Virus Alerts

Virus Alert information provided by Security I Trust

Cyber Criminals are starting a Skype based campaign aimed at spreading malicious software. We have heard reports of many users reported receiving messages that appear to come from their friends in their Skype contact lists. These messages are part of a a social engineering agains skype user.
 

Read More: http://countermeasures.trendmicro.eu/skype-worm-spreading-fast/

Attackers have infected over 1 million cell phones in China with a malware virus. The virus sends out text messages automatically. When the malware infects the phones, it sends out information about the infected device SIM cards to the attackers. With the SIM information, the hacker can remotely send messages from the infected mobile phones.

The criminal behind this virus appear to be using this as way to make money because the phones are texting premium-rate numbers.

The virus spreads by texting everyone in the user’s phone book. So far it has been estimates that this virus has cost users over €220,000 Euro

 

A zero-day flaw in Adobe Reader. Attacks are spreading through a maliciously crafted PDF file that accompanies email messages. The attacks thus far appear to be targeted, as those who have received the malicious messages "work on common issues."

Affected Systems: Adobe Reader versions 9.3.4 and earlier for Windows, Mac OS X and Unix. Adobe Acrobat is also affected.

Recommendation:
Until a patch is available, users are urged to use caution when opening PDF files.

 

There are reports that a new mass-mailing worm is spreading. The worm spreads through email messages with the subject line "Here you have;" the body of the message includes a link that appears to lead to a PDF file, but instead leads to a malicious executable file. Once the worm has infected the PC it will try to disable security software and then sends itself to everyone in the infected computer's email contact list.

We have been getting different reports about system been scanned on TCP port 23, also from doing some research we have noticed that there is many other sources around the world also reporting a sudden increase in this activity.

This type of activity is normal as a new virus starts it build up before it becomes a global disaster. We have seen similar activity in the past when we predicted other virus out brakes like Sessor before they became public knowledge.  Hacking trends have changes and it has been a long time since we saw a major virus outbreak. There is not enough evidence yet to support the possibility that this is a new virus, and it might turn out to be something going on in the hacking world where  port 23 is been targeted.

TCP Port 23 is normally used by the Telnet protocol