Win32/Gataka is an information-stealing banking Trojan that can read all of your web traffic and alter the balance displayed on your online banking page to hide fraudulent transfers. It exhibits a modular architecture similar to that of SpyEye, where plugins are required to achieve most of the malware functionality. In our previous blog post, we … More Win32/Gataka banking Trojan – Detailed analysis
1. INF/Autorun Previous Ranking: 1 Percentage Detected: 6.28% This detection label is used to describe a variety of malware using the file autorun.inf as a way of compromising a PC. This file contains information on programs meant to run automatically when removable media (often USB flash drives and similar devices) are accessed by a Windows … More Monthly Threat Report: June 2012
Backup strategy for home users David Harley CITP FBCS CISSP, ESET Senior Research Fellow A shorter version of this article previously appeared in SC Magazine’s Cybercrime Corner. Years ago, when I was a security analyst/administrator at a medical research organization in the UK, one of the units (not one I was personally responsible for, fortunately) … More Monthly Threat Report: September 2011
The Top Ten Threats 1. INF/Autorun Previous Ranking: 1 Percentage Detected: 6.40% This detection label is used to describe a variety of malware using the file autorun.inf as a way of compromising a PC. This file contains information on programs meant to run automatically when removable media (often USB flash drives and similar devices) are … More Monthly Threat Report: August 2011
Among the many different trojans that spread on Facebook, something popped up recently that caught our particular attention. The threat, detected by ESET as Win32/Delf.QCZ, is interesting for several reasons. Distribution First, let’s look at the distribution vector. Win32/Delf.QCZ relies on the old “fake codec/media player trick” and links to the malware-laden site are spread … More CyberThreats Daily: Trust Me, I’m Your Anti-Virus…NOT!
ESET Ireland 