December 23, 2009 - Here are our predictions for 2010 based on this year's threat analysis. • Windows 7 will gain market share during 2010. Windows XP will drop below 50% market share overall (continue reading...) Read more
December 23, 2009 - There's a 0-Day PDF exploit taking advantage of a vulnerability found in Adobe Reader and Acrobat 9.2 and earlier. Adobe has issued an advisory on their PSIRT blog.The screenshot below, pulled from our automation, shows (continue reading...) Read more
December 23, 2009 - Reports have reached us of a fresh SQL injection attack that has compromised many websites. A Google search of the malicious iframes used in the attacks nets over 100,000 hits: (continue reading...) Read more
December 23, 2009 - Quick note: we're still occasionally getting reports of DNSChanger trojan variants altering the DNS information on both the infected system and on certain ADSL modems. It's an old, unsophisticated problem, but more awareness of it can't hurt. (continue reading...) Read more
December 23, 2009 - I recently took a sudden and unexpected trip to Norway. During my time there I needed to quickly update my family and friends as to my situation. How does one do that when one's family and friends span (continue reading...) Read more
December 23, 2009 - It's the second Tuesday of the month and there are important updates being released.From Microsoft, of course, but also from Adobe.There's a (continue reading...) Read more
December 23, 2009 - Mikko has been traveling this week, and along the way, he stopped by the New York Times to participate in their Tech Talk Podcast.Here's a (continue reading...) Read more
December 22, 2009 - The Administration has now made it official—Prof. Howard A. Schmidt is the new White House Cybersecurity Coordinator. This is big news on several fronts: First, Howard is a great pick for the job. He’s eminently qualified, having worked (continue reading...) Read more
December 22, 2009 - Thanks to reader Roberto Perez for pointing out an error in my recent entry on How the New Facebook Privacy Settings Work (since corrected).I was bothered that restrictions on (continue reading...) Read more
December 22, 2009 - Last week AV-Comparatives.org released the results of their recent "Whole Product Dynamic Test" - a test challenging anti-malware products to protect test systems as if in the real world. (continue reading...) Read more
December 22, 2009 - Andreas Marx of AV-Test.org asked me to clarify a couple points in my blog post about AV-Test's recent real-world anti-malware test. The two tables in the article (continue reading...) Read more
December 22, 2009 - Privacy and information leakage has become one of my favorite topics on the Security blog. It seems that an enormous amount of information is being willingly plastered all over the Internet, from which significant value can be extracted (especially when (continue reading...) Read more
December 22, 2009 - As we look ahead to 2010, we're hoping it's the year the web becomes a truly great platform for working and connecting online. Here are five things we'd like to see fixed for that to (continue reading...) Read more
December 22, 2009 - In October Microsoft released a Knowledge Base entry describing which files on a Windows system were not necessary to scan with anti-virus products. These files are not at risk of infection (continue reading...) Read more
December 22, 2009 - The New York Times is reporting that President Obama will name Howard A. Schmidt to the position of cybersecurity coordinator. Schmidt has a long list of credentials from private industry, government and (continue reading...) Read more
December 21, 2009 - Theft As we discussed in Part I, the primary purpose of Qakbot is to steal information from the compromised computer. In addition to targeting login details for FTP, POP3 and IMAP, the worm also attempts to steal Cookies - (continue reading...) Read more
December 21, 2009 - Cybercriminals have been found riding on Brittany Murphy’s sudden death to scare people into buying FAKEAV. Searching for keywords like “brittany murphy’s death” on Google resulted in at least two suspicious URLs: http://{BLOCKED}erracing.net/vwb.php?sell=brittany%20murphy%20death http://{BLOCKED}x.net/icd.php?go=brittany%20murphy%20death The spike in searches on Murphy’s death has (continue reading...) Read more
December 21, 2009 - We often come across interesting details during our data mining.For example, take a look at the following domain registrant information.Notice anything interesting? Domain Name: BENINECOB.COM Eco Bank David Kieselstein (fr3sh_card3r_rz@yahoo.com) 81 fair hill (continue reading...) Read more
December 21, 2009 - This week (18th December 2009) Jamaica moved its Cyber Crime bill into law making it possible to prosecute hackers and people who use nefarious popups to collect personal data. The Jamaica Observer reports: The Bill, which was passed with (continue reading...) Read more
December 21, 2009 - Chrome: Some web sites, like personal banking portals, rightfully ask your browser not to remember your password. Others are just weirdly against convenience. The Autocomplete = On extension for Google Chrome forces sites to let (continue reading...) Read more