Backdoor Tidserv uses a Google developed platform

Symantec Corporation gives details about the complex threat activity Tidserv, which uses rootkit functionality, so that it is extremely difficult to detect. For the operation of malware essential medium Chromium Embedded Framework, so it is further pumped to the infected computer about 50 MB.

Tidserv (or TDL) - this is a complex threat that disguises itself in the system using rootkit technologies. Being discovered in 2008, it remains active to this day. Distributed across the web version Tidserv worked in its software platform Chromium Embedded Framework (CEF). Although this is not the first time that crackers use legitimate software for their own purposes, in this case for the correct operation of the virus is required to retrieve all components of the environment with total size of 50 MB, which is quite unusual for malware.

New Zero-day vulnerabilities in Adobe PDF

Symantec Corp. has detected an Internet activity, operating new zero-day vulnerability (CVE-2013-0640, CVE-2013-0641) in products Adobe Reader and Adobe Acrobat XI and earlier.

Adobe has not yet released a patch for this vulnerability, but has issued recommendations to counter their attacks exploiting. Solution for virus protection at mail servers Symantec Mail Security provides protection against these attacks, preventing the download of malicious PDF-files.

Initially, the online community was based on the report on the new 0-day vulnerability, published by FireEye. It was reported that as a result of its successful operation on the computer have been downloaded more files. Symantec expert analysis confirms this possibility.

New type of fraud in Instagram

The Symantec corporation reports about detection of the roguish campaign which is carried out by means of the popular Instagram service. Users are invited to subscribe to a paid newsletter video, which, in fact, is in the public domain.

For a long time the object of spammers are social networks. Generally, the activity of spammers on a particular resource increases with its popularity. It appears that the photo-sharing service Instagram has also recently became the target of such scams.

Symantec experts first encountered this when unknown users are allowed to comment on photos users have no connection with the images.

"Hi there, Get a FREE Game in my Profile, OPEN it up, Get 85.90 $ :-) xx"

The profile was not commenting on published any own pictures.

The content of the section "About Me" in this profile was almost identical to the comment, but, in addition, include a shortened link that leads to the site of mobile service. As part of the service "for just € 4.50 per month" proposed sending heartwarming video with animals. To use this service, you had to provide your phone number, then the user would not have to watch the same video on Youtube for free.