malware Archive

WiFi Chips Found in Chinese Appliances Distributing Malware

There is an old saying that what someone does not know won’t hurt them. This statement cannot be any farther from the truth when it comes to certain Chinese appliances found to have hidden WiFi chips that distribute malware onto computers that connect to the broadcasted WiFi network of the particular device.

Chinese appliances and electronics are everyone and in recent shipments of small modified appliances coming out of China are apparently appearing primarily in Russia and other places around the world. Some of these modified appliances, ranging from cell phones to dashboard cameras, were outfitted with a WiFi device that is designed to port malware to connected computers.

It was found that the WiFi-equipped devices broadcast an unsecured WiFi network, much like local coffee shops do. This will enable computer users within 200 meters to locate and connect to the device thinking that it is just another means of free WiFi. In such a case the free WiFi is much more than you bargained for as it will serve up spam and push other malware that may potentially control a victim’s system.

It is possible that these malicious WiFi chips could start sniffing other WiFi traffic for usernames and passwords to infiltrate vulnerable systems to collect potential payment processing data. The possibilities of this new scheme could surmount to other computer security issues.

Just think, the next time you are in a hotel your trusty iron could by spying on your computer and you may not even know it. All you wanted to do is connect to the internet through some Free WiFi, the ultimate bargain – or not.

Popularity: 12%

How to Avoid and Remove Facebook Malware

If you utilize Facebook enough, then you have probably run across some form of Facebook Malware that may infect your computer with a virus, post spam on your wall or post spam on your friends’ walls. You know, those silly posts you may see on your friends Facebook feed saying:

“oh s**t, one more really freaky video O_O
IMF boss Dominique Strauss-Kahn Exclusive Rape Video – Black lady under attack!
[LINK]“

Yea, that is a totally bogus message and is basically a scam to get you to click on the LINK. Don’t do it or you may be sorry.

It is all extremely annoying and there is an easy way to keep it from happening again. Cnet, one of my favorite techie places to visit for tips and tutorials like this, did a video on avoiding and removing Facebook malware. Check it out below and be sure to post your experiences below in the comments area.

Popularity: 13%

How I Was Able to Detect and Remove Antivirus .NET From My Malware Infected PC

antivirus-dot-net-rogueI recently encountered an application called ‘Antivirus .NET’. At first thought I was sure Antivirus .NET was some website message that came from the domain ‘antivirus.net’ but I was completely wrong. Antivirus .NET was nothing other than a fake antivirus program. I found out it was fake from the various program notification messages that it kept displaying. These messages were not going to back-down until I took some action.

Unfortunately, the actions that the Antivirus. NET program wanted me to take were to spend over $60 for a program that offered services that I knew I do not need. How did I know that I do not need Antivirus .NET? Because I have Avast installed on my system and it does all of the anti-virus protection that I need. Furthermore, Avast had detected 2 malicious sites and one virus in the past 3 months for me saving my butt from either loosing personal data or keeping my system from crashing. Who knows what these malware parasites are capable of.

What did I do after discovering I had Antivirus .NET installed on my PC?

I attempted to have Avast scan my system to detect the parasite but for reasons unknown, it did not find it. After that, I started to do a few Google searches on Antivirus .NET and found out for certain it was what some security expert sites call a ‘Rogue Anti-Spyware’ program. These are fake security applications created with the purpose of extorting money as one site explained. Of course it was. Antivirus .NET had me feeling like I needed to just purchase it just to stop the aggravating popups. Has this ever happened to you?

How did I finally remove Antivirus .NET?

This is where things got a little dicey. I attempted to manually remove Antivirus .NET by booting my system into safe mode (pressing F8 at boot sequence) and then located each individual Antivirus .NET file and registry entry. Little did I know there was some additional related registry entries located in my Windows system registry that somehow brought Antivirus .NET back to life upon rebooting my system. I was at wits end in trying to remove this garbage. So I decided to try out the malwarebytes application, suggested by bleepingcomputer, which seemed to have detected some other malware, mainly trojan horse parasites, on my system and removed it with no problem but I was still plagued by Antivirus .NET after my 3rd restart of my PC. I later found another application from enigmasoftware which seemed to have detected Antivirus .NET on the first scan. So I bit the bullet and purchased their software and it simply removed Antivirus .NET from my system only while in safe mode. After the next reboot, Antivirus .NET did not reappear. I could have taken extra steps to finish the manual removal process but why should I if someone else can do it for me? I guess I am just that lazy.

After this experience I have decided to no longer allow my little brother to utilize my computer for his “extra-curricular activities” of searching for adult entertainment. In other words, he somehow encountered malware on adult sites that may have installed Antivirus .NET on my system among other malware parasites.

Popularity: 6%

Trojans, Spyware, Worms, Viruses and other Malware: What is the Difference?

viruses-worms-trojans-spyware-malware-difference-1So you are just like everyone else and you are concerned about protecting your computer from malware parasites but you really do not know what the difference between a virus, Trojan, worm or other malware is.

You are not alone, the majority of computer users to not know what the difference in a virus, worm or Trojan is. Understanding what the difference between malware parasites may help you in avoiding them by selecting the right security application to detect and remove them.

What is Malware?

Malware is a term for malicious-software. Malware is a generalized term to describe different types of parasites such as viruses, worms, spyware and even Trojans. Malware can be anything that is designed to cause harm to your computer but not too specific to call a virus, Trojan or worm.

What are Trojans?

Computer Trojan programs usually appear to be one thing but have secret coding that instructs the computer to do something unexpected. In some cases a Trojan will open up a computer allowing remote access. This may present a case where the infected computer can be controlled remotely and instructed to perform illegal activities over the internet. Trojans can easily be removed with a detection tool provided that the definitions of the tool are up to date.

What are computer Viruses?

A computer virus can be described as a variation of malware but the main difference from any type of malware is viruses are known to copy themselves and be spread from one PC to another relatively easy. Viruses are usually attached to executable files targeting specific areas of your computer such as the master boot record. Viruses are usually created to damage your computer in that it can prevent stuff from running or operating correctly. Viruses can also block an anti-virus application and go undetected for large amounts of time while it wreaks havoc.

What are Worms?

Computer worms are a variation of a Trojan parasite that can ‘slither’ its way onto your computer through a network. The worm parasite gets is name because of its ability to sneak onto your system without notification through a network infecting every computer it is path. Worms also are able to exploit network vulnerabilities or holes within a network allowing outside access.

What is Spyware?

Spyware is a combination of software that is usually installed without notification or permission and clever coding that can either steal personal information or lead you to a source of monetary theft. Spyware is like its name, it is software that basically spies on you. Spyware is sometimes disguised as software designed to detect and remove other spyware but in reality it is a dangerous parasite that uses deceiving methods to trick you out of money. Those types of spyware programs will ask that you purchase a full or licensed version of the application to remove other spyware. This is a common trick for software that we refer to as rogue anti-spyware.

Does it every bother you when people call a malware by the wrong name?

Popularity: 24%

“Most Hilarious Video Ever” Malware Attack on Facebook

I have witnessed about 3 malware attacks on Facebook just in the past two months. The latest one I discovered through several online security and social sources online is called the “Most Hilarious Video Ever” malware attack that uses an enticing video link to trick you into downloading malware.

I found it to be rather interesting that these hackers are using vulgar material to get users to click on a malicious link and download a fake Flash Video Player update (FLV). Hackers know what type of material grabs your attention and what better way than offer some type of video that has flesh or is suppose to be “hilarious”? In this specific case, the FLVPro tool which is essentially a malware file and not a legitimate FLV player application. Not only does this fake Flash Player Video file compromises your Facebook account, it can change lead to phishing that steals personal information thus causing identity theft.

The video below is an excellent demonstration of Facebook’s Malware attack of the “Most Hilarious Video Ever.” It is funny alright, so funny that you might have someone using your identity to clean out your bank account.

The next time that you see such a wall post on Facebook, do yourself a huge favor and delete it at once and change your Facebook password immediately.

Popularity: 9%

1.3 Million Malicious Advertisements Viewed Daily Online

malicious-advertisement-billboardAdvertisements are what drives the internet and pays for those big websites that normally do not sell actual products but offer a free service for your own enjoyment. Over the past few years their has been a new way for hackers to spread malware and harmful parasites onto people’s computers, through malvertising or malicious advertisements.

A research study released by Dasient, an internet security company that helps protect businesses from malware attacks, revealed that about 1.3 million malicious adverts are viewed online in a days time. From their research they uncovered over 720,000 sites that display these malicious advertisements. Mind you these sites are legitimate and not in any way designed to intentionally spread malware. You may ask how and why does a legitimate site display malicious ads? Rather easy.

Malicious advertisements make their way onto legitimate web sites through ad networks. Ad networks accept many companies or organizations to place their ad on their network. Many websites utilize these ad networks trusting that the network delivers a relevant ad to their content and one that is not harmful to their readers in any way. The trick is, hackers are fooling the ad network into believing that their ad-company is legit. Once they are able to trick the ad network, then they are accepted as an advertiser and placed on the network.

This process is not very difficult for hackers as many sites user external partners which are usually javascript widget providers, packages software providers and your basic ad network. It has been said from this research that 97% for Fortune 500 web sites are at a high risk of getting infected with malware due to malicious adverts. That may mean next time you are on the NYTimes website, you could be faced with a malicious ad and not even know it until after you have clicked on it and potentially downloaded malware.

Why target Fortune 500 company websites? Usually high traffic sites such as Fortune 500 companies are targeted due to the massive exposure a malicious ad can get. The hacker finds out who the ad network provider is and then goes after them to get approval for their secretive malicious ads.

What is to be done about this? It is up to the ad networks to place strict guidelines on how each advertiser is approved to be in their network. In addition, ad networks must find new ways to do more quality assurance on the ads that they feed to legitimate websites.

sources: zdnet, Dasient Blog

Popularity: 3%