Strange “ransomware” title pushes surveys, knows Close Encounters tune

A popup box displayed on computers infected by Shadowlock.

If your PC's CD tray opens and you hear the iconic, five-note tune from the movie Close Encounters of the Third Kind, it's probably not a visit from aliens. Chances are it's a newly discovered piece of malware with some highly unusual characteristics.

Trojan.Shadowlock belongs to a category of malicious software known as ransomware, which typically locks down data and resources until the victim pays a hefty fee. But in this case, according to Symantec researchers, the malware demands the user of the disabled computer complete an online survey.

Shadowlock isn't as nasty as other ransomware samples that threaten criminal prosecutions based on trumped up charges and then extort fees that can be in the hundreds of dollars. That's because this latest threat, which was created with Microsoft's .Net developer tool, can be easily bypassed. Still, it contains several dormant functions that could be invoked in future versions. The ability to kill Chrome, Internet Explorer, and other browsers is one capability. Eating up disk space and disabling the Windows firewall is another.

Read 1 remaining paragraphs | Comments

    


Google Releases Google Chrome 28.0.1500.71

Original release date: July 10, 2013

Google has released Google Chrome 28.0.1500.71 for Windows, Macintosh, and Chrome Frame platforms to address multiple vulnerabilities.  These vulnerabilities could allow a remote attacker to execute arbitrary code, bypass intended restrictions, obtain sensitive information or cause a denial-of-service condition.

US-CERT encourages users and administrators to review the Google Chrome Release blog entry and follow best practice security policies to determine which updates should be applied.


This product is provided subject to this Notification and this Privacy & Use policy.


Security Hotfixes Available for Adobe ColdFusion

Original release date: July 10, 2013

Adobe has released a security hotfix for ColdFusion 10 for Windows, Macintosh and Linux to address a vulnerability that could allow an attacker to cause an elevation of privilege condition.

A security hotfix for Adobe ColdFusion 9.0, 9.0.1, and 9.0.2 on JRun is available to address a vulnerability that could allow an attacker to cause a denial-of-service condition.

US-CERT recommends that users and administrators review Adobe Security Bulletin APSB13-19 and follow best practice security policies to determine which updates should be applied.


This product is provided subject to this Notification and this Privacy & Use policy.