drive-by downloads

Android malware now spreading through hacked Web sites

Android users are now facing another malware twist.

A new Android Trojan dubbed "NotCompatible" is being spread through compromised Web sites. Though the threat seems to be minimal at this point, security provider Lookout says this is the first time hacked Web sites are being used to target mobile devices.

Further, Lookout believes the new malware could be used to break into private networks via an infected Android device.

The Trojan works by automatically downloading an application from a compromised site through the Web browser, a process known as a "drive-by download." The mobile device then … Read more

Two free programs help prevent drive-by downloads

As Elinor Mills reported in her Insecurity Complex blog, malicious code was added to a widget on the site of Web-hosting firm Network Solutions. The widget was also placed on sites "under construction" that Network Solutions hosts.

The widget has been removed, but Wayne Huang, co-founder and chief technology officer at security firm Armorize, claims in an August 14 blog post that more than a half million of these parked domains are infected. Network Solutions says this figure is "inaccurate" but hasn't yet estimated the impact of the infection.

Regardless of the final … Read more

Firms tackle virus-laden Web sites, ads

Taiwan-based Armorize knows something about keeping malware off Web sites.

Four years ago, Wayne Huang left his job researching ways to help secure the Taiwanese government's networks from attacks. He and his brother, Matt Huang, a Stanford MBA graduate, decided to commercialize the research and launched Armorize, which became an anti-malware leader in Asia.

Now the company is taking its malware expertise to the United States. This week, Armorize announced it is moving its headquarters to San Francisco while keeping most of its research and development in Taipei. Armorize also is announcing a new version of its cloud-based service … Read more