February 6, 2012 - The Websense® ThreatSeeker® Network has discovered a new wave of injection of malicious code disguising itself as Google Analytics, by adopting similar code snippets and malicious domains. It is quite convincing at first glance, but remember, (continue reading...) Read more
January 25, 2012 - Today, Websense® ThreatSeeker® Network alerted us that entrepreneur.com has been compromised by cyber criminals, resulting in potentially malicious content being downloaded to a user's machine. Entrepreneur.com is a very popular information and community resource for small businesses on the web ( (continue reading...) Read more
November 7, 2011 - When Duqu, which most believed to be written by the same group that wrote Stuxnet, was originally uncovered, the infection vector was still unknown; how did the machines get compromised in the first place? That changed when the Hungarian (continue reading...) Read more
October 5, 2011 - Last year a friend had a bright idea for a party game that involved a series of QR codes in a circle on paper. He called it QR Code Roulette. Unlike the gambling game, (continue reading...) Read more
September 26, 2011 - Websense® ThreatSeeker® Network has detected that the Cuevana.tv (hxxp://www.cuevana.tv) Web site was compromised on 25th September, 2011. Cuevana.tv is a very popular Spanish online TV Web site in South American, especially in Argentina, Uruguay, Mexico, Colombia, and Panama. Cuevana.tv has a (continue reading...) Read more
September 15, 2011 - This month, Microsoft issued 5 security bulletins covering 15 vulnerabilities in Excel and Windows. These updates are considered important rather than critical, as by the time of the patch there was no (continue reading...) Read more
September 4, 2011 - Websense® ThreatSeeker® Network has detected that the Web Directories site (http://www.web-directories.ws) was compromised on 4th September, 2011. This lead users to the Incognito exploit kit. Web Directories is a site designed to help Webmasters and site owners find relevant (continue reading...) Read more
August 25, 2011 - Transocean, one of the world's biggest offshore drilling contractors, is currently compromised: its main Web site at deepwater.com is hosting malicious exploit code. Recently, Transocean has been implicated in the Deepwater Horizon oil spill resulting from the explosion (continue reading...) Read more
June 20, 2011 - Our ThreatSeeker® Network is constantly on the lookout to protect our customers from malicious attacks. Recently, it has detected a Rogue AV campaign that directly attacks the user's system instead of first redirecting to a dedicated attack server. Websense customers are protected (continue reading...) Read more
June 17, 2011 - Earlier this week Adobe released security updates for several of their products and now the CVE-2011-2110 vulnerability in Flash Player is actively being used in drive-by and spear-phishing attacks. Websense customers are protected from this scam (continue reading...) Read more
June 14, 2011 - There is plenty of work this month of June for IT administrators - Microsoft's June Patch Tuesday addresses 34 vulnerabilities in 16 distinct bulletins. Nine of the bulletins carry a maximum (continue reading...) Read more
May 13, 2011 - Websense Security Labs™ ThreatSeeker® network has determined that the popular online Pakistani newspaper Web site the 'Daily Jang' (at jang.com.pk) has been compromised. Websense customers are protected from this attack by ACE, our Advanced Classification Engine. The Web site (continue reading...) Read more
April 27, 2011 - I returned this past weekend from SOURCE Boston, where I presented the new features and architecture of Fireshark v2. I have had the opportunity to speak at many conferences before, but this was my first time doing so in my university town of Boston ( (continue reading...) Read more
April 26, 2011 - Emails disguised as electronic cards have been used as bait over and over again for malicious intent. The fact that they are overused is a clear indicator that this lure indeed works. Websense Security Labs™ and the Websense ThreatSeeker® Network (continue reading...) Read more
April 18, 2011 - Our ThreatSeeker® Network is constantly on the lookout to protect our customers from malicious attacks. Recently it has detected a new injection attack which leads to an obscure web attack kit. The injection has three phases which will be covered (continue reading...) Read more
March 25, 2011 - Today it was reported that Spotify, the popular streaming music service, displayed malicious ads to users of their Free version. The ads lead to websites that used the Blackhole Exploit Kit to infect users with the Windows Recovery fake (continue reading...) Read more
March 15, 2011 - Websense® Security Labs™ has received reports of a new zero-day exploit that targets Adobe Flash Player (CVE-2011-0609). The vulnerability can potentially allow an attacker to execute malicious code on a targeted machine and has been spotted in a limited number of (continue reading...) Read more
February 28, 2011 - Weekends are sacred; most use them to relax and unwind but for some it's showtime! Taking advantage of the fact that a lot of security companies are more relaxed over the weekend, cyber criminals use the opportunity to strike. This (continue reading...) Read more
February 11, 2011 - In late December, the latest IIS FTP service vulnerability was made public by Matthew Bergin. This event is significant because it’s been a while since the last time a Windows Service had an unauthenticated vulnerability. While the FTP server isn’t (continue reading...) Read more
January 31, 2011 - In the final days of 2010, an exploit for the Windows CreateSizedDIBSECTION vulnerability was added to the Metasploit trunk. The trigger bitmap was taken byte-for-byte from Moti and Xu Hao's slides from the Power of Community conference. (continue reading...) Read more