Several months ago, the Anti-Malware Engineering Team blog was reborn as the Microsoft Malware Protection Center Blog (MMPC) and I have been enjoying their reports.
The most recent presentation is particularly special because it was co-authored by a long-time friend, Subratam Biswas. I first met Sub over four years ago in a private security IRC channel before he was hired by Microsoft and relocated to Redmond.
Subratam and Scott Wu provide a background of fake security applications (rogues) as well as describing how they have changed (for the worse). Find out how Win32/Antivirusxp can infect your computer, in Rogue Antivirus - A Closer Look at Win32/Antivirusxp.