Video Screencast Help
Search Video Help Close Back
to help
New in the Rewards Catalog: Vouchers for "Symantec Technical Specialist" and "Symantec Certified Specialist" exams.

Security Response

Showing posts tagged with Emerging Threats remove filter
Bitcoin ボットネットマイニング
Peter Coogan | 17 Jun 2011 | 0 comments

Bitcoin(BTC)として知られているデジタル通貨が、不正な目的で使用されたことから最近メディアを賑わせています。読者のみなさんのなかにも、デジタル通貨に詳しい、あるいはオンラインショッピングで何らかの形のデジタル通貨を使ったことがある方もいることでしょう。なかには、e-gold のようなデジタル通貨の失敗例を覚えている人もいるかもしれません。e-gold は、マネーロンダリング規制について 4 件の違反があるとして運営者が 2007 年に米当局によって起訴され、運営が停止されたデジタル通貨です。Bitcoin の登場によって、中央に規制当局のないまま、またしても何百万ドルというデジタル通貨市場が出現したことになります(Bitcoin の詳しい説明は、Wikipedia をご覧ください)。

Bitcoin 通貨のセールスポイントのひとつは、コンピュータさえあれば誰でも、コンピュータの計算能力とオープンソースの Bitcoin ソフトウェアを使って、難解な暗号による Proof-Of-Work の問題を解くことによって、Bitcoin ブロックを稼ぐことができるということです。これを Bitcoin マイニングといい、ブロックの解読に成功すると、1 ブロック当たり最大 50 枚の Bitcoin を獲得できます。2011 年 6 月の時点で、Bitcoin は 650 万枚しか存在せず、...

Read more
Bitcoin Botnet Mining
Peter Coogan | 16 Jun 2011 | 0 comments

A digital currency known as Bitcoin (BTC) has been causing a bit of a media stir of late due to its use for illicit purposes. Some readers of this blog will be familiar with and have used a digital currency of some form in the past to purchase goods online. Some may even remember failed digital currencies such as e-gold, which had operations suspended by US authorities after its proprietors were indicted on four counts of violating money laundering regulations back in 2007. With Bitcoin, we now have another multi-million dollar digital currency market without any central authority for regulation. (An in-depth explanation of Bitcoins is available on Wikipedia.)

...
Read more
Evolution of SEO Poisoning
Andrea Lelli | 01 Sep 2010 | 0 comments

In previous blogs we have discussed how malware can exploit a search engine’s indexing features in order to spread malicious content. Recently we have observed a massive compromise of websites under the .ch and .nl top-level domains, aimed at performing a massive search engine optimization (SEO) attack to spread fake antivirus applications.

To keep track of pages on the Internet, search engines use automated web scanners, called crawlers or spiders. Their purpose is to find every possible Web page on the net, read its content, and then index it for future user searches. Attackers often try to exploit this feature in order to trick a search engine into associating a malicious Web page with very common...

Read more
進化する SEO ポイズニング
Andrea Lelli | 31 Aug 2010 | 0 comments

以前のブログ記事で、検索エンジンのインデックス処理機能を悪用して悪質なコンテンツを拡散しようとするマルウェアを取り上げました。最近になってシマンテックは、.ch と .nl の最上位ドメインで多数の Web サイトの危殆化を確認しています。これは、大規模な SEO(検索エンジン最適化)攻撃をしかけ、偽ウイルス対策アプリケーションを広めることを目的としたものです。

インターネット上のページを追跡するために、検索エンジンはクローラまたはスパイダと呼ばれる自動の Web スキャン機能を利用しています。その目的は、ネット上に存在するあらゆる Web ページを可能な限り検出してコンテンツを読み取り、検索用のインデックスを作成することです。攻撃者がこの機能を悪用して検索エンジンを欺き、よく検索される語句に悪質な Web ページを関連付けようとすることがよくあります。この攻撃が成功すると、検索エンジンの検索結果に悪質な Web ページが表示されるため、ユーザーがそのページにアクセスする危険性が高くなります。

この攻撃について詳しくは、以下のデモビデオをご覧ください。

...
Read more
警戒を要する 2010 年のセキュリティトレンド: 今年上半期の状況チェック
Vincent Weafer | 31 Aug 2010 | 0 comments

2009 年年末近くなった頃、シマンテックは今後を検討し、オンラインセキュリティのトレンドについて 2010 年の動向をいくつか予測しました。今年上半期の状況をチェックし、現時点でシマンテックの予測がどの程度まで当たっているかを確認しました。

ここでは、シマンテックのトレンド予測が現在どうなっていると考えられるか要点を示します。各項目を評価して、それぞれ「進行中」、「ほぼ進行中」、「引き続き要警戒」、「おそらく 2011 年」のいずれかに分類しました。

この画像よりもさらに詳細が記載された、インタラクティブなページを表示するには、ここ (英語) をクリックしてください。ページを移動してから各予測をクリックすると、該当する項目の上半期の状況について詳細をお読みいただけます。

 

Read more
Security Trends to Watch in 2010: A Mid-Year Status Check
Vincent Weafer | 27 Jul 2010 | 0 comments

As 2009 came to a close, we at Symantec looked into our crystal ball and made a few predictions regarding what online security trends we expected to see in 2010. Now that we’re halfway through the year, we’re taking a look back and evaluating ourselves based on how our forecasts are panning out thus far.

Here’s a brief recap of how we think our trend predictions are fairing. We’ve rated each of them as either “on track,” “mostly on track,” “still possible,” or “more likely next year.”

To view an interactive version of this graphic that provides more detail, please click here. Once you do, you can click on each of our predictions and the corresponding mid-year statuses to read more.

...
Read more
What Would Someone do With a Phony Facebook Account?
Kevin Haley | 14 May 2010 | 0 comments

Last week I wrote about The Ghosts of Facebook; Facebook accounts whose owner didn’t appear to be a real person (in this case someone named Chong Loris). I got quite a bit of reaction to the blog. Some people registered with real concerns. Others wondered what the fuss was all about. In other words, was I truly shocked that some people are not who they say they are on Facebook?

I must admit I felt a little bit like Claude Rains in Casablanca. At one point in the classic Humphrey Bogart movie he shuts down Rick’s Café, saying he is “Shocked, shocked to find that gambling is going on at this establishment.” At that moment he is interrupted by an employee and given his winnings from the roulette table.

So no, I’m not shocked about phony Facebook accounts. And there are a few scenarios where it’s not a big deal. Certainly a violation of Facebook policy, but not...

Read more
A Brief Look at Zeus/Zbot 2.0
Karthik Selvaraj | 03 May 2010 | 0 comments

Zeus/Zbot is one of the most widely known Internet threats today. It’s been around since 2007 and has evolved over time, and is still in a constant state of being developed into a stronger, more prolific Trojan.
 
A few weeks ago we came across a variant of Zbot representing the fact that it has undergone code refactoring and some functional changes in the Trojan's infection technique and behavior. The variant is now known as version 2.0 (named after the Trojan builder kit version).
 
In overview, for the common PC user, new changes mean that:
 

  • Your PC could have multiple infections of Zbot, thereby sending your personal information to multiple Zbot controllers.
  • Zbot is aiming for information from different browsers, including Firefox.
  • Zbot is expanding its ability to run in newer operating systems such as Windows 7.
  • Zbot is in constant development, so it might be around for...
Read more
There is a Lot of Spam Out There...
Dermot Harnett | 09 Apr 2010 | 0 comments

...and some of it masquerades as “marketing” and “newsletter” emails.

In March 2010, spam continued to account for a high percentage of all email traffic, peaking at 93.6% of all messages. The majority of this spam email was sent using certain tactics that were deployed to hijack unsecured computers and hide the senders’ identity. Recently, however, there has been an uptick in spam “marketing” and “newsletter” emails. These spam marketing and newsletter emails share one significant commonality with “regular” spam emails, which is that they are unwanted email messages sent to individuals who have no formal relationship with the message sender.

The distinction between the spam marketing and newsletter email and regular spam email includes the following:

•    The sender of the spam marketing and newsletter email may not go to extraordinary...

Read more
Mobile Game Bundled with Malware
Symantec Security Response | 09 Apr 2010 | 0 comments

We have discovered a threat affecting the Windows Mobile platform that dials several high-cost international phone numbers. The threat is bundled within a .cab installation file that contains a legitimate game called “3D Anti-terrorist action” and a malicious dialer that we call Trojan.Terred.
 

While there is no smoking gun, we don’t believe that the makers of the game are bundling the threat, but rather one of the distributors. The threat itself is a binary created with the .Net Compact Framework and therefore requires this specific framework for it to be installed. The threat will therefore not run on any device that does not have the framework installed; however, the game will install without any problems either way.
 
...

Read more

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
258,911