F-Secure vulnerable to virus .jar

None of the 105 sample sent to the Portal SAS had the vaccine available for virus in .jar

In Brazil we received a flood of e-mails with these malicious codes, it is necessary that the F-Secure urgent review this case because we are vulnerable to this type of attack.

You can have more information on the link:

https://securelist.com/blog/research/74051/first-step-in-cross-platform-trojan-bankers-from-brazil-done/

Already opened the ticket XXXXXX for this ticket is analyzed

EDIT: REMOVED PII

Find more posts tagged with

Comments

etomcat

Hello,

Nowadays, F-Secure doesn't work by vaccine (signature detection like the Aquarius engine). That is already an old technology.

F-Secure uses Deepguard, which is a module that blocks malicious system modification and data access. There should be no need for specific updates for that kind of detection technology to stop new malware.

BR: Tamas Feher, Hungary.

gancal

Hi Everson,

Thank you for bringing this to our attention!

Our analyst have received your submission and are currently working on analyzing the submitted samples. We will keep you updated with the progress through the Support ticket you have created.

Thank you for your patience in resolving this case. Please do not hesitate to reply here or through the Support ticket email if you would like to provide us with additional information.

Have a nice day!