We were recently made aware of attacks leveraging the recent data breach that involved Epsilon.According to reports, the attack involves a web page that looks very similar to the press release issued by Epsilon concerning the breach incident. The page also instructs the recipient to click a link at the bottom of the post, in [...]
21 April 2011
Oh dear, that whole Royal Wedding thing is attracting internet weirdness.I’ll list a few of the newest examples here, and update this post with any further ones we come across.Straight off the bat, we walk into “dubious Youtube video central” with some of these:Click to EnlargeGood old Wills and Kate, contributing to the sale of [...]
21 April 2011
We are getting reports that the CBS Money Watch and some ZDNet web sites are currently distributing malware and blacklisted by Google. We are still investigating it, but if you try to visit the CBS Money watch site (moneywatch.com), you will get a warning from Google: What is the current listing status for moneywatch.bnet.com/investing?Site is [...]
21 April 2011
It is almost a rule of thumb that everything that might interest a large number of people makes for a good lure for spammers and scammers. From news regarding natural disasters and celebrities to offers that promise to change the user’s dire economic situation, scammers keep a good eye on any recent developments and are [...]
21 April 2011
Microsoft has issued a security patch for Silverlight KB2526954. It fixes several security issues. However, the Microsoft link to KB2526954 is still not live. If you have Microsoft update running, it is ready to install. This is rated as important and will auto install.Direct download http://go.microsoft.com/fwlink/?LinkID=149156[1] http://www.microsoft.com/getsilverlight/Get-Started/Install/Default.aspx– Guy Bruneau IPSS Inc. gbruneau at isc dot [...]
21 April 2011
The German computer software company Ashampoo has been targeted by attackers that managed to gain access to its customers database and possibly exfiltrated data such as names and email addresses.“Billing information (e.g. credit card information or banking information) is definitely not affected, because our shop service contractors are concerned with this data and it is [...]
21 April 2011
As the day of the wedding of Prince William of England and his long-time girlfriend Kate Middleton quickly approaches, scammers have began to exploit the interest of Internet users around the world and pushing out a variety of poisoned links regarding the subject.GFI warns that a search for sites reporting on the upcoming royal wedding [...]
21 April 2011
It has been observed that more and more children are using social networking websites. Kids even fake their age to join Facebook. Facebook is for high school and college students. Facebook is intended solely for users who are thirteen (13) years of age or older and the age limit is there for the purpose. Any [...]
21 April 2011
In a bizarre and hard-to-understand move, a Facebook page which claims it helped countless Facebook members stay safe online on the social network has been shut down… by Facebook. The Bulldog Estate is one of a number of different resources on the internet dealing with the subject of Facebook scams, rogue applications, and the like. [...]
21 April 2011
At some point in your life, one or several of the Facebook scams out there might affect you enough to look for ways on how to report them and go on a vendetta rampage against the scam creator. In fact, one of the most effective tools against the prolific scammers on Facebook is to report [...]
21 April 2011
Amid mounting criticism of Facebook’s attitude to its users’ privacy and safety, the social network has announced that it is introducing a two-factor authentication system in an attempt to prevent unauthorised logins to accounts. The idea is that if you log into your Facebook account from a computer or mobile device that Facebook doesn’t recognise [...]
21 April 2011
Today we released our quarterly AVG Community Powered Threat Report.By collecting data from the more than 120 million users participating in our global AVG Community Protection Network, we are able to identify threats that have wreaked havoc from the farthest corners of the world and form a comprehensive assessment of the state of online security [...]
21 April 2011
While the number of threats targeting mobile devices is increasing, web browsers for mobile devices are still lacking the security features of their Desktop counterparts. For example, Firefox 4 Mobile (also known as Fennec), does not include Google Safe Browsing to prevent users from navigating to known malicious sites.Zscaler has released 3 Firefox add-ons to [...]
21 April 2011
Vanessa Hudgens: not very good in Sucker Punch, but wonderful for spreading rogue AV and other nonsense on a number of cut and paste blogs.Many of these blogs appear to be hosted on Typepad, usually taking the form of “celebrity name,random numbers(dot)typepad(dot)com”. Typically, the end user will stumble upon these sites by searching for things [...]
21 April 2011
The Royal Wedding is going to spring into action on the 29th April, and Fake AV scans are starting to show up in relation to the “Big Day”. As a result, you might want to think twice before looking for jellybeans bearing the visage of Kate Middleton or strange turnips that look a bit like [...]
21 April 2011
One of the most common ways to propagate malware through social engineering is to piggyback it on some attention-catching news event. This can be carried out using a variety of techniques and is certainly nothing new. One infamous example from 2007 was Win32/Nuwar (a/k/a the Storm Worm), which distributed through spam emails with current and/or [...]
21 April 2011
How advance-fee-fraud works: You think you’ll make money by helping Suzanne Mubarak – all you want is a small cut of the $2 Billion she wants to get out. After making contact though, you will have to pay some fees for “unexpected” items such as customs clearance, registration, banking charges, bribes etc. Each payment supposedly [...]
21 April 2011
It’s been over a month since we wrote about fake Twitter email messages, and if it worked once for scammers, they’ll certainly try it again. Commtouch labs is seeing large quantities of – you guessed it – fake Twitter email messages, similar to the one here: How can the uninitiated determine that it’s not a [...]
21 April 2011
During the last 18 months we saw a growing number of targeted attacks against numerous companies and organizations. Let’s briefly have a look at some of them: The Aurora Attack: an attack that began in mid 2009 and continued until December 2009. The primary goal of this attack was to gain access to high tech, [...]
21 April 2011
Google search results have traditionally been the target of black hat SEO campaigns. WebsenseR Security LabsT has identified a new trend in which cyber criminals take advantage of Google Image search rankings to spread malware.Websense Security Labs ThreatseekerR network has detected that Google Image search returns poisoned pictures when searching on celebrity child “Presley Walker”. We first found [...]
21 April 2011
Forensic researcher Alex Levinson has discovered a way to map out where an iPhone has been. The information comes from a location cache file found on an iPhone (Library/Caches/locationd/consolidated.db).In practice, this file contains your travel history.It should be noted that this file can’t be accessed by third-party apps on an iPhone, as you need root [...]
21 April 2011
At McAfee Labs every day we monitor millions of intrusion prevention systems (IPS) alerts from our sensors around the world. From these alerts, we often see interesting global data and trends. Recently, ISC noticed a sudden decline of Slammer traffic in the wild, which we also noticed on our sensors. The infamous Slammer was a [...]
21 April 2011
On April 20, for the first time ever, gold rose above $1,500 an ounce as worries over the U.S. economic outlook boosted demand for the metal as a haven. Within hours, Symantec observed this spammer’s response: a hit-and-run spam attack with the Subject line “Subject: Is Gold Your Ticket To A Golden Future?”Hit-and-run spam (or [...]
21 April 2011
Beware, this site was reported involved with a scam and Likejacking activity. The spam was spread on Facebook, with a message like this: UNFASSBAR! … Ich hab jeden Respekt vor Miley Cyrus verloren nachdem ich DAS Video gesehen hab or WAHNSINN! Ich hab jeden Respekt vor Miley Cyrus verloren als ich dieses Video gesehen hab [...]
21 April 2011
