December 1, 2009 - The Zeus gang, who brought us the facebook phish and malware and Outlook reconfiguration malware, is at it again. Today, our spamtraps have (continue reading...) Read more
December 1, 2009 - During the last few months, we here in SophosLabs have witnessed a large increase in volume of “job offer” spam. Most of these include links referring to fake online job offer websites. Here, I am going to demonstrate how spammers (continue reading...) Read more
December 1, 2009 - We have located the first iPhone worm, dubbed as Ikee. It's currently spreading in the wild, but it's only able to infect devices that have been "jailbroken" by their owners. Jailbreaking removes iPhone's protection mechanisms, allowing users (continue reading...) Read more
December 1, 2009 - This is a post from our blog in May 2007: Yesterday, three people were sentenced for writing the above malware (it's a variant of the Vanbot family) (continue reading...) Read more
December 1, 2009 - The big scare story of this week is based on recent research demonstrating a technique to write shellcode that resembles English text. Some bright spark naively suggested that this will make the shellcode almost impossible for anti-virus scanners to detect. (continue reading...) Read more
December 1, 2009 - Sandboxie is a program that can create a ’Sandboxed’ environment on your PC within-which you can install and/or run programs or browse the net. Any data writing operations that the Sandboxed applications perform can (continue reading...) Read more
December 1, 2009 - On December 1st McAfee Labs detected an outbreak of a spam mail pretending to be from the CDC and using the H1N1 virus to facilitate the distribution of a Zeus Trojan executable. The email claims that the CDC is (continue reading...) Read more
December 1, 2009 - In the Microsoft Security Response Center Blog the company states that neither their updates nor the Malicious Software Removal Tool are responsible for the recent reports of "Black Screen of Death" (continue reading...) Read more
December 1, 2009 - The gang that distributes the PCScout rogue security product (see description in Sunbelt Rogue Blog here. ) has set up a fake abuse reporting site apparently to collect email address. Patrick made the connection. (continue reading...) Read more
December 1, 2009 - FreeBSD has issued a patch that may or may not be the final fix for a vulnerability that allows someone with local access on a network to run binary code with the help of the FreeBSD run-time link editor and (continue reading...) Read more
December 1, 2009 - Researchers with the Honeynet Project have created a graphic user interface (GUI) that plots a wide variety of data and give a visual representation that can make it easier to detect attacks.The new GUI is part of the (continue reading...) Read more
December 1, 2009 - National unemployment rates over 10% and the pressures of the holiday shopping season make for a dangerous cocktail that the cyber criminals can take advantage of. Fears of not being able to pay the monthly mortgage, car payments, backed up (continue reading...) Read more
December 1, 2009 - Severity Is Multi-Dimensional Vulnerability scanning tools, such as Nessus, can produce reports and assign discovered vulnerabilities a severity rating. The problem I always had with these reports was in evaluating these ratings. Like many other administrators, I found that (continue reading...) Read more
December 1, 2009 - We’ve received questions about public reports that customers might be experiencing system issues with the November Security Updates (which some are referring to “Black Screen” issues). (continue reading...) Read more
December 1, 2009 - It only recently made it to TechCrunch, but I noticed months ago that Panera restaurants were blocking links (continue reading...) Read more
December 1, 2009 - Piggybacking (pun intended) on the swine flu pandemic is the Zeus bot crew, whose latest offering comes in the guise of an email purporting to come from the CDC (Center for Disease Control). The email contains a link to a (continue reading...) Read more
December 1, 2009 - The "Black Screen of Death" problem we described recently has been eliciting panicked coverage on parts of the Internet and some confusion over how widespread it is. Our impression is that (continue reading...) Read more
December 1, 2009 - The PCI Security Standards Council is inviting all payment industry stakeholders -- yes, that includes YOU -- to attend their next “Open Mic” webinar. Typically, these sessions are reserved for Participating Organizations, but (maybe as a holiday present?) the (continue reading...) Read more
December 1, 2009 - We've seen this phishing going around in the latest hours:When you click on the link you are redirected to the following site:Taking a look at the URL you can realize that it (continue reading...) Read more