Security News? Just a few clicks away

Monthly Archives: April 2010

Closer Look on a PDF Exploit

As there are attacks on vulnerabilities in the most popular PDF Reader from Adobe, we regularly inspect the samples closer in our Avira VirusLab. This time we looked at an older exploit which Avira antimalware solutions detect as EXP/Pdfka.bmq. The … Continue reading

Botnets evolving: Spy Eye vs Zeus

During our research we found a new construction kit which produces trojans for the Spy Eye botnet. Due to the lack of many controls it is very easy to use – just like the ZeuS construction kit a few months … Continue reading

Twitter Phishing (on first sight)

Over the weekend our spam traps received a massive wave of emails looking like the one below: The emails seem to stem from “Twitter Support” ( and are addressed each to exactly one unique email address. The link in the … Continue reading

Phishing, Spam and Malware Statistics for March 2010

We’re trying a new format of our statistics. Putting them into one article should enhance the usability. Most phished brands Paypal is still the most phished brand – it is easy to use and just with login credentials it is … Continue reading

Please give me your username and password

Yesterday evening our spamtraps started receiving the email below in a mass mailing action. The email was immediately flagged as spam even before reaching our spamtraps. No wonder since it has no To:-field, it has a different Reply-to:- than the … Continue reading

Busy Patchday

This April Patch Tuesday produces some workload for administrators – and also users should install the offered updates as soon as possible. As announced, Microsoft released 11 security bulletins. The patches close plenty security vulnerabilities, some of them critical. Interesting … Continue reading

Plenty of Updates on Patch Tuesday

Many patches are announced for tomorrow: The Redmond company expects to release 11 security bulletins. Of those 5 are rated critical, 5 important and 1 moderate. The patches belonging to the bulletins will close 25 security vulnerabilities in Windows, Exchange … Continue reading