Emsisoft Lab [Sep, 10, 2013]

CryptoLocker – a new ransomware variant

Over the past few days Emsisoft’s malware research team has received numerous reports of a new file encrypting ransomware strain. This new family of ransomware is commonly referred to as CryptoLocker or Trojan:Win32/Crilock.A. Like all file encrypting ransomware (also known as crypto malware) the goal of the attacker is to encrypt important files on the […]

Emsisoft Lab [Apr, 25, 2013]

New Skype scam uses chat bots: Fake webcam girls want your credit card information

Have you ever received a contact request on Skype from someone you don’t know? This may happen from time to time, particularly if your Skype name is publically searchable. But what is really behind these contact requests and why do people bother? To find that out we played along and the following conversation ensued: At […]

Emsisoft Lab [Mar, 15, 2013]

Security advice: Be careful when using Java

Java is installed on almost all computers. This is an obvious security risk, considering that there are regular announcements on new Java vulnerabilities that enable hackers to infect your PC with malware. However, most users don’t even need Java and can safely uninstall it without losing needed functionality. Keep reading to learn all you need […]

Alerts & Outbreaks, Security Knowledge [Jan, 25, 2013]

Ransomware – The no. 1 threat for 2013

  “Your computer is blocked!” – Not something you enjoy seeing when using it. Unfortunately thousands of PC users worldwide find themselves in a situation where, all of a sudden their computer is unusable unless they pay a fee to unlock it. The FBI or a similar national law enforcement organization seems to claim that […]

Emsisoft Lab [Jan, 21, 2013]

LINKEDIN – connecting to… ZeuS?

Last week, a new zero-day Java vulnerability created quite a buzz on the Internet. To illustrate just how effectively this vulnerability is exploited, lets have a look at an email our research lab received, supposedly from LinkedIn. Below you can see the email as we received it. It looks harmless enough and appears to be […]

Security Knowledge [Nov, 26, 2012]

Buzz word: “cloud anti-virus” – what is it all about?

“Cloud” is definitely one of the IT sector’s most popular marketing words of recent years. The virtual clouds promise you easy and mobile access to data and services. The anti-virus sector has also come to use this technology. Fast scans and very low resource usage are clear advantages of cloud-based scanners. But, as usual, there […]

Emsisoft Lab [Oct, 2, 2010]

New age of Social (Network+Engineer)ing

Social Networking has really taken off in the last couple of years, and websites related to the same are experiencing big time hits all around the world. Facebook, Twitter, Orkut, and then there is Vkontakte (Vk.com for English speaking users), each having millions of users registered and thus huge targets for malware authors. The more […]

Emsisoft Lab [Sep, 15, 2010]

Here You Have. – An analysis

In the security and malware research space, every now and then there comes something which suddenly becomes widespread and raises eyebrows all around. The latest “Here You have” related worm is one such incident and we thought to share with end-users our findings and also make them aware of its capabilities and technicalities. Emsisoft Anti-Malware […]

Emsisoft Lab [Aug, 9, 2010]

antivirus2010, userinit and then some more

There is a new rogue variant making rounds going by the name Antivirus2010. The malware copies itself to the System32 directory with a name similar to commonly used Windows file present in same directory. If looked through naked eye, there seems to exist two userinit.exe though one has a unique icon and the other doesn’t. […]

Alerts & Outbreaks, Emsisoft Lab [Aug, 1, 2010]

Fake Facebook worm spreading through Yahoo, IRC

In between email spams, twitter, facebook let us not forget one of the most prevalent medium a malware can spread around. Messengers have always been a popular medium for malware propagation and we at Emsisoft Labs recently came across worm like behavior attempting to spread through Yahoo! Messenger. The initial picture is not too unfamiliar […]