Comments for The Security Blog» Latest InfoSec Threat Research & News | TheSecurityBlog.com http://www.thesecurityblog.com Security Threat Research News Wed, 10 Mar 2010 06:22:35 +0000 http://wordpress.org/?v=2.9.2 hourly 1 Comment on DoD Can Use USB Securely by custom usbhttp://www.thesecurityblog.com/2010/03/dod-can-use-usb-securely/comment-page-1/#comment-969 custom usb Wed, 10 Mar 2010 06:22:35 +0000 http://siblog.mcafee.com/?p=2376#comment-969 A good article, thank you. A good article, thank you.

]]> Comment on Desperate Phishing Attempt by Global Security Watchhttp://www.thesecurityblog.com/2010/03/desperate-phishing-attempt/comment-page-1/#comment-930 Global Security Watch Sat, 06 Mar 2010 14:33:58 +0000 http://www.f-secure.com/weblog/archives/00001901.html#comment-930 <strong>Desperate phishing attempt - Security Threat Research News...</strong>[Source: The Security Blog» Latest InfoSec Threat Research & News | TheSecurityBlog.com] quoted: So, there are these apparent MySpace phishing e-mails going around ("...please be informed that you are required to update your MySpace account... Desperate phishing attempt – Security Threat Research News…

[Source: The Security Blog» Latest InfoSec Threat Research & News | TheSecurityBlog.com] quoted: So, there are these apparent MySpace phishing e-mails going around (“…please be informed that you are required to update your MySpace account…

]]> Comment on Malicious Web Site / Malicious Code: Malicious Google Job Application Response by Arslan Tahirhttp://www.thesecurityblog.com/2010/01/malicious-web-site-malicious-code-malicious-google-job-application-response/comment-page-1/#comment-918 Arslan Tahir Fri, 05 Mar 2010 05:29:03 +0000 AD3010F65E62497ABC3A849914C87820#comment-918 Dear sir, I'm Arslan Tahir 22 years old, male, having experiences on Computer operator, Hardware, Networking Management & Trouble shooting.I have done Hardware & networking Diploma skill development council(Pakistan) Currently I'm looking for a Computer network engineer job depending on my so far experiences. If you have any opening position in your company, please kindly inform me accordingly. Waiting for your kind reply. Sincerely yours, Arslan Tahiir, Pakistan. Dear sir,
I’m Arslan Tahir 22 years old, male, having experiences on Computer operator, Hardware, Networking Management & Trouble shooting.I have done Hardware & networking Diploma skill development council(Pakistan) Currently I’m looking for a Computer network engineer job depending on my so far experiences. If you have any opening position in your company, please kindly inform me accordingly. Waiting for your kind reply.
Sincerely yours,
Arslan Tahiir,
Pakistan.

]]> Comment on Big Brother in Social Networking Scam by Big Brother in Social Networking Scam – Security Threat Research News - Games Directhttp://www.thesecurityblog.com/2010/03/big-brother-in-social-networking-scam/comment-page-1/#comment-917 Big Brother in Social Networking Scam – Security Threat Research News - Games Direct Thu, 04 Mar 2010 19:26:39 +0000 1222741 at http://www.symantec.com/connect#comment-917 [...] reading here: Big Brother in Social Networking Scam – Security Threat Research News BBB10 all-targeted, applications, brazil, brother, brother-brazil, learn-more, phishing, [...] [...] reading here: Big Brother in Social Networking Scam – Security Threat Research News BBB10 all-targeted, applications, brazil, brother, brother-brazil, learn-more, phishing, [...]

]]> Comment on Daily Homework – Log in to Your Social Network Account by Car Insurance Savings for Drivers of All Ages | Cheap Car Insurance For Women Las Vegashttp://www.thesecurityblog.com/2010/02/daily-homework-%e2%80%93-log-in-to-your-social-network-account/comment-page-1/#comment-861 Car Insurance Savings for Drivers of All Ages | Cheap Car Insurance For Women Las Vegas Tue, 02 Mar 2010 00:29:42 +0000 1214941 at http://www.symantec.com/connect#comment-861 [...] Daily Homework – Log in to Your Social Network Account – Security … [...] [...] Daily Homework – Log in to Your Social Network Account – Security … [...]

]]> Comment on Analyzing PDF Files by pdf securityhttp://www.thesecurityblog.com/2010/03/analyzing-pdf-files/comment-page-1/#comment-856 pdf security Mon, 01 Mar 2010 20:00:32 +0000 http://www.f-secure.com/weblog/archives/00001894.html#comment-856 it is hard to keep up w/ new security measures. thanks for the informing analysis! it is hard to keep up w/ new security measures. thanks for the informing analysis!

]]> Comment on World of Warcraft authenticator users come under attack by World of Warcraft authenticator users come under attack – Security … | World of Warcraft Private Servers (WoWps)http://www.thesecurityblog.com/2010/03/world-of-warcraft-authenticator-users-come-under-attack/comment-page-1/#comment-855 World of Warcraft authenticator users come under attack – Security … | World of Warcraft Private Servers (WoWps) Mon, 01 Mar 2010 19:54:50 +0000 tag:blogger.com,1999:blog-10854312.post-8408331104677114683#comment-855 [...] Security Threat Research news from Microsoft, Symantec, McAfee, Trend, Websense, and many others. See the original post here: World of Warcraft authenticator users come under attack – Security … [...] [...] Security Threat Research news from Microsoft, Symantec, McAfee, Trend, Websense, and many others. See the original post here: World of Warcraft authenticator users come under attack – Security … [...]

]]> Comment on Call Center Recordings – Version 3 by Emma Jenkinshttp://www.thesecurityblog.com/2010/02/call-center-recordings-version-3/comment-page-1/#comment-816 Emma Jenkins Fri, 26 Feb 2010 16:08:45 +0000 tag:blogger.com,1999:blog-5704248368030212351.post-2662423257903720884#comment-816 Hi,With the recent changes in the PCI's FAQ on call recording in contact centres, Veritape has written a white paper for companies seeking to understand the ramifications for them.The FAQ in question is: 'Are audio/voice recordings containing cardholder data and/or sensitive authentication data included in the scope of PCI DSS?'Having clarified the wording in January, it looked as if the PCI SSC had finally established a clear definition of what constitutes PCI compliance in call recording. However, less than a month later, the wording was revised again, leaving companies who record telephone conversations and handle sensitive payment card data potentially confused.If you're interested in reading a little more, please do so here <a href="http://www.veritape.com/2010/02/pci-dss-compliant-call-recording-in-call-centres-latest-changes-to-faq-by-pci-ssc-on-18-feb-2010" rel="nofollow">http://www.veritape.com/2010/02/pci-dss-compliant-call-recording-in-call-centres-latest-changes-to-faq-by-pci-ssc-on-18-feb-2010</a>, where you can also request the white paper titled: 'PCI SSC update on call recording and call centres'.Thanks,Emma Hi,

With the recent changes in the PCI’s FAQ on call recording in contact centres, Veritape has written a white paper for companies seeking to understand the ramifications for them.

The FAQ in question is: ‘Are audio/voice recordings containing cardholder data and/or sensitive authentication data included in the scope of PCI DSS?’

Having clarified the wording in January, it looked as if the PCI SSC had finally established a clear definition of what constitutes PCI compliance in call recording. However, less than a month later, the wording was revised again, leaving companies who record telephone conversations and handle sensitive payment card data potentially confused.

If you’re interested in reading a little more, please do so here http://www.veritape.com/2010/02/pci-dss-compliant-call-recording-in-call-centres-latest-changes-to-faq-by-pci-ssc-on-18-feb-2010, where you can also request the white paper titled: ‘PCI SSC update on call recording and call centres’.

Thanks,

Emma

]]> Comment on Reputation-based Security: Suspicious.Insight detections on Virus Total by Juliohttp://www.thesecurityblog.com/2010/02/reputation-based-security-suspicious-insight-detections-on-virus-total/comment-page-1/#comment-791 Julio Tue, 23 Feb 2010 16:44:51 +0000 1205501 at http://www.symantec.com/connect#comment-791 There are other similar services: - <strong><a href="http://virusscan.jotti.org/" rel="nofollow">Jotti</a></strong> - 19 antivirus - <strong><a href="http://www.filterbit.com/" rel="nofollow">FilterBit</a></strong> - 10 antivirus - <strong><a href="http://www.e-antivirus.com/" rel="nofollow">e-Antivirus</a></strong> - 12 antivirus - <strong><a href="http://scanner.novirusthanks.org/" rel="nofollow">NoVirusThanks</a></strong> - 21 antivirus - <strong><a href="http://www.virscan.org/" rel="nofollow">VirScan</a></strong> - 36 antivirus There are other similar services:
- Jotti – 19 antivirus
- FilterBit – 10 antivirus
- e-Antivirus – 12 antivirus
- NoVirusThanks – 21 antivirus
- VirScan – 36 antivirus

]]> Comment on DDoS Attacks Ten Years On by DDoS Attacks Ten Years On – Security Threat Research News | InfoJemshttp://www.thesecurityblog.com/2010/02/ddos-attacks-ten-years-on/comment-page-1/#comment-785 DDoS Attacks Ten Years On – Security Threat Research News | InfoJems Tue, 23 Feb 2010 01:30:47 +0000 1207371 at http://www.symantec.com/connect#comment-785 [...] news channel and an internationally recognized online retail site . … Read the original: DDoS Attacks Ten Years On – Security Threat Research News Posted in Auction Site News, News | Tags: auction-site, high-profile, News, recognized-online, [...] [...] news channel and an internationally recognized online retail site . … Read the original: DDoS Attacks Ten Years On – Security Threat Research News Posted in Auction Site News, News | Tags: auction-site, high-profile, News, recognized-online, [...]

]]> Comment on Scammers Offering Tax Refunds by nilivenhttp://www.thesecurityblog.com/2010/02/scammers-offering-tax-refunds/comment-page-1/#comment-738 niliven Fri, 19 Feb 2010 05:33:06 +0000 1203751 at http://www.symantec.com/connect#comment-738 Hello,Thanks for this information about Tax Refunds. the IRS needs all of the right forms in the right order, and a computer can get your data organizedThanks. Hello,

Thanks for this information about Tax Refunds.
the IRS needs all of the right forms in the right order, and a computer can get your data organized

Thanks.

]]> Comment on Critical Control 17: Penetration Tests and Red Team Exercises by Jeff | Personnel Securityhttp://www.thesecurityblog.com/2010/02/critical-control-17-penetration-tests-and-red-team-exercises/comment-page-1/#comment-732 Jeff | Personnel Security Fri, 19 Feb 2010 00:17:53 +0000 http://siblog.mcafee.com/?p=2070#comment-732 The specter of criminal insurgency is haunting the police stations and barracks of North America. Powerful criminal networks increasingly challenge the state’s monopoly on force, creating new threats to national security. Mexico is currently deteriorating under the weight of criminal violence,1 but it is by no means the only state in the Americas suffering from criminal insurgency. We are seeing a general rise in the power of transnational criminal organizations ranging from the street collective MS-13 to the powerful Mexican drug cartels—and the threat could hit us very close to home. Even American street gangs are increasingly evolving into “third generation” gangs: large, networked, transnational bodies that may yet develop true political consciousness The specter of criminal insurgency is haunting the police stations and barracks of North America. Powerful criminal networks increasingly challenge the state’s monopoly on force, creating new threats to national security. Mexico is currently deteriorating under the weight of criminal violence,1 but it is by no means the only state in the Americas suffering from criminal insurgency. We are seeing a general rise in the power of transnational criminal organizations ranging from the street collective MS-13 to the powerful Mexican drug cartels—and the threat could hit us very close to home. Even American street gangs are increasingly evolving into “third generation” gangs: large, networked, transnational bodies that may yet develop true political consciousness

]]> Comment on eBay Phishing by eBay Phishing – Security Threat Research News - eMega Dealshttp://www.thesecurityblog.com/2010/02/ebay-phishing/comment-page-1/#comment-722 eBay Phishing – Security Threat Research News - eMega Deals Wed, 17 Feb 2010 22:34:16 +0000 tag:pandalabs.pandasecurity.com://34e803c4b6a71868e39f7f76f05da1ca#comment-722 [...] here: eBay Phishing – Security Threat Research News [...] [...] here: eBay Phishing – Security Threat Research News [...]

]]> Comment on Malicious Web Site / Malicious Code: Microsoft’s Ninemsn Australia Web Site Compromised by Malicious Web Site / Malicious Code: Microsoft's Ninemsn Australia … | australianewshttp://www.thesecurityblog.com/2010/02/malicious-web-site-malicious-code-microsofts-ninemsn-australia-web-site-compromised/comment-page-1/#comment-708 Malicious Web Site / Malicious Code: Microsoft's Ninemsn Australia … | australianews Tue, 16 Feb 2010 20:34:26 +0000 BFD0B486D0B94414BA1FAE3915EC13A8#comment-708 [...] is a division of the Fox Broadcasting Company. It specializes in the latest sports … More: Malicious Web Site / Malicious Code: Microsoft's Ninemsn Australia … Share and [...] [...] is a division of the Fox Broadcasting Company. It specializes in the latest sports … More: Malicious Web Site / Malicious Code: Microsoft's Ninemsn Australia … Share and [...]

]]> Comment on Trojan.Hydraq’s Backdoor Capabilities by pamela18http://www.thesecurityblog.com/2010/01/trojan-hydraqs-backdoor-capabilities/comment-page-1/#comment-691 pamela18 Mon, 15 Feb 2010 22:13:04 +0000 1176381 at http://www.symantec.com/connect#comment-691 How to remove Trojan: Backdoorhttp://www.tips29.com/2009/01/how-to-remove-trojan-backdoor.html How to remove Trojan: Backdoor

http://www.tips29.com/2009/01/how-to-remove-trojan-backdoor.html

]]> Comment on Source code for Blackberry and iPhone spyware published by Latest spyware news – Spyware Doctor 6.0.1.444 Multilanguagehttp://www.thesecurityblog.com/2010/02/source-code-for-blackberry-and-iphone-spyware-published/comment-page-1/#comment-600 Latest spyware news – Spyware Doctor 6.0.1.444 Multilanguage Fri, 12 Feb 2010 07:10:25 +0000 http://www.sophos.com/blogs/sophoslabs/?p=8580#comment-600 [...] Source code for Blackberry and iPhone spyware published – Security … [...] [...] Source code for Blackberry and iPhone spyware published – Security … [...]

]]> Comment on Critical Control 10: Continuous Vulnerability Assessment and Remediation by redahttp://www.thesecurityblog.com/2010/02/critical-control-10-continuous-vulnerability-assessment-and-remediation/comment-page-1/#comment-596 reda Thu, 11 Feb 2010 17:42:38 +0000 http://siblog.mcafee.com/?p=2030#comment-596 INTERSTING ARTICLE INTERSTING ARTICLE

]]> Comment on Texaco Offers You a Job For £8500 a Month by Ms. Hhttp://www.thesecurityblog.com/2010/02/texaco-offers-you-a-job-for-8500-a-month/comment-page-1/#comment-545 Ms. H Thu, 04 Feb 2010 12:01:20 +0000 http://www.f-secure.com/weblog/archives/00001871.html#comment-545 I recieved this e-mail on 29 January 2010, but i saw this as very suspicious and thried to reply but these addresses did not work, so i knew this was a scam mail and deleted it. I recieved this e-mail on 29 January 2010, but i saw this as very suspicious and thried to reply but these addresses did not work, so i knew this was a scam mail and deleted it.

]]> Comment on Windows 7? No Problem for Trend Micro Users by samuel bochnerhttp://www.thesecurityblog.com/2009/10/windows-7-no-problem-for-trend-micro-users/comment-page-1/#comment-361 samuel bochner Mon, 11 Jan 2010 19:40:44 +0000 http://blog.trendmicro.com/?p=19953#comment-361 i installed windows 7 and trend micro client server security agent. everything seemed to work ok. however, i got a message from windows 7 as follows:trend micro client server security agent antivirus is on but is reporting its status to window's security center in a format that is no longer supported. thanks for looking into this. i installed windows 7 and trend micro client server security agent. everything seemed to work ok. however, i got a message from windows 7 as follows:trend micro client server security agent antivirus is on but is reporting its status to window’s security center in a format that is no longer supported. thanks for looking into this.

]]> Comment on GNU GPL malware?: Troj/JSRedir-AK by Nickhttp://www.thesecurityblog.com/2009/12/gnu-gpl-malware-trojjsredir-ak/comment-page-1/#comment-323 Nick Thu, 07 Jan 2010 04:26:17 +0000 http://www.sophos.com/blogs/sophoslabs/?p=8046#comment-323 Yeah... My computer somehow picked it up too just recently. In fact I had some virus that managed to get onto my server with go daddy and corrupted all of my php files (blogs). I literally had to wipe my computers hard drive plus I had to remove all of the blogs off of my server. Then a few days later I start getting reports from people saying that my websites, (html code), are being quarantined by their spyware protection software on their computers and saying that my site poses a potential threat. Now I'm gonna have to completely wipe out my whole server and start over fresh. Yeah…
My computer somehow picked it up too just recently. In fact I had some virus that managed to get onto my server with go daddy and corrupted all of my php files (blogs). I literally had to wipe my computers hard drive plus I had to remove all of the blogs off of my server. Then a few days later I start getting reports from people saying that my websites, (html code), are being quarantined by their spyware protection software on their computers and saying that my site poses a potential threat. Now I’m gonna have to completely wipe out my whole server and start over fresh.

]]>