malware

The Russian security firm Dr. Web has uncovered another malware attempt on OS X systems that tries to exploit users with SMS fraud.

The new malware is a Trojan horse, dubbed "Trojan.SMSSend.3666," and is part of a family of Trojan malware for Windows and other platforms that have affected Windows users for years.

As with all Trojans, these pose as legitimate programs that are made available for download from a number of underground Web sites, with this current one for OS X appearing to be an installer for a program called VKMusic 4, a utility whose … Read more

Facebook helped the FBI take down an international crime ring that used a botnet to infect 11 million computers and steal more than $850 million, one of the largest cybercrime hauls in history.

The FBI announced today that with the social-networking giant's assistance, it had arrested 10 people from countries around the world who it said used the Yahos malware and Butterfly botnet to steal victims' credit card, bank account, and personal information.

"Facebook's security team provided assistance to law enforcement throughout the investigation by helping to identify the root cause, the perpetrators, and those affected by … Read more

Newsflash: Macs do have security vulnerabilities. While people who understand how viruses and malware work have understood this for ages, Mac vulnerabilities became big news as the Flashback malware tore through the Apple community. At its peak, Flashback and its variants had infected an estimated 1 percent of the worldwide Mac population.

This one was a particularly nasty wake-up call known as a drive-by download, as it required only that you go to a Web page to become infected. Apple malware could be unusually lucrative for malware makers because Apple owners have been told implicitly for years that Macs don'… Read more

For nearly a decade, think tanks and government officials in Washington, D.C., have been wrestling with the question of what cyberwar will look like.

In 2012, we learned the answer: Stuxnet, the malware that infected Iran's Natanz plant in a bid to slow the nation's nuclear effort, which was developed by the U.S. and Israel. Security researchers had speculated those governments were the most likely Stuxnet suspects, and a New York Times report in June confirmed it.

Flame, the name given network-sniffing, audio-recording, keystroke-logging malware that infected Iranian oil ministry computers, was discovered in May. At … Read more

The bottom line: Bitdefender Total Security 2013 remains one of the best high-end security suites around. This update gives you a fully isolated Web browser for secure financial transactions.

Review: Bitdefender Total Security 2013 presents a convincing alternative to its better-known competitors. It's a strong program, with all the major tools that users expect, and some additional useful tricks in its arsenal. When it comes to efficacy, Bitdefender isn't the best in every area, but it's definitely competitive.

Editors' note: Portions of this review are based on CNET's review of Bitdefender Total Security 2012.

Installation Bitdefender … Read more

Two years after Trend Micro's big consumer suite overhaul, Titanium continues to improve. This year, there's a big change to which features are available in the different suites to make the suite structure easier to understand.

All "basic" security features have been moved to the entry-level Trend Micro Titanium Antivirus Plus ($39.95 for one computer), while multiple computer and multiple device support, as well as some extra features, are available only in the significantly more expensive Trend Micro Titanium Internet Security ($79.95), Trend Micro Titanium Maximum Security ($89.95), and Trend Micro Titanium Premium … Read more

A new piece of Mac malware has been discovered on a Web site linked to the Dalai Lama, using a well-documented Java exploit to install a Trojan on visitors' computers and steal personal information.

Dubbed "Dockster," the malware was found lurking on Gyalwarinpoche.com, according to security research firm F-Secure. The malware takes advantage of the same vulnerability exploited by the "Flashback" malware to install a basic backdoor that allows the attacker to download files and log keystrokes.

(For more technical information about how the malware operates, see this report by my colleague Topher Kessler.)

Although &… Read more

Security company Intego is reporting the discovery of a new malware package for OS X. The package is a Trojan horse called OSX/Dockster.A, that appears to have keylogging features to record what is being typed on an infected system in addition to remote-access features for backdoor access into the system. When installed, the Trojan attempts to contact the server "itsec.eicp.net," likely to receive instructions for allowing remote access to the system.

As with other recent malware for OS X, Dockster is a Java-based threat that will not run unless you have Java installed on … Read more

Updated Monday, December 3, 2012, at 11:45 a.m. PDT with comment from Microsoft.

Updated Friday, November 30, 2012, at 1:00 p.m. PDT with comment from AV-Test.org.

In a month of uneven Windows 8 news and reviews, Microsoft is taking another hit. This time, its freeware Security Essentials finds itself in the crosshairs.

Independent German security suite evaluators AV-Test.org publish bimonthly tests that rate the effectiveness of the biggest Windows security suites out there, and the recently published results showed that MSE failed to earn certification on the most recent test. MSE was the only … Read more