ESET Threat Blog

There is some pretty interesting content in ESET's Threat Report for July:

Urban Schrott talks about ESET Ireland's recent research into the ways in which people can recklessly aid and abet malware in compromising their own systems, by ignoring or bypassing AV protection.
David Harley (oh, that would be me…) summarizes some of the recent research coming … Read More…

[This is a free translation of a blog by my colleague at ESET Latin America, Sebastián Bortnik. As ever, mistakes in translation and interpretation are down to me. Would this be a bad time to mention the AVIEN Malware Defense Guide for the Enterprise? DH]
Considering security in the enterprise is no easy task: … Read More…

The death of Osama bin Laden has gone viral, with blogs, social media and search engines pumping terabytes of rumor, innuendo and conspiracy theories at the speed of light, along with the occasional kilobyte of truth.  As the number of people searching for pictures and videos of bin Laden’s execution has skyrocketed, the criminal syndicates … Read More…

[NOTE:  As we were publishing this articl, our Latin American office discovered another Black Hat SEO campaign incorporating promises of Osama bin Laden videos on Facebook.  Click here to view their article in Spanish. We will follow up on this shortly.  AG]
The malware phenomenon started by the announcement of Osama Bin Laden’s death continues unabated, … Read More…

 Some of you may not be too surprised that I'm not always comfortable with the sort of crystal ball gazing that everyone seems to want at this time of year. It's not coincidental that I often quote Daniel Delbert McCracken's advice “Don’t make predictions about computing that can be checked in your lifetime.” (A tip of … Read More…

Here's a translation of another interesting blog from my colleague Jorge Mieres at ESET Latin America (the original is in Spanish). Apologies in advance for any errors in interpreting and interpretation, and if you find the sub-headers flippant, that's my fault too.
Jorge told me about it (the blog, not my tendency to flippancy) several days … Read More…

Jorge Mieres posted this blog on the ESET Latin America web site at http://blogs.eset-la.com/laboratorio/2010/06/08/sitio-gobierno-ecuatoriano-comprometido-ataque/ today. Errors in interpretation and translation are, as usual, mine. Over to Jorge….
Criminal activity that exploits web sites is commonplace these days; nevertheless, when the affected Web site belongs to a governmental organization, the event takes on more relevance and impact, and … Read More…

[Update: Alex Matrosov has posted screenshots of the Twebot update at http://twitpic.com/1ousmx and http://twitpic.com/1ouse5.]
Juraj Malcho, the Head of our Lab in Bratislava, reports that there have been further developments regarding the tool for creating Twitter-controlled bots described by Jorge Mieres and Sebastián Bortnik, Security Analysts at ESET Latin America, in an earlier blog at http://www.eset.com/blog/2010/05/14/botnet-for-twits-applications-for-dummies.
As more … Read More…

Our colleagues in ESET Latin America have just blogged about an interesting botnet creation tool: the original blog is at http://blogs.eset-la.com/laboratorio/2010/05/14/botnet-a-traves-twitter/, by Jorge Mieres and Sebastián Bortnik, Security Analysts. (Mistakes in interpretation are, as usual, down to me!)
In the last years we have seen many security incidents driven by botnets and exploiting the technologies currently … Read More…

We're now seeing a fiercely concentrated Blackhat SEO campaigns exploiting the McAfee False Positive (FP) problem.

Juraj Malcho, our Head of Lab in Bratislava, reports that in a Google search like the one I've screendumped above, he got three malicious hits in the top ten (the same ones captured here: of course, the malicious domain names … Read More…