Malicious installers of the Trojan.SMSSend malware family have, until now, targeted Windows users, but researchers from Russian security company Doctor Web have now unearthed a new variant aimed specifically at Mac users.
Joomla and WordPress sites' administrators should consider updating to the latest version of their respective content management system as soon as possible since, according to reports, malware peddlers are bent on compromising them with "some tool that's basically firing a bunch of Joomla and Wordpress exploits at a given server and hoping something hits." The compromised websites are then embedded with an iFrame that first directs users to a traffic distribution system, and then to a page hosting an exploit kit.
Fake UPS delivery notifications hit inboxes with regularity during the entire year, and usually don't need "special effects" to trick users into downloading malware hidden in the attachment.
Researchers from Spanish antivirus vendor Panda Security are warning potential users about information-stealing malware disguised as their Panda Cloud Antivirus solution.
In August, GFI threat researchers identified a number of high-profile fake mobile application scams, along with a spike in email scams targeting UK banking and government organizations.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.