May 8, 2012 - This month, Microsoft released seven bulletins, three critical and four important, that addressed a total of 23 vulnerabilities. MS12-029 is the bulletin that should be highest on the list for (continue reading...) Read more
May 7, 2012 - Analysis: Kevin Savage Following on from our recent blog post on malicious Web injects affecting distribution of a malicious Android application, here is a more traditional type – but on a huge scale. Those of us in the security industry (continue reading...) Read more
May 7, 2012 - In our previous blogs, , , , and , we described how a computer may become infected with OSX.Flashback.K and provided various statistics about infected computers. The purpose of this blog is to describe the (continue reading...) Read more
May 7, 2012 - As part of CSIRT’s mobile monitoring offering for special events, we undertook monitoring of the corporate and customer traffic of Read more
May 4, 2012 - Adobe today issued a security bulletin for a vulnerability in Flash Player, which is currently being used in limited targeted attacks. The targeted attacks leveraging the Adobe Flash Player CVE-2012-0779 Object Type Confusion Remote Code Execution Vulnerability have been (continue reading...) Read more
May 4, 2012 - Earlier today, Adobe released an update for Adobe Flash Player. The patch addresses one critical vulnerability (CVE-2012-0779) that allows an attacker to either crash or take control of the targeted (continue reading...) Read more
May 3, 2012 - Today, Microsoft released its Advanced Notification for May which contains seven bulletins fixing a total of 23 vulnerabilities. Three of the bulletins are critical, and four are rated important. The bulletins (continue reading...) Read more
May 3, 2012 - Back in December of 2011, Symantec identified the first case of an Android threat that was used in conjunction with a website-injection campaign targeting sites in the Middle East. Android.Arspam was an Android Trojan that redirected users to (continue reading...) Read more
May 1, 2012 - We have recently come across a new wave of W32.Xpaj.B samples. We first met this complex file infector virus in 2009, and since then the threat has been operating and mounting an ad-clicking scam in order to (continue reading...) Read more
May 1, 2012 - Update Edited to reflect that Oracle has released a configuration workaround, not a patch This week Oracle released an out-of-band Security alert for the CVE-2012-1675 vulnerability in the Oracle Database Server V10 (continue reading...) Read more
May 1, 2012 - Contributor: Fred Gutierrez Cybercriminals have continuously evolved their methods throughout the years to avoid detection and arousing the suspicion of the users they are targeting. In the case of targeted attacks, the lure is a critical piece of the puzzle, as (continue reading...) Read more
April 30, 2012 - We've been busy in the labs reverse engineering the various components of OSX.Flashback.K to determine the true motivation behind the malware. Let's take a look at this Mac Trojan in more detail. The Infection It's now well-known that the latest (continue reading...) Read more
April 26, 2012 - In a recent blog we talked about Trojan.Ransomlock.K and the use of a control panel on a command-and-control (C&C) server which gave it the ability to serve localized social engineering messages to victims depending on their IP location. (continue reading...) Read more
April 25, 2012 - Symantec is intercepting a resurgence of spam attacks on popular brands. Spam messages that are replicas of the Wikipedia email address confirmation alert are the new vector for the present. The said spam messages pretend to be originating from Wikipedia, and are (continue reading...) Read more
April 25, 2012 - It was the best of posts, it was the worst of posts. My apologies to Charles Dickens, but it seems to be the best way to describe two themes I see on Facebook wall posts these days. Let me show (continue reading...) Read more
April 25, 2012 - This post stresses the need for organization to periodically and frequently perform testing of incident response policies, procedures, and plans prior to the "real thing" occurring on their networks. Read more
April 25, 2012 - This week Microsoft published its 12th edition of the Security Intelligence Report (SIR) covering the second half of 2011. Every six months Microsoft combines data from its Hotmail service on spam, the (continue reading...) Read more
April 24, 2012 - When pop icon Björk, in an interview with the press, invited hackers and pirates to adapt her app from iOS to other platforms, it seems that some people who rose to the call had a hidden agenda in mind: (continue reading...) Read more
April 23, 2012 - Symantec Security Response, along with some other security vendors, reported the discovery of the OSX.Flashback malware recently patched by Apple. Many people may be surprised to learn the infection volume is reported at over 600,000 computers. On a new front, (continue reading...) Read more
April 20, 2012 - Ransomware is a threat that continues to grow in popularity with cybercriminals due to its success rate and monetary potential. In past blogs such as Rampant Ransomware we have discussed some different Ransomware variants and techniques. Now we have (continue reading...) Read more