The Mobile Antivirus Researchers Association claims to have detected the first worm that can jump from a PC to a Windows Mobile-powered wireless device. The ‘Crossover’ worm nests itself in a directory on a Windows PC where it will automatically activate once the user connects a Windows Mobile device using Microsoft ActiveSync. The digital pest

A new variant of W32/Feebs is making the rounds. Fellow handler Bojan has spent quite some time with de-obfuscating the JavaScript and VB code, and we’re still looking at what it does besides downloading base64 encoded versions of W32/Feebs. You might want to block access to *.coconia.net *.by.ru *.kazan.bz *.t35.com *.freecoolsite.com *.nm.ru until the AV

The destructive deadline of the Nyxem.E worm is based on the clock of the infected machine. So if you’re infected and your clock is not set right, things could start to happen at any time – even though the official activation time is the 3rd of the month. F secure have already received first reports

Kaspersky Lab intercepted a new variant of GPCode, Virus.Win32.GPCode.ac. This program, like its predecessors, encrypts users’ files. The author of the program demands payment for decrypting the files. The new variant of GPCode was widely spammed throughout the Russian segement of the Internet. In spite of our warnings not to open attachments to email if

F-secure has information on a fairly aggressive new email virus. Their name for it is VB.bi although it’s aliases are…. W32.Blackmal.E@mm, WORM_GREW.A, W32/Nyxem-D, Email-Worm.Win32.VB.bi depending on which AV vendor you check with. It’s a worm as well, in that it tries to spread through remote shares. It attempts to disable antivirus software as well. Here