Tag Archive | "Facebook"

Facebook Security

Google+ Project Vs Facebook Safety Features

Posted on 06 August 2011. Tags: , , , ,

Facebook SecurityToday there are many social networks on the internet and everyday new ones are being introduced with new and better features. They have unique and useful features, which makes it easy for users to remain updated with friends. They also offer apps for different smartphones providing even easier access to friends and other useful information. But at the same time these contacts and important details are also at risk with compromised security features.

Google Vs Facebook

Google and Facebook are two popular corporations offering online social networks and other useful applications. Over the past few years Facebook has gain significant recognition and has received large amount of users from around the world. These users share their private information on the web. There are security features that restrict strangers from accessing personal information but exposing personal data online is still a risk.

On the other hand Google is a popular search engine, which is now stepping in the world of social networks and has started offering new products such as +1, Hangouts and more.

But if you compare these two popular corporations a widely asked question is about their safety. Personal information can be fatal if it gets in wrong hands. Users can restrict others from viewing information by changing their privacy setting. For instance Facebook offer users to set “friends only” and “friends of friends” setting to files, which users can select according to their requirements.

Facebook users can also make groups and set privacy settings to it, and add friends and family to these groups. For instance if someone want to allow a group of people to view “photo album”, then it is good to create a group and allow only this group to view photos or albums.

Google+ Project

Google Corporation launched a project named Google+, which comprises of different smaller projects such as Google Circle. It is a social network and offers same security features of Facebook as “circle”. Google+ project comprises of number of projects such as Hangouts, +1, Circles, Sparks and more. All these applications are interconnected with each other all over the web such as with Google search engines, social networks, likes and video chat. With such a large online project users are more exposed to risk of information getting into wrong hands.

To coup with security risks Google launched different panels to advice users about secured content sharing such as Google Family Safety Center, which allow parents to have control on their children activities. Parents can also contact Google advice board and find the help they want. It is also important to remain cautious from malicious invitations and software downloads. For instance Google Hangout requires installing Adobe Air on the system. It is important to download such applications from authentic or official websites.

Facebook Risks

Facebook is a great way to connect with friends and family, but at the same time there are also band guys getting social on Facebook. An IT security firm reports that users are being spammed or sent malicious codes. Facebook offer good security features to restrict strangers from accessing personal information but unethical activities are still on the rise.

Posted in Facebook, Featured, SecurityComments Off

Facebook scammers go back to using Javascript

Posted on 08 May 2011. Tags: , , , , , , , , , , , , , , , , , , ,

Facebook scammers know that in order to keep users falling for their scams, they have to use a variety of approaches.

For example, there was a time where rogue applications were the scammers’ preferred method of making sure that the scheme is propagated through the social network. Before that, they were more partial to trying to make the users copy/paste scripts into their address bars in order to achieve the same result.

As users become accustomed to ignoring one particular approach – and Facebook is becoming more adept at spotting and blocking the rogue apps – the copy/paste script one makes a comeback.

The most popular lure used by these scammers is the undying “See who viewed your profile” offer. The landing page could be a Facebook one or one hosted on another domain, and it asks the user to copy some Javascript into the browser address bar and press ?Enter?.


And just in case the user does not understand the instructions, the scammers have attached a video of the whole process. Once the directions are executed, the user is (predictably) asked to fill out a survey in order to finally get the results. In the meantime, the Java script works its magic.

“Depending on the configurations of the attacker, the script will post a new bait message to the user?s wall, send chat messages to friends, tag you in post messages or images, or even create an event and send an invitation to all your friends,” explains Symantec.

“Of course as always the attack is easy configurable through a toolkit. Since the script runs in the context of Facebook and uses your open session it can do a lot with your profile, it can do nearly everything you could do yourself.”

Posted in SecurityComments Off

Facebook Scam: ‘Wired News: iPhone 5 – First Exposure’ leads to Adware

Posted on 02 May 2011. Tags: , , , , , , , ,

From likejacking to photo-tagging, Facebook scammers are constantly searching for new ways to get their scam campaigns to spread through the social network. Early this weekend, we observed a new type of scam, this one leveraging Facebook’s new social plugin for websites that allow for comments. This is being exploited by scammers to get their rogue websites visible on users’ news feeds, because for a scammer, the more eyeballs that see these posts the better.

Familiar Justin Bieber scam returns in a new form

Familiar Justin Bieber scam returns in a new form

There are various flavors of the scam making the rounds. However, the newest one to make the rounds focuses on a familiar Apple product: the iPhone. With rumors circulating about the iPhone 5, loyal Apple followers are drawn to the various news articles that cover these stories.  So, it’s no surprise that scammers have decided to piggyback on this for their latest scam.

iPhone 5 Scam spreading on Facebook

iPhone 5 Scam spreading on Facebook

The scam begins with someone in your social network “commenting” on a post like the one above. The report claims to be from Wired News and has one of those headlines that is used to lure a user into clicking on the link.

iPhone 5 - Scam Page

iPhone 5 – Scam Page

Once a user clicks on the link, they are redirected to a random .info site. There have been over 10 of these in circulation for this particular scam. Before the user can click on anything, they are asked to answer a CAPTCHA-like verification form:

Human Verification overlay for Facebook Comments

Human Verification overlay for Facebook Comments

This effectively tricks the user into inputing the number 5, which actually results in the user leaving a comment for the .info website through the use of the Facebook social-plugin layer for comments.  This is why users will see that ‘John Doe’ commented on randomsite.info on their Facebook News Feed.

iPhone 5 Scam Page: Download the 'Exposure' Video

iPhone 5 Scam Page: Download the ‘Exposure’ Video

Unlike most Facebook scams of late, at the end of this rainbow, there is no survey scam. Instead, the users are prompted to download an executable file.

Installer for 'videogameboxinstaller.exe'

Installer for ‘videogameboxinstaller.exe’

The executable file is videogameboxinstaller.exe and it is dubious in nature, as it downloads other pieces of software. “AnyLike” claims to allow users to “like” any and everything on the web.

AnyLike Browser Application Installation

AnyLike Browser Application Installation

“PageRage” allows users to add style to their Facebook pages:

PageRage - Be sure to read the terms!

PageRage – Be sure to read the terms!

PageRage notes in its terms above that it will display ads to the end user. Sounds like Adware? Four antivirus vendors agree, flagging this as Adware.Yontoo. This also seems to indicate that there is some affiliate program involved.  And sure enough there is:

Details on how to become an affiliate for PageRage

Details on how to become an affiliate for PageRage

At the heart of all these Facebook scams lies the same principal: a way for the scammers to make money by tricking users. Survey scams have been working quite well, so it makes sense that scammers would begin focusing their efforts with pay-per-install affiliate programs.

There are other Facebook comment scams (dubbed “comment-jacking”) that are making the rounds, including one regarding Free Airline tickets aboard Southwest Airlines.

Southwest Airlines Comment-Jacking Scam

Southwest Airlines Comment-Jacking Scam

As we have advocated for many other Facebook scams, the key here is to be aware that scammers will do whatever it takes to make a fast buck on the backs of social networking users. That’s why they tend to jump on topics that might appeal to a user (Apple iPhone 5, Free Airline tickets, etc.).

If it looks too good to be true, there’s a very good chance that it is.  Look out for the people who are apart of your personal social network: friends and family members.  Let them know about scams like these, because awareness remains a big piece of the puzzle.

Note: At the time this blog was published, over 100,000 visits have been logged to the various links in circulation:

Over 100,000 Visits to the various scam pages

Over 100,000 Visits to the various scam pages

Posted in SecurityComments Off

2 FREE Southwest Airline Tickets!

Posted on 02 May 2011. Tags: ,

Scam Signature Message: 2 FREE Southwest Airline Tickets!

southwest_wall

Scam Type: Click-Jacking, Bogus Offer

Trending: May 2011

Why it’s a Scam:

Clicking the wall post link takes you to the  following page: 

southwest_main

Clicking the “Comment” click-jacks your account and presents the following bogus offer:

southwest_2

If you read the fine, you must complete a total of 13 Sponsor Offers. Not only is this a ridiculous hoop to jump through, and will cost you a lot of money in the end, but the scammers are acquiring a treasure trove of your personal data. You will be required to provide your name, address, phone numbers and date of birth. This will enable the shady marketers to not only spam your Facebook account, but also harass you via snail mail, phone calls and text messages.   

How to Deal with the Scam:

If you did make the mistake of commenting on the main page, you are now spamming your friends with the scammer’s message. You should clean-up your newsfeed and profile to remove references to the scam. (click the “x” in the top right hand corner of the post).

The level of damage control required will largely depend on how many “special offers” you participated in. If you submitted your name, address, email, etc., then be on the lookout for more bogus offers arriving in your email and regular mail. Also be on alert for identity theft attempts.

Posted in FacebookComments Off

Father walks in on his Daughter… EMBARRASIN!

Posted on 02 May 2011. Tags: ,

Scam Signature MessageFather walks in on his Daughter… EMBARRASIN!

dadembarrasin_wall

Scam Type: Survey Scam, Click-Jacking

Trending: May 2011

Why it’s a Scam:

Clicking the wall post link takes you to the  following page: 

dadembarrasin_main
On this screen you really don’t have to click the right answer – any input will do. Clicking submit click-jacks your account and loads the following survey scam:

dadposted_survey

Here we see the end game of a typical Facebook Survey Scam. Each time someone completes a survey, the scam creator gets a commission. The scam creator will possibly have your personal information to do you harm. (depending on the information you submitted in the survey) If you downloaded any games or other files then your computer could be infecting with a virus, trojan or other malware. Never download files from scams like this!   

How to Deal with the Scam:

If you did make the mistake of clicking “Submit” on the main page, you are now spamming your friends with the scammer’s message. You should clean-up your newsfeed and profile to remove references to the scam. (click the “x” in the top right hand corner of the post).

If you made the mistake of submitting your cell phone number for any of the surveys, then you should contact your carrier immediately to keep any bogus charges from appearing.

If you downloaded files or games while completing the survey scam, then your computer could very well be infected with a virus. Install and or update your anti-virus software and run a complete system scan.

Posted in FacebookComments Off

Facebook Bieber scam wall post

Facebook comment-jacking? OMG! I Can’t believe JUSTIN Bieber did THIS to a girl

Posted on 30 April 2011. Tags: , , , , , , ,

Justin Bieber scam on FacebookIt’s starting to seem like Facebook can’t win against those who wish to use their service to scam, spam and simply cause trouble. Over the last day or so, a new type of attack has been spreading using the phrase “OMG! I Can’t believe JUSTIN Bieber did THIS to a girl”.

It leads to a page asking you to verify a simple math problem to “prevent bots from slowing down the site”. In actuality, it is another clickjack-type scheme in which you are asked to type the answer into a box.

Comment-jack security check

It doesn’t matter what you type, because it’s a social engineering trick. What you are actually typing is a comment that is used to share the link with your friends on Facebook. You can see the tooltip that says “Add a Comment” in the screenshot.

This bypasses Facebook’s recent attempt at detecting likejacking fraud. Links you comment on are not using the same mechanisms that Facebook is monitoring when you click “Like”.

Many moons ago, the first Facebook attacks started with illegitimate applications asking for permission to access your wall and spread their messages by spamming your friends through wall posts. While this worked well, it was a bit easy for Facebook to track down and remove the bogus apps.

Early in 2010 we saw the first attempts at likejacking. This technique involves layering one image over the top of a Like button and tricking the victim into clicking something that appears to play a video or a continue button, when in fact they are clicking the Like button hidden underneath.

Facebook Bieber scam wall post

More recently we have seen the attackers trying lots of new techniques. In the past few months we have seen them tagging people in photos they are not in to get you to click, inviting people to fake events and even making you an administrator of a Facebook page that isn’t yours.

While protecting yourself may not be as simple as not clicking anything that says “OMG!” that isn’t a bad start. Be skeptical, understand that messages from your friends may not in fact have been sent to you willingly, and if you are really tempted to click, take a short timeout to conduct a Google/Bing search.

As of the time of this writing some of the YouTube videos this scam leads to have been removed by YouTube. However, one video that is still working has over 525,000,000 views since February and thousands of comments in the last 24 hours — in other words, since this Facebook scam has been making the rounds.

To stay up to date on the latest threats, follow us on Facebook. For advice on how to configure your profile to protect your privacy check out our recommendations for Facebook settings.

Posted in SophosComments Off

OMG! I Can’t believe JUSTIN Bieber did THIS to a girl

Posted on 30 April 2011. Tags: ,

Scam Signature MessageOMG! I Can’t believe JUSTIN Bieber did THIS to a girl

biebergirl_wall

Scam Type: Survey Scam, Click-Jacking

Trending: April 2011

Why it’s a Scam:

Clicking the wall post link takes you to the  following page: 

biebergirl_main

On this screen you really don’t have to click the right answer – any input will do. Clicking submit click-jacks your account and loads the following survey scam:

biebergirl_survey

Here we see the end game of a typical Facebook Survey Scam. Each time someone completes a survey, the scam creator gets a commission. The scam creator will possibly have your personal information to do you harm. (depending on the information you submitted in the survey) If you downloaded any games or other files then your computer could be infecting with a virus, trojan or other malware. Never download files from scams like this!   

How to Deal with the Scam:

If you did make the mistake of clicking “Submit” on the main page, you are now spamming your friends with the scammer’s message. You should clean-up your newsfeed and profile to remove references to the scam. (click the “x” in the top right hand corner of the post).

If you made the mistake of submitting your cell phone number for any of the surveys, then you should contact your carrier immediately to keep any bogus charges from appearing.

If you downloaded files or games while completing the survey scam, then your computer could very well be infected with a virus. Install and or update your anti-virus software and run a complete system scan.

If you or your Facebook friends are falling for tricks like this, it’s time to get yourself informed of the latest threats. Be sure to join the Facecrooks page on Facebook to be kept informed of the latest security issues.

Posted in FacebookComments Off

Malicious Spam on the increase again

Posted on 30 April 2011. Tags: , , , , , , , ,

Malware distribution via email is far from dead.  While we had a distinctly quiet period from October 2010 to March 2011, our stats show the bot herders are gearing up again with the proportion of spam with malware attachments rising, although still not as high as the peaks we saw mid last year when the Bredolab and Cutwail botnets were in full swing.

Malicious spam on the increase again

After the bot herders took a brief Easter break, they are back to sending new waves of malicious spam. The first spam campaign was sent by the Cutwail botnet earlier this week. The email claims to be an invoice from Bobijou Inc. – an online jewellery brand. There is a chance that people might fall into this trap especially as it claims money on your credit card was involved. But take a closer look at the subject line: Successfull Order 3677718, that wrong spelling should easily alert you that this email is a scam.

Cutwail Spam Campaign

Another malicious spam campaign originating from the Donbot botnet that came in later this week. It uses a common, uncreative theme with subject line like, “my hot pic : )“, “my naked pic is attached“, etc.  The Donbot botnet’s spam output is on the rise and this is the first time we have seen it spreading malicious attachments.

Dontbot Spam Campaign

Both spam campaigns contain a zipped attachment which, once extracted, contains an executable file that downloads – surprise, surprise – Fake Antivirus:

In addition, this week we have been seeing more of the Asprox botnet’s “Spam from your Facebook account” campaign, that preys on peoples fears about the security of their Facebook accounts. This campaign first came out last year, illustrating that the bot herders behind Asprox often cycle their spam campaigns between UPS, DHL, FEDEX and iTunes Gift Certificate among others.

Recent Facebook spam campaign sent by Asprox

The attachment is a Trojan that aims to seed the Aprox bot executable in the infected host, which is then used for spamming purposes.

SMTP transaction of an Asprox’s process ASPIMGR.EXE

We have blogged about these types of threats many times before.  In a sense, it’s the same old stuff with slightly different social engineering. Be wary.

Posted in SecurityComments Off

Yahoo password question

Why you shouldn’t reveal your Royal Wedding Guest name on Facebook

Posted on 29 April 2011. Tags: , , , , , , , ,

In the absence of a genuine ticket to the real event, Facebook users are encouraging each other to reveal their Royal Wedding Guest name.

Here’s a typical message that is currently being spread by well-meaning users across the social network:

Wedding guest name on Facebook

In honor of the big wedding on Friday, use your royal wedding guest name. Start with either Lord or Lady. Your first name is one of your grandparents’ names. Your surname is the name of your first pet, double-barreled with the name of the street you grew up on. Let’s do this! Post yours here. Then cut and paste it into your status.

Regally yours,
Lady Edith Spanky-Rushmoor

Do you see the problem?

By playing the game, you might be unwittingly making life easier for identity thieves and hackers.

Look at it this way. Think of all the websites which ask you to give it a “secret question” which can confirm your identity in the event of you forgetting your password.

Yahoo password question

If you tell everyone your Royal Wedding Guest name then you are giving away information which might help someone break into, say, your email account.

So, here’s my advice.

Firstly, don’t post this kind of personal information onto the internet – the few seconds worth of amusement you may get by telling people your Royal Wedding Guest name are not worth the potential pain of having your identity stolen.

Secondly, when websites ask you for a “secret answer” to reset your password… lie. You don’t need to tell the truth when you’re asked by a website what your mother’s maiden name was, or the name of your favourite TV show. So, say something random but memorable that no-one is likely to guess like “Xena Warrior Princess” or “Artichoke Sandwich”.

If you use Facebook and want to learn more about threats, you should join the Sophos Facebook page where we have a thriving community of over 70,000 people.

Of course, if you do happen to be one particular couple getting married tomorrow, you’re not going to have any chance keeping your grandparents’ names secret..

Hat-tip: Thanks to Naked Security reader Paul who brought this particular issue to our attention.

Posted in SophosComments Off

The Ultimate Profile Viewer is now being released! Shocking for real! See who visits your profile real time!

Posted on 29 April 2011. Tags: , ,

Scam Signature Message

The Ultimate Profile Viewer is now being released! Shocking for real! See who visits your profile real time! See who invisible you on their friend list chat! Check it now and you will be shocked who viewed your profile now ! See your results here ->

ultimateviewer_wall2

Scam Type: Survey Scam - Profile Peeker – Rogue Application

Trending: April 2011

Why it’s a Scam:

Clicking the wall post link takes you to the  following page: 

ultimateviewer_main

Clicking “Continue” will take you to the following Facebook application installation screen:

ultimateviewer_app

Proceeding with installation is not a good idea. You will be giving a rogue application developer access to all of your Facebook profile information, and they will use your account to spam your friends.

If you do “Allow” the application to install, the following survey scam will be presented:

ultimateviewer_survey

Keep in mind that profile spy and stalker apps are all bogus and violate Facebook’s TOS, and developers do not have access to the information required to complete such applications. For more information about them check out our in dept article:

Facebook Profile Spy, Stalker & Creeper Apps – Everything you need to know

How to Deal with the Scam:

If you did make the mistake of pasting the code into your browser, you are now spamming your friends with the scammersmessage. You should clean-up your newsfeed and profile to remove references to the scam. (click the “x” in the top right hand corner of the post). If your installed anti-virus program caught the malware attempt, then your system should not be affected. If you don’t have anti-virus software installed, then you need to that immediately and run a full system scan.

If you or your Facebook friends are falling for tricks like this, it’s time to get yourself informed of the latest threats. Be sure to join the Facecrooks page on Facebook to be kept informed of the latest security issues.

Posted in FacebookComments Off

The BLOODIEST Fight EVER – BANNED FROM TV!

Posted on 29 April 2011. Tags: , ,

Scam Signature MessageThe BLOODIEST Fight EVER – BANNED FROM TV!

bannedufc_wall

Scam Type: Survey Scam 

Trending: April 2011

Why it’s a Scam:

Clicking the wall post link takes you to the  following page: 

bannedufc_main

If you do follow their directions and click to “Watch the Video” you are taken to the follow page:

bannedufc_survey

Here we see the end game of a typical Facebook Survey Scam. Each time someone completes a survey, the scam creator gets a commission. The scam creator will possibly have your personal information to do you harm. (depending on the information you submitted in the survey) If you downloaded any games or other files then your computer could be infecting with a virus, trojan or other malware. Never download files from scams like this!   

How to Deal with the Scam:

If you did make the mistake of pasting the code into your browser, you are now spamming your friends with the scammers message. You should clean-up your newsfeed and profile to remove references to the scam. (click the “x” in the top right hand corner of the post). It also appears that this scam creates a fake event on your wall. You need to delete this event as well.

If you made the mistake of submitting your cell phone number for any of the surveys, then you should contact your carrier immediately to keep any bogus charges from appearing.

If you or your Facebook friends are falling for tricks like this, it’s time to get yourself informed of the latest threats. Be sure to join the Facecrooks page on Facebook to be kept informed of the latest security issues.  Also check out:

Your Ultimate Guide to Facebook Scams and How to Deal with Them

How to spot a Facebook Survey Scam

Posted in FacebookComments Off

Malware spammed out as “FaceFacebook Support”.

Posted on 28 April 2011. Tags: , , ,

Another Facebook spam mail pretending that your password is not safe, currently circulating on Internet.
The subject is: FaceFacebook Support. Personal data has been changed!ID55733.
The email comes with an attachment called New_Password_IN33494.zip.



The zip file (New_Password_IN33494.zip) contain New_Password.exe file, Quick Heal detects this file as a “Trojan.Menti.gen”.
New_Password.exe tries to fool the victim as it seems a Microsoft Word Document. You should never trust a file by its icon, always pay attention to the file extension. Also make sure that Windows Explorer is set to show file extensions option.



On execution New_Password.exe writes into the memory space of svchost.exe, deletes itself and downloads a file called document.doc from the domain profmiale. ru which is then saved to the desktop.This file conatins a username and password.



While the victim is looking at these new login credentials, another binary is get downloaded from profmiale. ru and saved to the %temp% folder as 1.tmp. Once 1.tmp is executed, the computer immediately reboots.

Files:
%userprofile%\Desktop\document.doc
%userprofile%\Local Settings\Temp\1.tmp


Thanks Mahesh Mane for the detail Analysis.

500 free credits from Facebook – malware

Posted on 28 April 2011. Tags: , , , , , ,

There’s no such thing as a free lunch – or free Facebook credits.  As proof consider the attack described below which has several stages:

1)      Users get messages with offers of “free Facebook credits”

2)      These trick users into running a malicious JavaScript

3)      The infected user is lead to a website – which probably offers the malware distributor some pay per click revenue

4)      The malicious script sends out more “free Facebook credits” messages and the cycle starts again

The attack starts in several ways but always includes messages from a compromised friend account:

  • A message with detailed instructions that require actively running a malicious JavaScript:

  • A chat message with the text: “%firstname% just tried this and got 500 Facebook credits works great <bad link>”  (The link provides instructions similar to those above about loading the code into the address bar).
  • A message is posted on the compromised user’s wall:  ”Did you guys hear about the Facebook glitch you can get 500 Facebook credits? check it out <bad link> “.

  • An event invitation with similar free credit content and a link to the instructions website.

Once a user follows the instructions the JavaScript malware will do the following:

1.  Redirect the user to a “confirm your identity” page.

2.  Users clicking on “Continue” will then be directed to a verification dialog box with link to “Get the New iPhone 4 Right Here”.

3.   The final destination for those clicking on the iPhone 4 link will be the Smiley Central website.

A certain number of the compromised user’s friends will now receive the “500 free credits” messages.  Not all friends will receive the message – in one script sample I analyzed the message was sent to 15 friends.  In other scripts some of the details changed but the message and method basically remained the same.

Commtouch’s Command Antivirus detects the JavaScript as malware: JS/Agent.ON.

Be careful when trusting messages, even from your friends. Safe Browsing!

Posted in CommtouchComments Off

“Download photoalbum” another variant of “i got u surprise”

Posted on 27 April 2011. Tags: , , , , , , , , , , , , ,

Previously we have written about the “i got u surprise” spam trojan on Facebook. And today, we still discovered another variant. This time, the message that is received by the victim is only “u?” and followed by a link, with the subject is “Hello“.

When the link is clicked, will lead to the following address:

  • http://photo-album-#####.##/

The site only contains a message “Download photoalbum“, which is a link to the trojan file.

Just like previous variants, when executed, it will send the same spam message to every friend on Facebook. The data that is used for spam are obtained by querying their C&C servers, this time located at ddk100.com, which is previously located at ddk1000.org.

After decoding, we get:

1000|60000|Hello|u?
[http://goo.gl/Slqcr|http://goo.gl/QL5pE|http://goo.gl/FEUHe|http://goo.gl/4ol7i|

http://goo.gl/uvKBq|http://goo.gl/9TC4b|http://goo.gl/Si0jK|http://goo.gl/DcpVL|

http://goo.gl/mxcsM|http://goo.gl/vDFeS|http://goo.gl/5pHda|http://goo.gl/NagRi|

http://goo.gl/l7vbA|http://goo.gl/CC7kk|http://goo.gl/5uoiD|http://goo.gl/6vALZ|

http://goo.gl/ucVv8|http://goo.gl/L62bA|http://goo.gl/Rf6iM|http://goo.gl/TuHXw|

http://goo.gl/VWMUT]

Another interesting thing is, this malware able to create a dummy blog at Blogger.com, and then make the short URL of it using “goo.gl“, automatically. This blog created shortly after the victim login into their Google account. Then, the newly created blog URL and the short URL will be sent back into their C&C servers. The blog is just will be set as a redirector that will direct the victim to the malicious site that contains malware, by changing the blog template to load the address designated by “url.js”.

If you get a message that contains one of these links, please do not click!:

  • hxxp://goo.gl/Slqcr
  • hxxp://goo.gl/QL5pE
  • hxxp://goo.gl/FEUHe
  • hxxp://goo.gl/4ol7i
  • hxxp://goo.gl/uvKBq
  • hxxp://goo.gl/9TC4b
  • hxxp://goo.gl/Si0jK
  • hxxp://goo.gl/DcpVL
  • hxxp://goo.gl/mxcsM
  • hxxp://goo.gl/vDFeS
  • hxxp://goo.gl/5pHda
  • hxxp://goo.gl/NagRi
  • hxxp://goo.gl/l7vbA
  • hxxp://goo.gl/CC7kk
  • hxxp://goo.gl/5uoiD
  • hxxp://goo.gl/6vALZ
  • hxxp://goo.gl/ucVv8
  • hxxp://goo.gl/L62bA
  • hxxp://goo.gl/Rf6iM
  • hxxp://goo.gl/TuHXw
  • hxxp://goo.gl/VWMUT
  • hxxp://wpiulfcwa.blogspot.com/
  • hxxp://kstxmjqgk.blogspot.com/
  • hxxp://piajetqxo.blogspot.com/
  • hxxp://lqehqblph.blogspot.com/
  • hxxp://gtffwnzra.blogspot.com/
  • hxxp://tcjibfezs.blogspot.com/
  • hxxp://rxlabkufg.blogspot.com/
  • hxxp://wydqfrnnd.blogspot.com/
  • hxxp://dkrvrvhfr.blogspot.com/
  • hxxp://sqpdtvhqi.blogspot.com/
  • hxxp://vqujlkgco.blogspot.com/
  • hxxp://balpfvhmc.blogspot.com/
  • hxxp://cqfupksry.blogspot.com/
  • hxxp://ahvrmdfky.blogspot.com/
  • hxxp://lyglmonpx.blogspot.com/
  • hxxp://acyzqudbo.blogspot.com/
  • hxxp://nhbqcsrjz.blogspot.com/
  • hxxp://dagmajmtr.blogspot.com/
  • hxxp://fyjdppbyb.blogspot.com/
  • hxxp://txghihpgs.blogspot.com/
  • hxxp://oexfnbpuj.blogspot.com/

Emsisoft Anti-Malware detects the threat as a Trojan-Downloader.Win32.FraudLoad. At the time of writing this article, the detection rates are still low, only 14/41:

Join our Emsisoft Facebook page, and don’t forget to follow our Twitter to keep you stay update.

Posted in EmsisoftComments Off

Look at you:P You gotta love this, I found this video on facebook

Posted on 27 April 2011. Tags: ,

Scam Signature Message: Look at you:P You gotta love this, I found this video on facebook

lookatyou_wall04_11

Scam Type: Malware - Phishing

Trending: April 2011

Why it’s a Scam:

Clicking the wall post link takes you to the  following page: 

lookatyou_warning

This page is a phishing site set up by the scammers. Anytime you are redirected from Facebook to another website, always verify that you are still on Facebook before re-entering your login credentials. Our anti-virus program also caught the following virus as this page loaded:  

lookatyou_virus

How to Deal with the Scam:

You might need to clean up your newsfeed and profile to remove references to the scam. (click the “x” in the top right hand corner of the post). If your installed anti-virus program caught the malware attempt, then your system should not be affected. If you don’t have anti-virus software installed, then you need to that immediately and run a full system scan.

Posted in FacebookComments Off

My Top Profile Viewers: See who views your profile

Posted on 27 April 2011. Tags: , , ,

Scam Signature Message: My Top Profile Viewers: See who views your profile @

peekerpage_wall

Scam Type: Malware - Profile Peeker

Trending: April 2011

Why it’s a Scam:

Clicking the wall post link takes you to the  following page: 

peekerpage

Over 70,000 Facebook users have been victimized by this scam so far! Never, ever copy and paste code directly into your browser. You bypass security controls built into your web browser, and you totally expose your computer to the code creators. Sometimes you might be lucky and just have a survey scam load; however, these victims aren’t so lucky. We copied the code into the browser on our test machine, and we received this virus alert! 

peekerpage_virus

Keep in mind that profile spy and stalker apps are all bogus and violate Facebook’s TOS, and developers do not have access to the information required to complete such applications. For more information about them check out our in dept article:

Facebook Profile Spy, Stalker & Creeper Apps – Everything you need to know

How to Deal with the Scam:

If you did make the mistake of pasting the code into your browser, you are now spamming your friends with the scammersmessage. You should clean-up your newsfeed and profile to remove references to the scam. (click the “x” in the top right hand corner of the post). If your installed anti-virus program caught the malware attempt, then your system should not be affected. If you don’t have anti-virus software installed, then you need to that immediately and run a full system scan.

If you or your Facebook friends are falling for tricks like this, it’s time to get yourself informed of the latest threats. Be sure to join the Facecrooks page on Facebook to be kept informed of the latest security issues.

Posted in FacebookComments Off

Facebook Offends Gay Community

Posted on 25 April 2011. Tags: , ,

facebook_logoFacebook seems to be making quite a number of enemies these days with their decisions regarding censorship. First they made a bunch of breastfeeding mothers really angry by removing photos of breastfeeding babies and now they went ahead and made the gay community really angry by removing a relatively simple picture of two men kissing. As a result, Facebook was forced to swallow its pride and admit that they had been mistaken in taking down the photo.

About the Photo

The photo in question wasn’t racy and it wasn’t lewd, though it might make some people uncomfortable. The photo was, in fact, taken from a scene in British Soap Opera EastEnders. Richard Metzger used the photo in his blog post and it was flagged down. Facebook moderators apparently saw the photo and deemed it proper to remove it. They then inserted the customary ‘Content that you shared on Facebook has been removed because it violated Facebook’s Statement of Rights and Responsibilities. Shares that contain nudity, or any kind of graphic or sexually suggestive content, are not permitted on Facebook.’, hoping to make gay rights activist Richard Metzger understand why the photo “just couldn’t be on Facebook”. What they managed to achieve, instead, was to make the gay community and even the general public extremely angry, prompting users to upload the photo to their own accounts in protest. What’s ironic is that the photo was actually used to build support for a “kiss-in” event meant to promote anti-homophobia after one gay couple was asked to leave the John Snow Bar in Soho because they were kissing. By taking it down, Facebook unwittingly put itself in the same boat as John Snow Bar.

Swallowing their Pride

The protesters apparently got Facebook to change their mind, because soon after all the pictures erupted all over the place, Facebook re-evaluated their decision and said in a statement that the photo did not violate their Statement of Rights and Responsibilities. They also said that the photo was “removed in error” and that they “apologize for any inconvenience”. Right, Facebook, is that really the best apology you can come up with? Well, either way, what’s done is done, and at least they got Facebook to retract its position. It’s an important victory, considering how Facebook is planning to embrace a pro-censorship attitude to get into China.

Posted in FacebookComments Off

Facebook hack tool is nothing else but a scam

Posted on 22 April 2011. Tags: , , ,

A Twitter follower sent me this link to check out: www.hackfacebook.org

This page promises to retrieve the Facebook password from your cheating girlfriend or if you just have an insatiable desire to know everything about a person.

Are you ready for this? Let’s:

But don’t get too excited just yet! You need to fill out a survey:

Online surveys are just dumb questionnaires to get you to enter your cell phone number.

What is the big deal you may ask? Well, By entering your number in there you agree to a contract. It is very sneaky and well done courtesy of online marketers. Since most people don’t read the fine prints, they get stuck paying charges for something they never wanted in the first place.

This particular scam charges you $5 a week for ‘Amazing facts’ or you may call this garbage.

Jerome Segura

Posted in FacebookComments Off

Is your kid having Facebook account?

Posted on 21 April 2011. Tags: , , ,

It has been observed that more and more children are using social networking websites. Kids even fake their age to join Facebook. Facebook is for high school and college students. Facebook is intended solely for users who are thirteen (13) years of age or older and the age limit is there for the purpose. Any registration by children under 13 is unlicensed and in violation of the terms of use.

Under age kids who join Facebook are not aware or old enough to understand the dangers involved when on Facebook. I have seen these kids engage themselves in online chat with people they neither know. These kids connect as well as send invites to connect with them to people whom they are not familiar with.

Our observation also reveals that most of the children using Facebook don’t use privacy settings. This makes them more vulnerable to stalkers and cyber bullying on the social networking sites. Most of the children do not configure their Facebook account properly and publicly display their profile including address and phone numbers. Facebook for kids is kind of whole new world but at the same time there are predators who are actively searching for next victim. I here by advise all the parents to take out some time and make sure your child’s Facebook account has right privacy settings and restrictions in place. One can follow below basic guidelines to start with:

- First of all do not allow kids under 13 to join Facebook at all. Try to explain and educate the kid that it is not safe for him/her to be on Facebook before age and he/she can do it when they are of appropriate age and you will be the one who will help in opening the account. Parents can be right judge to determine when they feel their children are mature and responsible enough to join social networking sites like Facebook.

- If your child is above 13 years of age and has opened Facebook account the first thing you should do is make sure he/she configures the right privacy settings. Configure the privacy settings of the child’s Facebook account to be accessible only to friends and not with everybody. Its important to understand the privacy settings provided by Facebook and teach your kids how to control their privacy.

- Connect yourself (and other seniors from family members) to kids account as a friend. So that you will keep on receiving all the posts that the child is putting to all his friends. In this way you will be aware of what’s going on the child’s Facebook account and can guide your child if he/she is posting messages/photos they should not be posting. Inappropriate pictures, messages can result in damage to a child’s reputation. It is good to teach your kids to think before they post. It is important for kids to understand that anything they create or post can be copied, altered and sent around.

- Restrict your child’s online time as many kids spend hours and hours on Facebook without them knowing how much time they have been online. Its good to restrict it before they become addicted to it.

- Teach your kid a very simple rule and if followed can avoid most of the problems on Facebook. If your kid wouldn’t want someone saying it to them, they should not say (post) it to anyone else. Also implies like if your kid would not say it to someone in person, they should not post it.

- Teach your kids to say no to strange request of becoming a friend on Facebook. As once you accept stranger among your friends any posts or communication you do on Facebook with your fiends is also going to be seen by the stranger.

- If your kid decides to meet a online friend whom he has not seen before, let them know that you too are interested to meet the friend and it is better and safe to see the online friend when you are there.

Try to make use of technology by installing and configuring parental control features that will help your child to visit only kids safe websites and also to restrict their time on the internet. Quick Heal Internet Security 2011 and Quick Heal Total Security 2011 has very good parental control features. For more information please visit http://www.quickheal.com/qh-total-security.asp

Anger after scam-exposing community shut down by Facebook

Posted on 21 April 2011. Tags: , , , , , , , , , , , , , , ,

The Bulldog EstateIn a bizarre and hard-to-understand move, a Facebook page which claims it helped countless Facebook members stay safe online on the social network has been shut down… by Facebook.

The Bulldog Estate is one of a number of different resources on the internet dealing with the subject of Facebook scams, rogue applications, and the like. Other examples include Scam Sniper, FaceCrooks and Sophos’s own Facebook community.

On Monday 18th April, the Facebook page belonging to Scam Sniper was shut down by Facebook authorities:


Scam Sniper
Notice: The Sniper Has Been Shot. Facebook Disables The Admins Of The Facebook Fan Page Scam Sniper. http://goo.gl/RdlVF

Later that day, the same fate befell The Bulldog Estate’s Facebook presence, leading the scam-exposing site to say that Facebook had made a bad PR move:


The BULLDOG Estate
The BULLDOG Estate Facebook Page Has been Closed by Facebook, They Dont Like bad press, Watch… http://goo.gl/fb/K3ODY

The Scam Sniper Facebook page was eventually restored, but Tony Mazan, the owner of The Bulldog Estate, hasn’t had the same luck.

Mazan has been contacting Facebook since Monday attempting to understand why The Bulldog Estate’s Facebook page was closed, and how it might be recovered.

Today Mazan received a standard response from Facebook, which still wasn’t specific about the reasons that The Bulldog Estate’s Facebook presence had been killed off:

"Hi Tony

You created a Page that has violated our Statement of Rights and Responsibilities, and this Page has been removed. Facebook Pages may only be set up for the purpose of promoting a business or other commercial, political, or charitable organization or endeavor (including non-profit organizations, political campaigns, bands and celebrities), and only by an authorized representative of the entity or individual that is the subject of the Facebook Page. By creating a Facebook Page, you represent and warrant that you are authorized to do so by the person or entity that is the subject of the Facebook Page. Among other violations, Pages that are hateful, threatening, or obscene are not allowed. We also take down Pages that attack an individual or group or that promote or glorify violence, intolerance, racism or discrimination. Continued misuse of Facebook's features could result in your account being disabled."

This “explanation” clearly hasn’t satisfied the many fans of The Bulldog Estate, who have created pages urging Facebook to reinstate The Bulldog Estate, and left messages on Facebook’s official safety pages.

Tony Mazan“We helped countless members on Facebook and supported Facebook in trying to help Facebook users stay safe online, We do not advertise or make money from our help, our blog writers are volunteers, and our admins are volunteers,” Tony Mazan of The Bulldog Estate told Naked Security. “What we can not understand is why Facebook removed a real help group and yet there are thousands of rogue applications, thousands of hate filled pages, thousand of fake profiles. We are as real as it gets and get shut down.”

“Is it because Facebook security never gets comments like ‘We Love you’ or ‘thanks for always alerting us on time with user-friendly information’,” continued Mazan. “As one of our supporters said – you may shut the dog outside, but you will never silence the bark.”

Although the language used on The Bulldog Estate’s website doesn’t beat around the bush, it seems clear to me that the content they produce is beneficial and helps Facebook users avoid scams and other attacks.

Maybe Facebook needs to be a little less robotic in its shutdown of this scam-exposing community, and could work a little more closely with Tony Mazan and his colleagues to bring what is a helpful resource for its users?

Update: The Bulldog Estate reports that its Facebook page has now been restored, and that Facebook has apologised for its mistake.

Posted in SophosComments Off

How to report a Facebook scam

Posted on 21 April 2011. Tags: , , , ,

fc_dudeAt some point in your life, one or several of the Facebook scams out there might affect you enough to look for ways on how to report them and go on a vendetta rampage against the scam creator.  In fact, one of the most effective tools against the prolific scammers on Facebook is to report their rogue applications, fake events, wall postings, etc. If enough people take the time to report the Facebook scam, then hopefully, eventually, Facebook will take action and shut them down! 

So here goes.  How exactly do you report a Facebook scam? 

Tell Mark Zuckerberg 

 .or at the very least tell it to the people in his company tasked with monitoring and responding to Facebook scam complaints.  Be on the lookout for that report button that’s hidden somewhere on the page like those hidden Mickeys on Disney channel.  

1.  Reporting a Link:  Most Facebook scams propagate through the newsfeed.  Here, you can already take action and report the scam link.  Just hover your cursor over the post and you will see an X button appear on the right hand corner.  Clicking this X button will then give you the option of marking that particular post as spam. 

report_scam_wall
 Doing so will replace the post with this text:

Thanks for Your Help

Your feedback helps us keep News Feed clear of spam. Undo Spam Report

File a more detailed report 

Clicking the “file a more detailed report” gives you the option of classifying the post as: 

. Spam or scam

.   Contains hate speech or attacks an individual

.   Violence or harmful behavior

.   Nudity, pornography, or sexually explicit content 

2.  Reporting an Application:  Applications are popular scam vehicles because of the fact that they can legitimately mine your profile information.  Of course, they can also convince you to do some other nifty and ultimately stupid things like answer a senseless survey about what type of werewolf are you, or what other things you do with your toothbrush aside from brush your teeth.  It’s understandable how these mindless surveys can induce rage from people who are expecting a free iPad. 

To report an application you must scroll down to the bottom of the page and look for the “report App” link which, interestingly enough is right above the share link.  Clicking this link will then give you more options on how to categorize your complaint: 

* Privacy issue

* Inappropriate or pornographic content

* Advertising issue

* Spam

* Bullying/Harassment

* Other

You can opt to send a copy of your complaint to the developer and you can also upload a screenshot to give the Facebook security team more info from which they can base their decision.

report_scam_app
Another option to report a rogue application is on the familiar application installation screen:

report_scam_app2
 

3.  Reporting an Event or a Group:  The report link for an event or a group can be found way down on the page after the messages.  As with the report a page link, the options available here are: 

* Spam or scam

* Contains hate speech or attacks an individual

* Violence or harmful behavior

* Nudity, pornography, or sexually explicit content

The wall automatically loads older posts as you scroll down so you may have to scroll down for quite a bit before you get to the report link at the very bottom of the page – which is a weird place to set a report button for a company that claims utmost vigilance in protecting its members against scams.

report_scam_event
 4.  Reporting a Message:  The report button for Facebook users with the old messaging system can be found at the top bar before the message much like on yahoo mail, Gmail, etc.  Just click the report as spam button and voila! The report is sent. 

Things get a little more complicated for Facebook users having the new Facebook email.  Here, you have to click the actions dropdown button and choose report as spam.  Facebook will then ask you to confirm if it’s indeed spam.  If yes, it will then move the message to the junk folder – presumably so you can peek at it again should you changed your mind later.  The good thing in the new Facebook email is that you can also report or block the user who sent the spam message right from the dropdown. 

5.  Reporting a Photo or a Video:  The report button for Photos and Videos can be found on the right-hand sidebar of the item.  The options made available when you click the report link on a photo are: 

Photo:

* Spam or scam

* Nudity or pornography

* Graphic violence

* Attacks individual or group

* Hate symbol

* Illegal drug use

report_scam_photo
For a video, the options that appear upon clicking the report link are:

 Video 

* Spam or scam

* Contains hate speech or attacks an individual

* Violence or harmful behavior

* Nudity, pornography, or sexually explicit content

 A caveat from Facebook Help though:

 ”It is not a violation of our Statement of Rights and Responsibilities to post a photo that is unflattering, so please don’t report a photo just because you don’t like the way you look in it.” 

So if someone posts a picture of you drooling in your sleep while you scratch your exposed tummy or laughing out loud with an extra large booger in your nose – don’t get your hopes up that it will be taken down.  But wait, the important thing is that you can report scams and spam right? 

6.  Report a Facebook User:   In the event of a 419 scam, a cyberbullying scam or a case of identity theft, you can also report a Facebook user profile to the Facebook security group.  Identity thefts and cyberbullying cases are pretty easy to recognize.  419 scams on the other hand may be a bit harder to identify since you never know when you are talking to a real Nigerian prince or a friend who got mugged in London and lost much of his or her English writing skills along with their wallet. 

In any case, the report button for Facebook profiles can be found near the bottom of the left-hand sidebar – below the profile links, the friend list, the family list, the share profile link.. In fact the report link is the bottom-most link -  it’s almost like scrolling down has become the digital version of Government red tape. 

Upon clicking the report link, the following options are then made available to you: 

Please select one of the following options: 

* This is my profile, but I no longer have access to it

* This profile is pretending to be someone or is fake

* Inappropriate profile photo

* Inappropriate profile information

* This person is bullying or harassing me 

Select the option below if you would like to block this person:

* Block “user name” 

Blocking means you won’t be able to see or contact each other on Facebook. 

7. Report to Facecrooks – Last but not least, be sure to report any scam you run across to us, so we can alert the Facecrooks community! 

Reporting Facebook scams is definitely a very important part in keeping the whole social network secure.  Security experts say that fighting Facebook scams is an uphill battle because it’s almost as easy for scammers to change scam links or create new profiles as it is for Facebook users to report these scams.  You may be only one of the 600 million users on Facebook, but taken as a whole, it’s people who take the time to report scams, security issues and bugs that make this digital social frontier a safer place. 

Posted in FacebookComments Off

Facebook’s two-factor authentication announcement raises questions

Posted on 21 April 2011. Tags: , , , , , , , , ,

Text message receivedAmid mounting criticism of Facebook’s attitude to its users’ privacy and safety, the social network has announced that it is introducing a two-factor authentication system in an attempt to prevent unauthorised logins to accounts.

The idea is that if you log into your Facebook account from a computer or mobile device that Facebook doesn’t recognise as one that you have used before to access the website, then you’ll have to enter a code to confirm you are who you say you are.

Two factor Facebook authentication announcement

I’m glad to see Facebook introduce what sounds like an additional layer of protection for users, at least for those users who chose to enable the option. Two factor authentication doesn’t address the many other Facebook privacy and safety concerns that are troubling users, but it’s no bad thing.

Unfortunately the short mention of the feature on Facebook’s blog leaves some questions unanswered.

    1. How can users enable the option? My guess is that users will find the option, once it has been rolled out to their accounts, under Account / Account settings / Account security, but it would have been nice if Facebook had told people. None of the Facebook accounts I have checked so far appear to have received the option, so I cannot confirm.

    2. How often will the code change? It would be sensible if the code changed each time someone tries to access your Facebook account from an unknown computer, but Facebook doesn’t say in its blog post.

    3. How will users receive the code? Again, Facebook doesn’t say. But my guess is that Facebook will send you the code via an SMS message to your mobile phone. That means, of course, that you have to trust Facebook with your mobile phone number which privacy-conscious people may be understandably wary of doing.

    The one-time password system announced by Facebook last October also relied upon SMS messages – which raised some valid safety concerns.

So, it sounds like it may be a case of swings and roundabouts. A win for security and privacy on one hand is a loss on the other, as you have to trust Facebook with your phone number.

Remember, Facebook has been wanting your mobile phone number for some time and isn’t been above using scare tactics to get you to hand it over.

Blizzard authentication tokenI, for one, won’t be handing over my mobile phone number to Facebook in exchange for this two-factor authentication system.

I might, however, have considered signing up for a small hardware token that I could keep on my keychain, and rely upon it produce a one-time code that can be entered at login alongside my username and password.

You may have seen such devices being offered by online banks and some of the major online games like World of Warcraft.

Of course, such authentication devices cost money and require infrastructure changes at the website’s end, but – hey! – if Facebook introduced something like that they could potentially charge a small amount of money for those users who want to take a stronger line on their privacy and online safety.

If you’re a member of Facebook don’t forget to join the Sophos Facebook page to stay up-to-date with the latest security news.

Update: Naked Security follower Neil Adam raises the valid point that you probably wouldn’t want a hardware authentication fob for every website you log into. If we did, we’d probably all have very lumpy trouser pockets.

Posted in SophosComments Off

shocktube.info is a scam!

Posted on 21 April 2011. Tags: , , , ,


















Beware, this site was reported involved with a scam and Likejacking activity. The spam was spread on Facebook, with a message like this:

UNFASSBAR! … Ich hab jeden Respekt vor Miley Cyrus verloren nachdem ich DAS Video gesehen hab

or

WAHNSINN! Ich hab jeden Respekt vor Miley Cyrus verloren als ich dieses Video gesehen hab

 

Site involved:

  • hxxp://miley.shocktube.info
  • hxxp://mileyc.shocktube.info
  • hxxp://aprilfool.shocktube.info

.

So, think first before you click, don’t be fooled ;)

Posted in Facebook, Scam, SpamComments Off

Facebook announces two-factor authentication

Posted on 20 April 2011. Tags: ,

Facebook will be rolling out the two-factor authentication option which, once turned on, will ask users to insert a code when they try to log into the social network from a new device. No details were shared on when the option will be available to all or how it will look.

The news was announced by Facebook’s director of engineering Arturo Bejar on the company blog, along with the change that will make Facebook automatically switch the user’s session back to HTTPS after he or she is done using an application that doesn’t support it.

As you might remember, when Facebook offered the HTTPS option in January, it took only a few weeks for a glitch that automatically deselects the secure browsing option to be unearthed. Hopefully, this improvement will mark the end of those problems.

Although, judging by the comments under the post, there are many who still believe that the HTTPS option – which is still opt-in – should be set to default, even if it interferes with some of the things Facebook offers.

Posted in FacebookComments Off

Older Entries »

Security Status

Beware Facebook "Timeline" scams http://t.co/W5EW0cVv
1 month ago
Nigerian government (unknowingly) hosts phishing website http://t.co/uQd42ENw
1 month ago
PCMag Awards McAfee All Access its Editors’ Choice: SANTA CLARA, Calif.--(BUSINESS WIRE)--McAfee today announced... http://t.co/FakV7Vd8
1 month ago
RT @mikko: I hadn't noticed Google Maps has added 3D models of buildings. Here's a (very accurate) view of F-Secure HQ in Helsinki http://t.co/IKfAZlak
1 month ago
North Koreans aren't known for their online presence. But others may be lured into clicking Kim Jong-Il 'videos' too http://t.co/yQOon6YT
1 month ago
How to Protect Your Professional Reputation on Facebook Timeline http://t.co/I4bcR2VN
1 month ago
This is pretty impressive from @Softpedia: Facebook scans 2 trillion link clicks and blocks 220 million posts each day http://t.co/vKsn9gNl
1 month ago
Need for integrated approach to security in industrial control systems - http://t.co/tPBCNOow with @PikeResearch
1 month ago
Some free-based music we play at work http://t.co/xu5agZfc
1 month ago
Japan’s cyber defense weapon: a virus. It includes quotes by @Luis_Corrons via @InfosecurityMag
1 month ago