Archive for March, 2010

Online Stock Trading is Risky

March 31, 2010 - Buying and selling stock online is big business. It also carries its own risks. And we don't mean the risk of doing bad investments; Read more

End of shield for corporate data breach ‘victims’?

March 31, 2010 - An interesting decision was covered in an article on wired.com yesterday, “Government Stops Shielding Corporate Breach ‘Victims’” that may promote renewed corporate interest in making sure they have a proper data security strategy in place. While 45 states in Read more

4.4 percent in China have no AV – that might not be too bad

March 31, 2010 - The number for the rest of the world might be 26 percentThere is a story making headlines on the computer security news sources today about estimates that 4.4 percent of Read more

Social engineering, PDFs and banking Trojans

March 31, 2010 - A few days ago our colleague Oscar received an email inviting him to access a Web page by clicking on a link. This is not new. However, on clicking on the link, the following page was displayed (don’t try this Read more

Looking for a big return this tax season? Cyberscammers are too…

March 31, 2010 - I have been finishing up on my taxes this week. (blah!)  For the past several years, I have used a software program to do my taxes.  This provides me with an electronic file that I can save each year.  From Read more

Vietnamese the Latest Target in a Politically Motivated Attack

March 31, 2010 - On Monday, March 29, 2010, bkis.com published a blog describing malware that masqueraded as the Adobe Reader update program. This tactic is an attempt to run a malicious payload while avoiding detection. As we looked into this sample (detected Read more

Ah yes. FBI agent Brad Martins with the “global scam Fither in CA 93535”

March 31, 2010 - Good God! A 419 scam email from someone in grade school!From: FBI AGENT Sent: Wednesday, March 31, 2010 7:34 AMSubject: FBI AGENTHello honest people......... We Read more

Safety in Situ

March 31, 2010 - DANGER, WILL ROBINSON, DANGER!  MY SENSORS DETECT THAT YOU LIVE IN A HIGH RISK AREA FOR CYBERCRIME! According to a recent press release from Read more

Google: beware spyware from Vietnam

March 31, 2010 - Spyware/DDoS malware comboGoogle’s security team member Neel Mehta has blogged about yet one more spyware attack on Google users from Asia. This time forces in Vietnam apparently are trying to spy Read more

Apple issues mega patch for Mac OS X

March 31, 2010 - Apple has issued Security Update 2010-002 (Mac OS X v10.6.3) that fixes 100 enumerated vulnerabilities in:-- Mac OS X 10.5-- Mac OS X 10.6-- Mac OS X Server 10.5-- Mac OS X Server 10.6 Read more

Forbes: “It’s all just Malware now”

March 31, 2010 - It seems I prompted an exploration of infection related search terms in Google Trends over on the Forbes.com Firewall blog. “Malware” is becoming a sort of catch-all term for end-users, slowly replacing the various types of Ad/Mal/Spyware classifications.Article here Read more

Running executables in PDF: it’s a feature

March 31, 2010 - Didier Stevens, security professional and blogger, has found a “feature” in the PDF file format that makes it possible to package an executable in a PDF file which will run in Foxit PDF reader or run in Adobe Reader with Read more

Spike in File Infectors Highlight Continuing Threat

March 31, 2010 - In the past week, TrendLabs noticed a significant growth in the number of file infectors in the wild, particularly in Latin America. A significant increase in PE_SALITY.BA cases was particularly spotted in the region. A rise in VIRUX variants, Read more

Web Browsers Get “Owned” in “2010 Pwn2Own”

March 31, 2010 - “2010 Pwn2Own” is an annual contest wherein contestants are invited to hack a variety of Web applications and platforms such as Web browsers and mobile phones for cash prizes and benefits. Successful hackers include Dutch hacker Peter Vreugdenhil for Read more

Using Nessus Thorough Checks for In-depth Audits

March 31, 2010 - Nessus users have a wide range of powerful options whose functionality is critical to a successful vulnerability scan, but whose meaning may not be completely clear. An example of this is the “Thorough tests” option. There is more to this option Read more

What do the Targeted Attack emails look like?

March 31, 2010 - Over the years, we have multiple times posted examples of what kind of booby-trapped document files have been used in targeted (espionage) attacks.For example:Targeted examplesNew set of bait filesH1N1 Read more

Technical paper: SEO poisoning attacks

March 31, 2010 - Regular readers will have seen numerous recent SophosLabs blogs describing how attackers are poisoning search engine results in order to hit victims with malware . In recent months, these type of Search Engine Optimisation (SEO) attacks have become a Read more

When is a picture not worth 1000 words?

March 31, 2010 - When it is not actually a picture but an obfuscated malicious VB script! That’s the story with W32/VBSAuto-F — yet another autorun worm that sets a number of self-starting Read more

Facebook password reset scam: McAfee Labs answers readers questions

March 30, 2010 - The Facebook password reset scam affected several readers. In an effort to address the questions and comments that McAfee Labs received, they have shared some additional information and tips to help you better understand this scam. 1) I opened Read more

Deep Dive Analysis on a Twitter Attack

March 30, 2010 - As many of our readers know, the Internet is constantly under attack with new threats appearing each and every day.  Blackhat SEO attacks, which intertwine malware campaigns with relevant and timely news items are an everyday thing now.   A Read more

Page 1 of 171234510...Last »
Copyright © 2010 The Security Blog. All rights reserved.