Other Blogs

McAfee Labs

Multiplatform Fake AV Uses Different GUIs

Since the beginning of October we have seen a variant of fake antivirus malware that belongs to the FakeRean family of rogue security products. FakeRean is distributed by drive-by downloads or is dropped and executed by another malware. It blocks victims from accessing any other legitimate application on an infected ...

Mobile and IoT Security McAfee Labs

Android Phones Vulnerable to Loss of Data, Apps

Recently security researcher Ravi Borgaonkar discussed a vulnerability that caused a Samsung Galaxy SIII to return to a factory reset just by visiting a special website. Mobile phones have a number of useful codes (USSD/MMI) that can be typed on the dialer screen to bring up system information (IMEI, firmware ...

McAfee Labs

‘FakeInstaller’ Leads the Attack on Android Phones

Android.FakeInstaller is a widespread mobile malware family. It has spoofed the Olympic Games Results App, Skype, Flash Player, Opera and many other top applications. This is not news in the mobile malware world, the FakeInstaller family is one of the most prevalent malware that we have analyzed. More than 60 ...

McAfee Labs

NGRBot Spreads Via Chat

NGRBot is a worm that propagates through chat messengers, the Internet Relay Chat channel, social networking sites etc. It steals FTP and browser passwords and can cause a denial of service by flooding. NGRBots use the IRC network for file transfer, sending and receiving commands between zombie network machines and ...

McAfee Labs

‘Police Ransomware’ Preys on Guilty Consciences

“Police ransomware” is big business, generating millions of euros for organized criminal groups. In May, at Europol’s headquarters in The Hague, police officers from 14 EU member states affected by this threat met with representatives from Europol, Eurojust, Interpol, and industry. Police ransomware, as explained on the Europol website, typically ...

McAfee Labs

Facebook Bot Spreads Through Chat Messengers [Updated]

Update from Facebook: The Facebook security team been actively tracking this botnet and providing McAfee AV to the victims (via Scan and Repair) The sample covered is out of date, and the malware now works differently Any users infected with this malware should be pointed to the McAfee self-checkpoint on.fb.me/InfectedMcA ...

McAfee Labs

AutoIt and Malware: What’s the Connection?

During the last couple of weeks I’ve come across three malware samples packed using compiled AutoIt scripts, so I decided to explore the connection between AutoIt and the malware world. I took the latest 50 samples marked as AutoIt that were submitted to the free scanning site VirusTotal. Here are the ...

Consumer McAfee Labs

LilyJade Version 2.0: a Malicious Browser Extension

In order to gain popularity and usability, web browsers offer extra features. Chief among these are browser plug-ins, which can help to attract a greater audience. These extensions are used by a browser to extend its functionality. Almost all popular browsers support these extensions, which have become one of the ...

McAfee Labs

Combating Malware and Advanced Persistent Threats

In the past decade, the security industry has seen a constant rise in the volume of malware and attacks associated with them. Malware are constantly evolving to become more complex and sophisticated. For example, Unique malware samples broke the 75 million mark in 2011 – Network World 500 malware networks ...

McAfee Labs

Operation High Roller Raises Financial Fraud Stakes

Earlier today Guardian Analytics and McAfee released the joint report “Dissecting Operation High Roller,” which describes a new breed of sophisticated fraud attacks. The advanced methods discovered in Operation High Roller show fraudsters moving toward cloud-based servers with multifaceted automation in a global fraud campaign. Building on established Zeus and ...

Subscribe to McAfee Securing Tomorrow Blogs