January 4, 2010 - I don’t know about you, but I love Christmas in Australia, long summer days, the sound of cicadas at night, seafood on Christmas day or traditional ham with roasted vegies, I just love the festive season. And I must confess (continue reading...) Read more
January 4, 2010 - Websense Security Labs™ ThreatSeeker™ Network has discovered several spam messages on Facebook that trick the user into visiting BINSSERVICESONLINE(dot)INFO. When the link in the message is clicked, the Web site redirects the user to an online scam site similar to (continue reading...) Read more
January 4, 2010 - The massive growth of gold farming – the exchange of real money for virtual goods – might result in an increase in gaming Trojans and other malware aimed at gamers in the future.A well-respected researcher has described the (continue reading...) Read more
January 4, 2010 - Here’s one more reason not to order drugs from on-line pharmacies, in case the possibility of wasting your money on fake pills, having your credit card account sacked by thieves or poisoning yourself isn’t enough.The U.S. Food and (continue reading...) Read more
January 4, 2010 - Symantec has revealed a bug in SEPM (Symantec Endpoint Protection Manager) that prevents new updates to AV/AS/IPS definitions. All such updates dated after December 31, 2009, 11:59 P.M. (continue reading...) Read more
January 4, 2010 - Mike Cardwell, an IT consultant in Nottingham, UK, reported on his blog finding a Y2010 bug in Spam Assassin. He found an error in a rule that Spam Assassin folks thought they fixed.“I think a lot of (continue reading...) Read more
January 4, 2010 - When I’m presenting to IT managers in midsize companies, or to consultants and value-added resellers that focus on this market, I often refer to these guys as the “unsung heroes” in our war against cybercrime, our last line of defense. I (continue reading...) Read more
January 4, 2010 - If you're bent on updating your social network status or checking out a new web site, firewalls be damned, Flexamail can help you update your accounts and receive web sites via email. Rather than engage in (continue reading...) Read more
January 4, 2010 - Today I came across a reference to a web service called Wepawet, which scans PDF, Flash and JavaScript files for malicious content. Wepawet is a project of the Computer Security Group (continue reading...) Read more
January 4, 2010 - The Internet Storm Center at the SANS Institute has a highly-technical, but well-written and fascinating description of a new malicious PDF making the rounds. This exploit utilizes an unpatched vulnerability (continue reading...) Read more
January 3, 2010 - We see spam all the time. One of the most dependable things spammers do is to try and exploit various newsworthy events and holidays. Recently, we have seen spammers spreading malware using a combination of either or both flash updates and (continue reading...) Read more
January 3, 2010 - Since the death of Milw0rm, The Exploit Database has been one of the hotter spots for researcher and malcoders to find the latest exploit code. Their latest post takes a (continue reading...) Read more
January 1, 2010 - The Metasploit Meterpreter has supported the "hashdump" command (through the Priv extension) since before version 3.0. The "hashdump" command is an in-memory version of the pwdump tool, but instead of loading a DLL into LSASS.exe, it allocates memory inside the (continue reading...) Read more
January 1, 2010 - First of all, many happy returns of 2010. Now then, the one subset of malware which does not immediately seem motivated by financial incentives is the autorun worm. In fact the raison d’etre for this class of malware seems lodged (continue reading...) Read more