>
  1. Forum
  3. Political Opinions, Commentaries on Current Issues
  5. The Water Cooler!
  7. Fareit Malware Returns With A Vengeance

Fareit Malware Returns With A Vengeance

  • Alien
  • Topic Author
  • Visitor
  • Visitor
21 Jan 2017 12:36 #333200 by Alien
Fareit Malware Returns With A Vengeance
January 18, 2017  Kayla Thrailkill
Tech Talk



The malicious software named “Fareit” has returned, and with a vengeance.  Fareit malware focuses on breaching your computer’s security, in an effort to obtain critical login credentials.

The History of Fareit

This particular form of malware was discovered in 2012, but has continued morphing throughout the years in an attempt to bypass anti-virus protection.

Historically, Fareit focused on obtaining login credentials for website domains.  This could be user names and passwords for such things as banking and email accounts.  Roughly seven months ago, a new variant of Fareit was discovered.  Softopedia reported,

“Cisco’s Talos security team has stumbled upon a new version of this malware family that behaves like a chameleon, changing its file hash with each infection, even if the file name remains the same.”
Cisco reported this Fareit variant primarily targeted Firefox login credentials.  There was also concerns that this was being used as a pay-per-infection, meaning cyber criminals were paying other cyber criminals to distribute the malware.  The more infections a cyber criminal initiates, the more they’re paid.

Today’s Fareit

The most recent Fareit malware threat is being distributed via a phishing attack.  A phishing attack is an email with a malicious link or attachment, designed to make you click on those links/attachments.  This most recent phishing attack includes malicious executable disguised as a PDF attachment, which includes the malware.  Once the user downloads the “PDF”, their computer becomes infected and the malware scans for any credentials that may be of value.  This may range from banking information, various account login credentials, administrative credentials, etc.

This is not the first time Fareit has used phishing attacks to distribute their malware.  Months ago InfoSecurity confirmed Fareit was being distributed through falsified FedEx emails, which also included a PDF attachment.

Staying Protected

Think before you click.  Are you expecting this email?  Do you know the sender?  Are the links going to a secure website (https://)?
Update your operating system (OS) and programs.  Our computers typically do a decent job of letting us know when things need to be updated.  But are we doing it, or are we clicking on “Ignore” or “Remind Me Tomorrow”?  Understandably, it may be an inconvenience to update your PC right that second, but you need to make time to do it as soon as possible.  Program updates are not just about getting the latest and greatest features, but also used to patch any security gaps that were found in the previous version.  If you choose not to update, you could be leaving the door open to hackers.

Use a security solution that uses application whitelisting in a real-time setting.  What the heck does that mean??  Using a whitelist to protect your computer will confirm any applications that attempt to execute have been tested and categorized as trusted. 

Please Log in or Create an account to join the conversation.

  • Alien
  • Topic Author
  • Visitor
  • Visitor
21 Jan 2017 12:36 #333201 by Alien


Be careful folks .

Please Log in or Create an account to join the conversation.

  1. Forum
  3. Political Opinions, Commentaries on Current Issues
  5. The Water Cooler!
  7. Fareit Malware Returns With A Vengeance
Time to create page: 0.159 seconds
MaleahBREAKING: The government of Pakistan has said that Pakistan will boycott their T20 World Cup match against India(01.02.2026, 11:02)(11:02)0
ketchimGot Florida Hass theodday from my buddy visiting here !(22.01.2026, 19:37)(19:37)0
ketchimICC tell Bangladseh they will be REPLACED !(22.01.2026, 19:17)(19:17)0
MaleahGuyanese people in Florida can't just go and catch a dozen or two dozen HASSA; they have to catch over 5 million.
This is called Greed		(07.01.2026, 13:14)(13:14)1
MaleahNow that Joe Root has 2 centuries in Australia, I assume those Australian fans, who said he couldn’t be classed as great unless he achieved that, will now say he is?? Given that the great Steve Smith has never scored a test ton in Pakistan….(05.01.2026, 12:31)(12:31)0
MaleahThe Bangladesh Cricket Board has formally asked the ICC to move all of Bangladesh’s matches out of India, citing safety and security concerns.

#T20WorldCup		(04.01.2026, 14:18)(14:18)0
Gwen20(03.01.2026, 13:42)(13:42)0
Gwen(select 198766*667891 from DUAL)(03.01.2026, 13:42)(13:42)0
Gwen(select 198766*667891)(03.01.2026, 13:42)(13:42)0
Gwen@@iBQ3X(03.01.2026, 13:42)(13:42)0
Gwen20'"(03.01.2026, 13:42)(13:42)0
Gwen20(03.01.2026, 13:42)(13:42)0
Gwen20'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'(03.01.2026, 13:42)(13:42)0
Johan20(03.01.2026, 13:42)(13:42)0
Gwen20*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)(03.01.2026, 13:41)(13:41)0
Gwen20F4owsBb6')) OR 756=(SELECT 756 FROM PG_SLEEP(15))--(03.01.2026, 13:41)(13:41)0
Gwen20axQfaI3h') OR 505=(SELECT 505 FROM PG_SLEEP(15))--(03.01.2026, 13:40)(13:40)0
Gwen20GCVWFMgw' OR 960=(SELECT 960 FROM PG_SLEEP(15))--(03.01.2026, 13:40)(13:40)0
Gwen20-1)) OR 426=(SELECT 426 FROM PG_SLEEP(15))--(03.01.2026, 13:39)(13:39)0
Gwen20-1) OR 573=(SELECT 573 FROM PG_SLEEP(15))--(03.01.2026, 13:39)(13:39)0
Gwen20-1 OR 604=(SELECT 604 FROM PG_SLEEP(15))--(03.01.2026, 13:38)(13:38)0
Gwen20ZWzru47i'; waitfor delay '0:0:15' --(03.01.2026, 13:38)(13:38)0
Gwen20-1 waitfor delay '0:0:15' --(03.01.2026, 13:38)(13:38)0
Gwen20-1); waitfor delay '0:0:15' --(03.01.2026, 13:37)(13:37)0
Gwen20-1; waitfor delay '0:0:15' --(03.01.2026, 13:36)(13:36)0
Gwen(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/(03.01.2026, 13:36)(13:36)0
Gwen200"XOR(20*if(now()=sysdate(),sleep(15),0))XOR"Z(03.01.2026, 13:36)(13:36)0
Gwen200'XOR(20*if(now()=sysdate(),sleep(15),0))XOR'Z(03.01.2026, 13:35)(13:35)0
Gwen20*if(now()=sysdate(),sleep(15),0)(03.01.2026, 13:35)(13:35)0
Gwen-1" OR 18=18 or "FwfsM7AR"="(03.01.2026, 13:34)(13:34)0
Gwen-1" OR 3*2<5 or "FwfsM7AR"="(03.01.2026, 13:34)(13:34)0
Gwen-1" OR 5*5=26 or "FwfsM7AR"="(03.01.2026, 13:34)(13:34)0
Gwen-1" OR 5*5=25 or "FwfsM7AR"="(03.01.2026, 13:34)(13:34)0
Gwen-1' OR 641=641 or 'eESQ4mw4'='(03.01.2026, 13:34)(13:34)0
Gwen-1' OR 3*2<5 or 'eESQ4mw4'='(03.01.2026, 13:34)(13:34)0
Gwen-1' OR 5*5=26 or 'eESQ4mw4'='(03.01.2026, 13:34)(13:34)0
Gwen-1' OR 5*5=25 or 'eESQ4mw4'='(03.01.2026, 13:34)(13:34)0
Gwen-1" OR 3*2>5 --(03.01.2026, 13:34)(13:34)0
Gwen-1" OR 3*2>999 --(03.01.2026, 13:34)(13:34)0
Gwen-1" OR 5*5=25 --(03.01.2026, 13:34)(13:34)0
Gwen-1' OR 5*5=26 --(03.01.2026, 13:34)(13:34)0
Gwen-1 OR 3*2>5(03.01.2026, 13:34)(13:34)0
Gwen-1 OR 3*2>999(03.01.2026, 13:34)(13:34)0
Gwen-1 OR 5*5=25(03.01.2026, 13:34)(13:34)0
Gwen-1 OR 3*2>5 --(03.01.2026, 13:34)(13:34)0
Gwen-1 OR 3*2>999 --(03.01.2026, 13:34)(13:34)0
Gwen-1 OR 5*5=25 --(03.01.2026, 13:34)(13:34)0
Gwen20(03.01.2026, 13:34)(13:34)0
Gwen204tYynwAI(03.01.2026, 13:34)(13:34)0
Gwen20(03.01.2026, 12:02)(12:02)0
Jamie
Powered by The Krotek
Go to top