25 Jun Virus News: Russian hackers investigate new vulnerabilities
Kaspersky Lab, a leading information security software developer, announces a new case of mass infection, caused by a combination of malware and unsanctioned access to computer systems. Web servers running Microsoft Internet Explorer (ISS) 5 are affected, and individual computers will become victims when the user views an infected site using Internet Explorer.An unusual method is used to infect victim machines. Web servers are compromised using a JavaScript Trojan, Trojan.JS.Scob.a. It is not yet clear whether the servers have been compromised via a new vulnerability, or an already documented one.When Internet Explorer is used to view a site on an infected server, the Trojan will take control of the victim machine, and redirect the browser to a site containing a PHP script. This is done using an unknown vulnerability in Internet Explorer. A version of Backdoor.Padodor (.w, .x, .y, or .z) will then be installed on the victim machine. This spy program enables full remote control over victim machines.Most versions of Padobor contain the line 'Coded by HangUp Team' or 'Coded by HT', leaving no doubt as to the author's identity. The use of Padodor in the current attack makes it likely that the attack was initiated by the HangUp Team,
14 Jun Virus News: Viruses move to mobile phones
Kaspersky Labs detects Cabir, the first network worm for mobile phones
03 Jun Virus News: The rebirth of Mydoom - new worm uses Mydoom code to create a blended threat
Kaspersky Labs users directly threatened by new worm
02 Jun Virus News: Virus Top Twenty for May 2004
Kaspersky Lab presents the Top Twenty for May 2004

America:

Western Europe:

Eastern Europe:

Middle East & Africa

Asia & Pacific

Malware

Russian hackers investigate new vulnerabilities

Viruses move to mobile phones

The rebirth of Mydoom - new worm uses Mydoom code to create a blended threat

Virus Top Twenty for May 2004