Search

Different variants of fake Paypal notice emails were found in recent circulation. The contents of the email included the recipient’s name, PayPal ID, payment amounts, as well as the malicious link. The link ...

This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users.

This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It may...

This Trojan Spy arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

This Trojan Spy arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to certain websites to send and receive information.

This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to certain websites to send and receive information.

TEQUILA is bot malware which made headlines after targeting Mexico's financial institutions in 2010. The botnet particularly targeted the country's local Paypal site and the country's largest bank, Bancomer . This malware connects to a C&C server in ...

This spyware arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It attempts to steal sensitive online banking information, such as user names and passwords. This routine...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DHCP Client 1009116* - DHCP Client Script Code Execution Vulnerability (CVE-2018-1111) - 1 DHCP Client - Incoming 1009114* - DHCP Client Script Code Ex...

This worm arrives via removable drives. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes the downloaded files. As a result, malicious routines of the do...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DNS Server 1009474 - PowerDNS Recursor Out Of Bounds Read Denial Of Service Vulnerability (CVE-2018-16855) IBM WebSphere Application Server 1009803* - ...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Ivanti Endpoint Manager 1012253* - Ivanti Endpoint Manager SQL Injection Vulnerabilities (CVE-2024-32848 and CVE-2024-13162) 1012346 - Ivanti Endpoint...

This worm arrives via removable drives. It executes commands from a remote malicious user, effectively compromising the affected system.

* indicates a new version of an existing rule Deep Packet Inspection Rules: Web Application Common 1011171* - Apache HTTP Server Directory Traversal Vulnerability (CVE-2021-41773 and CVE-2021-42013) Web Application PHP Based...

This worm arrives via removable drives. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes commands from a remote malicious user, effectively compromising...

This worm arrives via removable drives. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes commands from a remote malicious user, effectively compromising...

This worm arrives via removable drives. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes commands from a remote malicious user, effectively compromising...

This worm arrives via removable drives. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It is injected into all running processes to remain memory resident. It dro...

This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It does not have any propagation routine. It does not have any backdoor routine....

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It deletes itself after execution.