June 30, 2009 - Websense Security Labs™ ThreatSeeker™ Network has detected that Torrentreactor, one of the oldest and most reliable torrent search engines on the Web, has been compromised and injected with malicious code. The site has been injected with an IFrame leading to a (continue reading...) Read more
June 30, 2009 - For the last couple years there has been talk – like this iGillotResearch report (in pdf) – about how the convergence of mobile phones and the Internet would unleash a new wave of threats targeted to the (continue reading...) Read more
June 30, 2009 - Posted by Aaron PortnoyOn May 28th, 2009 Microsoft released MS Security Advisory 971778 titled Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution. This vulnerability should be considered high-risk as it allows for remote code execution through a (continue reading...) Read more
June 30, 2009 - I've been testing our ISTP for several weeks now here in the Lab.The more that I use our ISTP — the more I find to like — and I'm very much looking forward to this (continue reading...) Read more
June 30, 2009 - Last week we had a chance to visit the Global Response Center of IMPACT.IMPACT is the first global public-private initiative against cyber threats. The headquarters are in Cyberjaya, (continue reading...) Read more
June 30, 2009 - On June 23, Jakob Nielsen posted an article declaring that password masking on the user interface is more harmful in terms of usability than helpful to the security of an (continue reading...) Read more
June 29, 2009 - An investigation by the Swiss police uncovered child pornography had been downloaded from a Swiss hip-hop music website to around 2,300 computers in 78 countries. It was announced today that apparently the videos of minors engaged in sexual acts were hidden (continue reading...) Read more
June 29, 2009 - Last year my son was using the computer during his “allotted time” when I noticed something strange…he got up and walked away from the computer! I joke, but this really was strange behavior for him (because he is usually glued (continue reading...) Read more
June 29, 2009 - A few days ago I got a chance to look at a recent variant of the DNSChanger.ad. It drops a common rootkit that is mostly associated with FakeAlert and DNSChanger Trojans. Over a period of time the dropped sys file (continue reading...) Read more
June 28, 2009 - Cybercriminals once again used the passing of Michael Jackson, the ‘King of Pop,’ a few days ago as an opportunity to go about with their malicious activities and attack innocent users. We spotted an email (see Figure 1 below) about Michael (continue reading...) Read more
June 28, 2009 - A new ransomware spreading through email is on the loose. On the outset, the worm detected by Trend Micro as WORM_RANSOM.FD may look like a normal mass-mailing worm but further analysis reveals that this comes with a deadly payload. (continue reading...) Read more
June 28, 2009 - Aside from the new Twitter component we’ve also seen Koobface download a new component with the filename dns.exe, whose main purpose, it seems, is to modify the system’s DNS (continue reading...) Read more
June 28, 2009 - Recently, we came across JS_VIRTOOL which uses certain Javascript techniques so that encrypted code may not be decrypted and analyzed by a malware analyst. Here is how this is done: It retrieves the URL where the malicious script is located. It retrieves its (continue reading...) Read more
June 27, 2009 - Tonight (June 27) was the annual ACM Awards Banquet. This event is where various awards and recognitions are made, although most are announced well in advance. Among other things, this is when the Turing Award is officially given (continue reading...) Read more
June 26, 2009 - The announcement of Michael Jackson’s death has caused immediate effects on the Web 2.0 world. The impact ranged from the interruption on Facebook of coverage of Farrah Fawcett’s death to a surge experienced by Twitter. The Web 2.0 world is (continue reading...) Read more
June 26, 2009 - Following the sudden and shocking death of The King of Pop, Senior Threat Researcher Loucif Kharouni reports that a slew of malicious links related to Michael Jackson’s last moments in the hospital before his death are now being proliferated in (continue reading...) Read more
June 26, 2009 - Matt blogged earlier about Haworth adopting various and sundry social networking applications. Haworth is a perfect example of an organization that is a bit ahead of the curve – adopting these applications for business reasons, yet managing the inherent (continue reading...) Read more
June 26, 2009 - We posted a link to Microsoft Advisory 971778 / CVE-2009-1537 last week.The advisory details a vulnerability in Microsoft's DirectShow, quartz.dll, affecting QuickTime parsing. (Not a QuickTime vulnerability.) Microsoft has reported some use of an (continue reading...) Read more
June 25, 2009 - Twitter is a very popular platform for expressing whatever is on a user’s mind, making it a favorite target of malware authors. Trend Micro has published several blog entries that discussed attacks on Twitter. Now, the creators of Koobface included (continue reading...) Read more
June 25, 2009 - As the controversy about Italian Prime Minister Silvio Berlusconi rises, spammers take advantage of the news to lure their victims to their malicious plots. The spammed mail claims to come from YouTube, but checking the domain of the sender (continue reading...) Read more