A new wave of malicious FedEx spam delivers Trojans instead of packages, infecting users with malware when opening the attachments. In the last couple months, the Gamarue Trojan has spread intensely in the US, Australia, Croatia, Romania, Iran, the UK, Germany and Spain. “This tracking update has been requested and attached to this email,” the malicious message reads. “Reference information includes: Invoic...

A new variant of the Dorkbot malware infects Facebook users worldwide, spreading from one friend to another through the social network’s internal chat. The Bitdefender Labs have caught and blocked the worm, which is capable of spying on users’ browsing activities and stealing their personal details. The malware family mainly circulates in the US, India, Portugal, the UK, Germany, Turkey and Romania. The inf...

A wave of Russian dating spam drags users to a dangerous website loaded with Javascript malware. The Bitdefender Labs discovered an increasing number of e-mails designed to play on users’ virility to spread to inboxes worldwide. The Russian girls’ messages are straightforward and efficient, prompting users to respond fast to the bait. “Let’s act on our feelings and get to know one another,” one of the infec...

A new Mac OS X Trojan that injects advertisements in browser has been identified by Bitdefender’s Mac OS X researchers. This piece of malware does not attack the operating system, but rather disguises itself as a plugin for watching web videos to lure unwary victims into downloading, executing and installing a number of browser plugins for Safari, Chrome and Firefox. The infection occurs when the user visit...

A Backdoor Agent is circulating with the aim of infecting Automated Clearing House clients via a fake payment receipt attached to notification e-mails, Bitdefender Labs has found. The e-mails are part of a rising wave of spam messages that carry a Trojan meant to grab users’ credit card details. “WIRE transaction is completed. $XXX has been successfully transferred. If the transaction was made by mistake pl...

Clients of Citi Group, the third largest bank holding company in the US, are targeted by scammers who collect passwords and open backdoors for unauthorized remote attackers or download malware on the compromised systems. This attack seems part of a greater campaign conducted by the group behind other two malicious spam messages that in January had Better Business Bureau and DocuSign clients open malicious a...

US authorities have charged three Europeans, including one Russian, for writing and distributing the Gozi malware to steal tens of millions of dollars from bank accounts, according to a press release by prosecutors. Prosecutors say the hackers injected the Gozi malware into a million computers worldwide, including 40,000 in the US and some systems belonging to NASA. The accused Russian national risks a maxi...

The recent “Vodafone” malware campaign targeting Brits went international as several waves of spam loaded with Trojan Gamarue landed in the Dutch region. The Bitdefender Labs expect the MMS campaign to spread to even more countries and languages. Dutch users are at cyber-gunpoint these days as a dangerous dropper infects them with malware capable of mining sensitive details and sending them to a machine con...

Malware writers are again taking advantage of LinkedIn’s popularity and users’ social media engagement after the holidays. With many people back to work and eager to strengthen their professional connections, the malicious campaign comes in really handy for the attackers. The New Year opened with an aggressive spam campaign that infects LinkedIn account holders with Trojans and other malicious software host...

Malware writers are once again counting on the female allure to draw in yearning and unwary men. “Hi baby, please check my facebook profile,” or “I miss you, check my new photo please” are just a few of the lines meant to trick users into clicking on malicious websites. Scammers even use authentic pictures of international models grabbed from their social network accounts. A new spam campaign targeting soci...