Threat Research

It’s what we do.

If You’ve Got Game, Phishers Want Your Stuff

June 12, 2009By Andrew Brandt

Since the beginning of the year, my colleagues in the Threat Research group and I have been researching an absolutely astonishing volume of phishing Trojans designed solely to steal what videogame players value…read more

May Threat Trend: Misleading Malware

June 9, 2009By Andrew Brandt

The latest data from our customers indicate that, at least in the month of May, we were blocking and removing some of the nastiest threats on the Web. Among the spies we took…read more

Adware client tags you as its pitchman

May 21, 2009By Andrew Brandt

Over the past week, someone has been spamming the file sharing site with comments advertising a new “product” called BittorrentBooster. According to the site’s administrators, the spammer used a large number of…read more

Old Chinese Hack Tool Used for New Tricks

May 14, 2009By Andrew Brandt

This week’s installment of what’s-old-is-new-again in the world of malware comes from one of the many groups making and distributing phishing Trojans in China. Earlier this year, someone discovered a hacktool called ZXArps, and…read more

April 2009 wrapup: Thumbdrives under threat

May 1, 2009By Andrew Brandt

We’ve just tallied the top 10 threats Webroot’s consumer products detected during the month of April, and some interesting trends appear to be shaping up. Conficker aside, the first quarter of 2009 seemed to…read more

Botnet malware targets MyYearbook

May 1, 2009By Andrew Brandt

The team here at Webroot has picked up on a Trojan that appears to target a relatively new social networking site: The site caters to the high-school-age crowd with activities that include various kinds…read more

Phishing Trojan Targets Russian Finance Websites

April 13, 2009By Andrew Brandt

For a long time, we’ve heard about phishing attacks originating in Russia or eastern Europe that target western banks. There’s nothing surprising there. Latter-day Willie Suttons typically target big US or European banks because,…read more

Inane Shenanigans with Worm-Shiv

April 8, 2009By Andrew Brandt

It’s been a long time since I’ve worked on a malware file as singularly obnoxious as Worm-Shiv, a new worm we defined a few weeks ago. There isn’t anything especially technically avant-garde or…read more