Similarly, malware proponents also continue to find new techniques to proliferate their malicious creations despite workarounds that users employ to prevent them from automatically running on their systems. One way by which this is done is through the use of autorun.inf’s Action Key.

Action Key is one of the parameters in autorun.inf, which is only supported in removable and fixed drives. Its main purpose is to specify the text that appears in the AutoPlay dialog for the handler representing the program specified in the open or shellexecute entry in the media’s autorun.inf file.

A new spam campaign has been discovered spoofing job-application-related emails. While most spammed messages have been known to take advantage of a specific occasion, a holiday, or even a currently newsworthy item, spammers have hit a new low with this scheme.
 

 

“Liking” a fan page or a group on just about every page you stumble on Facebook may backfire someday and you’ll wish you hadn’t “liked” it at all.

TrendLabs^SM engineers found a dubious Facebook page that uses JavaScript code to spam everyone in a user’s Friends list.

The page called “10 lies girls ALWAYS tell guys! funny!” is a classic example of how Facebook pages can use JavaScript to spam users who are curious enough to hit the “Click here” button to view its contents. However, in order find this out, one must follow the instructions displayed. It asks users to hit Ctrl + C to copy the JavaScript and Alt + D to select the address bar. The succeeding steps from the prompt then run the JavaScript.

 

A Twitter bot builder is currently being freely distributed on the Internet with the capability to attack users’ systems and to have some fun at the same time. It may, however, act as a threat when an attacker uses the tool to start a distributed denial-of-service attack (DDoS) on critical systems and to download malicious files.