T is a memory-resident worm that exploits the Windows LSASS vulnerability, which is a buffer overrun that allows remote code execution and enables an attacker to gain full control of the affected system.
6/24: Sdbot-JF Allows Remote Access
W32/Sdbot-JB is a worm that attempts to spread to remote network shares.
6/23: Korgo.S Exploiting LSASS Vulnerability
Continuing its way through the alphabet, Panda Software issued an alert for the S variant of the Korgo worm, which spreads via the Internet by exploiting the LSASS vulnerability in remote computers.
6/23: Korgo Q, R Variants Use LSASS Flaw
Some security vendors have issued alerts for the Q and R variants of the Korgo worm, which spreads via the Internet by exploiting the LSASS vulnerability in remote computers.
6/23: Agobot-KC Seeks Weak Passwords
W32/Agobot-KC is a backdoor worm that spreads to computers protected by weak passwords.
6/22: Ranky.G Runs as Proxy Server
Backdoor.Ranky.G is a Trojan horse that runs as a proxy server.
6/22: Rbot-BL Spreads to Remote Shares
W32/Rbot-BL is a worm that attempts to spread to remote network shares.
6/21: IPScanner.A is a Hacking Tool
IPScanner.A is a hacking tool.
6/21: Lovgate.AB Spreads Via Email
Worm_Lovgate.AB drops copies of itself in several locations using varying file names.
6/21: Hacarmy.C Gives Hacker Control
Backdoor.Hacarmy.C is a Backdoor Trojan horse that gives an attacker control over a compromised computer.
6/21: Rbot-BI Runs in Background
W32/Rbot-BI is a worm that attempts to spread to remote network shares.
6/21: Lovgate-V Spreads Multiple Ways
W32/Lovgate-V is a variant of the W32/Lovgate family of worms that spread via email, network shares and filesharing networks.
6/21: Korgo-N, O, P Exploit LSASS Flaw
Some security vendors Monday issued alerts for the N, O and P variants of the Korgo worm, which spread by exploiting the LSASS vulnerability in Windows.
6/18: Dansh-A Copies to Windows
W32/Dansh-A is a network worm and IRC backdoor Trojan that can copy itself to the Windows System32 folder as DESKTOP.EXE when executed.
6/18: Backdoor.Nibu.H Opens Trojan
Backdoor.Nibu.H opens a backdoor Trojan horse on a compromised system.
6/18: Korgo L,M Exploit Buffer Flaw
W32.Korgo.L and M are the latest variants of the W32.Korgo.I worm and attempt to propagate by exploiting the Microsoft Windows LSASS Buffer Overrun Vulnerability (described in Microsoft Security Bulletin MS04-011) on TCP port 445.
6/18: Rbot-BC Runs in Background
W32/Rbot-BC is a worm that attempts to spread to remote network shares.
6/18: Sdbot-JB Allows Remote Access
W32/Sdbot-JB is a worm that attempts to spread to remote network shares.
6/18: Lovgate-V Spreading Widely
W32/Lovgate-V is a variant of the W32/Lovgate family of worms that spread via email, network shares and filesharing networks.
6/17: Agobot-KB Exploits Passwords
W32/Agobot-KB is a backdoor Trojan and worm that spreads to computers protected by weak passwords.
6/17: Argen Is Malware Joke
Argen is a malware type joke.
6/17: Sdbot.RZ Uses NetBEUI Functions
Worm_Sdbot.RZ is a memory-resident worm that spreads through network shares.
6/17: Download.Ject Installs File
Download.Ject is a Trojan horse that attempts to download and install a file by exploiting a vulnerability in Internet Explorer.
6/17: PWSteal.Bammer.A Steals Passwords
PWSteal.Bamer.A steals passwords when you visit Web sites the belong to certain banks.
6/17: Rbot-AY Exploits OS Vulnerabilities
W32/Rbot-AY is a worm and backdoor that spreads by exploiting various operating system vulnerabilities, weak passwords on shares and SQL servers and backdoors opened by other worms and Trojans.
6/17: Rbot-AX Spreads to Remote Shares
W32/Rbot-AX is a worm that attempts to spread to remote network shares.
6/16: Download.Ject Installs File
Download.Ject is a Trojan that attempts to download and install a file on a compromised system by exploiting a vulnerability in Internet Explorer.
6/16: Korgo-H Exploits LSASS Flaw
W32/Korgo-H is a member of the W32/Korgo family of network worms that propagates using the LSASS exploit (TCP port 445).
6/16: Boxed-A, B Launch DoS Attacks
Trojan.Boxed.A and B variants are Trojan horses that perform a Denial of Service (DoS) attack on certain Web sites.
6/16: Agobot-WR Attacks Weak Passwords
W32/Agobot-WR is an IRC backdoor Trojan and network worm.
6/16: Rbot-AV Spreads to Remote Shares
W32/Rbot-AV is a worm that attempts to spread to remote network shares.
615: Paps.A@mm Disguised as Attachment
W32.Paps.A@mm is a mass-mailing worm that sends itself as an attachment to the email addresses that it finds on a computer.
6/15: StartPage Changes Browser Settings
StartPage is a trojan that when executed, modifies certain Internet Browser settings.
6/15: EPOC.Cabir Spreads Via Bluetooth
EPOC.Cabir is a proof-of-concept worm that replicates on Nokia Series 60 phones.
6/15: Rbot-AS Attacks Weak Passwords
W32/Rbot-AS is a worm that attempts to spread to remote network shares.
6/15: Rbot-AQ Uses Remote Shares
W32/Rbot-AQ is a worm that attempts to spread to remote network shares.
6/14: Dansh.worm!irc an IRC Bot
W32/Dansh.worm!irc is an IRC bot that is intended to propagate via various mechanisms.
6/14: Qhosts.apd a Modified Hosts File
Qhosts.apd is a modified HOSTS file.
6/14: Plexus.a@mm, Plexus.b@mm Spreading
W32/Plexus.a@MM and its b variant are worms that propagate through different vectors.
6/14: Spybot-CO Spreads via KaZaA Network
W32/Spybot-CO is a P2P worm that spreads via the KaZaA file sharing network.
6/14: Korgo.G Exploits LSASS Flaw
Worm_Korgo.G, previously detected as Worm_Korgo.F, propagates by exploiting a flaw in the Windows LSASS (Local Security Authority Subsystem Service), which is a buffer overrun that allows remote code execution and enables an attacker to gain full control of the affected system.
6/14: Zafi.B Now a High-Level Threat
According to data from PandaLabs, the Zafi.B worm, first detected last week, is now spreading widely around the world.
6/14: Sober-H Emails Messages in German
Troj/Sober-H emails messages in German to addresses found in files on the hard disk.
6/11: W32/Zafi-B Sets Registry Entry
W32/Zafi-B is a peer-to-peer (P2P) and email worm that will copy itself to the Windows system folder as a randomly named EXE file and set the following registry entry to ensure that it will be run on system restart.
6/11: Pam.worm Written in Delphi
W32/Pam.worm is a floppy worm written in Delphi.
6/11: Sasser.G Exploits LSASS Flaw
W32.Sasser.G is a minor variant of W32.Sasser.Worm.
6/11: Rbot-AE Uses Remote Shares
W32/Rbot-AE is a worm that attempts to spread to remote network shares.
6/10: Agobot-XX Exploits Bad Passwords
W32/Agobot-XX is capable of spreading to computers on the local network protected by weak passwords.
6/10: VB_Pub.A Spreads Via Email
VB_Pub.A is malicious Visual Basic (VB) script that spreads via email.
6/10: Downloader-LB Being Spammed
Downloader-LB is a trojan believed to have been Spammed to many users as an attachment 'Clock.exe.'
6/10: Downloader-KP Arrives in File
Downloader-KP is not an email virus.
6/10: X97M.Crex Infects Spreadsheets
X97M.Crex is a macro virus that infects Microsoft Excel 97 (and later) spreadsheets.
6/10: Agobot-JX Targets MyDoom Infections
W32/Agobot-JX is a backdoor Trojan and worm that spreads to computers protected by weak passwords and to computers infected with variants of W32/MyDoom.
6/10: Agobot-JT Allows Unauthorized Access
W32/Agobot-JT is a backdoor worm that runs in the background as a system process and allows unauthorized remote access to the computer.
6/9: W32.Tubty.A@mm Uses SMTP Engine to Mail Itself
W32.Tubty.A@mm is a mass-mailing worm that uses its own SMTP engine to send itself to all the contacts in the Windows Address Book.
6/9: Gletta.A Steals Banking Information
Trojan.Gletta.A is a Trojan horse that steals Internet banking passwords.
6/9: Rbot.AF Uses NetBEUI Functions
Worm_Rbot.AF is a worm that spreads through network shares.
6/9: Korgo-I Exploits LSASS to Spread
W32/Korgo-I is a member of the W32/Korgo network worms family that propagates by using the LSASS exploit.
6/9: Downloader.GK a 'High Threat'
Panda Software Wednesday issued a high threat alert for Downloader.GK, a Trojan that downloads and runs adware programs on the affected computer.
6/9: BackDoor-AET is C++ Trojan
BackDoor-AET is a remote access trojan written in Microsoft Visual C++.
6/9: Rbot-AA Spreads to Remote Shares
W32/Rbot-AA is a worm that attempts to spread to remote network shares.
6/9: Agobot-JP Hits Weak Passwords
W32/Agobot-JP is a backdoor Trojan and worm that spreads to computers protected by weak passwords.
6/8: Trojan.Dingsta.A Logs Keystrokes
Trojan.Dingsta.A is a keylogger that tries to log keystrokes that are typed in open Web browser windows.
6/8: Keylog-Dingxa Captures Keystrokes
Keylog-Dingxa is a keylogging Trojan that captures keystroke information on the victim machine.
6/8: Spybot-CC Uses Kazaa P2P to Spread
W32/Spybot-CC is a backdoor Trojan and worm that spreads via file sharing on Kazaa P2P networks and by copying itself to network shares that have weak password protection on the $ADMIN share.
6/8: Dumaru-AK Drops Itself Into Win Folder
W32/Dumaru-AK consists of a dropper and a number of dropped files.
6/8: Korgo-G & H Exploit LSASS Flaw
Security vendors Tuesday issued alerts for the G and H variants of the Korgo worm, a network worm that uses the LSASS exploit to propagate.
6/8: StartPA-AE Changes IE Settings
Troj/StartPa-AE changes browser settings for Microsoft Internet Explorer each time Windows is started.
6/7: Spybot-BZ Copies Itself to Folder
W32/Spybot-BZ attempts to copy itself to CRCSSV.EXE in the Windows system folder.
6/7: Rainwash Copies to Kazaa Folder
W32.Rainwash is a worm that propagates by copying itself to the Kazaa shared folder.
6/7: Backdoor.Ducy Grants Remote Access
Backdoor.Ducy is a backdoor program designed to grant unauthorized access via MSN Messenger.
6/7: Mitglieder.L Creates Email Relay
Trojan.Mitglieder.L is a Trojan horse program that allows a compromised system to be used as an email relay, according to Symantec, which issued an alert Monday.
6/7: Sdbot-DB Allows Access Via IRC
W32/Sdbot-DB is a network worm and IRC backdoor Trojan that runs in the background as a service process and allows unauthorized remote access to the computer via IRC channels.
- What are the top Android security apps?
- What are the top Android security risks?
- What are today's top cyber threats?
- What's the most secure way to delete data?
- How does hard drive encryption work?
- Is old software inherently insecure?
- Are Macs immune to malware?
- How can BYOD risk be managed?
- Which web browser is the most secure?
- How do I protect my iOS device?
- What are the top iPhone security apps?
- How do I secure my wireless network?
- Are public Wi-Fi hotspots safe?
