-
- gcluley: What can secure software development learn from Bill Shakespeare? http://t.co/aGpajSnr20 minutes ago
- SophosSupport: How to uninstall Sophos Mobile Security for Android: http://t.co/aQedSnXn28 minutes ago
- gcluley: TV tech hacked sports show's website to earn virtual cash http://t.co/zfPCm2mzabout 1 hour ago
- gcluley: Doctors shouldn't buddy up with patients on Facebook or Twitter, hospitals warn http://t.co/BJUgdb8Nabout 2 hours ago
- SophosSupport: Application control-list of apps for June release now available for review: http://t.co/RbsXuhjLabout 2 hours ago
Monthly Archives: June 2008
SQL attacks: now using .MOBI domains and installing scareware
Everyday, I look through the domains we detect as Troj/Iframe-AG because they are the domains associated with the SQL injections that have been plaguing the web over the last few months (1, 2, 3 and 4). This morning I saw Read more…
Viral Versioning
We've seen increased numbers of viruses this year, not least from the Sality family, and that's included a fair amount of battling with corrupt infections (1, 2). But while analysing the code, I was reminded of an unusual quirk of Read more…
Crime is winning the day
Just a typical day at Sophoslabs. I wouldn't say quiet exactly, because we never are these days, but nothing especially new, just variations on familiar themes. On the spam front there's been a large number of phishing campaigns as usual. Read more…
World of Warcraft strikes back against game-related cybercrime
Blizzard, the company behind the popular online role-playing game "World of Warcraft", has announced that it is producing a hardware token device to help protect its gamers against cybercriminals. In a trick nabbed from an increasing number of online banks, Read more…
Advantage, Hackers?
SophosLabs is identifying more and more websites all the time which are being poisoned with SQL injection attacks. The latest high profile site to catch their attention is the Association of Tennis Professionals, which is carrying scripts designed to infect Read more…
Must reads: If you do anything today...
Two recently published articles are definitely worth a read. Microsoft SQL Injection advisory In a previous post [1], I discussed the fact that the recent surge in SQL injection attacks warranted more attention, to alert administrators to the issue. Without Read more…
Game, set and match.
Today is the first day of Wimbledon 2008, one of the four grand slams. With a large global audience, viewing figures for these top tournaments are huge. Similarly, the volume of users browsing the various web sites associated with world Read more…
Storm is not gone
On this quiet Sunday one thing worth mentioning is definitely a new Storm campaign that was spotted in our traps about an hour ago. This time the social engineering technique combines adverts for an alleged pornographic content hosted on a Read more…
Poetic spam? damn..
We've recently seen an unusually poetic attempt at drawing people in to the 'get rich quick' scams in our spam queues. Someone seems to have actually put a little effort in here; Time is getting short, so you can't afford to Read more…
Install Anti-Virus Software on a Webserver? No need mate!
When we contact the owners of websites that have been hacked to serve up malware, we often encounter the response "Install Anti-Virus Software on a Webserver? No need mate!". This response is fairly common, and not just from the Linux Read more…
RECon'08 wrap-up
Several analysts from Sophos recently attended the RECon'08 Reverse Engineering conference held in Montreal. Although not an "anti-virus industry" conference, the quality of trainers, presenters and delegates was outstanding and gave us a chance to mingle and talk to other Read more…
Breaking (malware) news: New earthquake in China! Olympic games under threat of failure!
With the Olympic games in Beijing a little over a month away, spammers and malware authors are coming up with new campaigns to take advantage of this highly anticipated event. Today, we received a new spam campaign that reports a Read more…
Scramble! Scramble! SQL injection - time for an alert?
Sadly, it would appear the recent SQL injection shenanigans [1] are continuing apace. Back in May, I took a look at a couple of weeks' worth of data on the sites we had seen that had fallen victim to the Read more…
The World-Wide iPhone Exchange
Sophos has just returned from the Apple WorldWide Developer Conference, an annual meet-up of Mac (and this year, iPhone) developers eager to discover and discuss information about what's new in writing software for their favourite platform. If you missed the Read more…
End of the internet - again?
Every day while I am driving to work I listen to the excellent Today programme on BBC Radio 4. Long time ago when I moved to England I was surprised that a station with almost no musical content was so Read more…
Firefox 3 imminent!
Today is the day for the release of the Firefox 3 - the first major update from Mozilla since, mmm, Firefox 2. Anyhow, it is eagerly anticipated by many, including those of us who have been using the beta releases Read more…
Harbouring a Criminal
Several companies have used rootkits for allegedly bona fide purposes. The most notable was when a certain well-known electronics and media company, a personyfication (sic) of reliability some might say, used a third-party driver as part of their Digital Rights Read more…
Happy Father's Day! Have some malware..
Our spamtrap networks have been hit with a new malware attack posing to be an e-card from Regards.com service: The link takes you to a compromised page on a PHP-based forum site, which in turn performs a HTTP redirect to Read more…
Spammer TicketMaster
With the 2008 European Soccer Championships taking place from June 7 to June 29, 2008, in Switzerland, spammers are taking advantage of it due to the limited availability of game tickets. Today on one of our European spam feeds, we Read more…
Bot Master Bentley Behind Bars - A Small Victory
When I give presentations or tours of SophosLabs one of the most common questions I am asked is "Do you work with law enforcement agencies to track down the malware authors" my usual response is that "Yes but our help Read more…
