-
- duckblog: Get into RSA 2012 in San Francisco for free! Use the code SC12SPH - http://t.co/DXO28TCYabout 3 hours ago
- ChetWisniewski: Update on the KPN compromise in The Netherlands, company says "password are encrypted with UTF8" http://t.co/EmDuXfqSabout 3 hours ago
- gcluley: Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/aN78hlkpabout 6 hours ago
- ChetWisniewski: Leaks website Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/OxSK9sifabout 6 hours ago
Monthly Archives: October 2008
The least pleasant aspect of my job
The least pleasant aspect of working at SophosLabs is that some of the images in spam or in the spammed URIs are of a disturbing/graphic/illegal nature. We report emails and websites to the UK based Internet Watch Foundation (IWF) and Read more…
More information about critical Microsoft security vulnerability
As anticipated in the blog entry I made earlier today, Microsoft has published a highly critical patch (known as MS08-067) for Windows users. Vanja in our labs has described the issue in greater detail on the SophosLabs blog and there Read more…
MS08-067 - an out-of-band Windows critical security update
When Microsoft decides to release an out of band security update only a week after the regular monthly update you can be sure that we are dealing with a serious issue. You can read more about it in Microsoft Security Read more…
IT staff await critical security update from Microsoft
IT system administrators are being warned today about a critical security vulnerability in versions of Windows, which could allow hackers to install malicious code (such as a worm) without user intervention. According to Microsoft versions of its Windows 2000, Windows Read more…
Safari not-so-goody
If you're anything like me then you'll have a favourite browser that you use most of the time. Even if you have more than one installed on your desktop, my bet is that there's one you use in preference and Read more…
AKILL's hacker accomplice served with three month sentence
A University of Pennsylvania student has escaped charges related to possessing child pornography, but been sentenced to three months in prison for his part in a worldwide botnet of compromised computers. 22-year-old Ryan Goldstein pleaded guilty to his involvement in Read more…
Fancy a scratch? Anti-virus service by scratch card
This is a new one on me. Today in our spam traps we discovered a UAE company who have a novel approach to providing an anti-virus service. So novel that we had to have a little chat with them before realising Read more…
Ohio Secretary of State's website hacked
Jennifer Brunner, Secretary of State of Ohio, has confirmed that her official website was hacked earlier this week by unknown intruders. Ms Brunner, a member of the Democrat party, says that no sensitive information was breached in the attack on Read more…
Miley Cyrus hacker gets a visit from the FBI
A hacker who posted candid photographs of Hannah Montana star Miley Cyrus on the internet was the subject of an FBI raid yesterday. 19-year-old Josh Holly, of Murfreesboro, Tennessee, boasted that he had broken into the Disney teen queen's email Read more…
Results of McAfee-sponsored West Coast Labs anti-virus test
Allow me to blow Sophos's trumpet for just one second, in a rather cheeky way, by talking about a recently published anti-virus test. This malware detection test is a bit different from others - as it was sponsored by one Read more…
Two minutes of spam with Google Earth
Next week we'll be publishing our regular report into the top "dirty dozen" nations - in other words, those countries where the most compromised machines are found relaying spam to the rest of us. It's often a surprise to people Read more…
Korean sex spy jailed for five years
In September I blogged about Won Jeong Hwa. Under the cover of touring South Korean military bases to lecture on the evils of Kim II Sung's North Korean communist regime, Miss Won seduced army officers in exchange for military secrets. Read more…
Nicolas Sarkozy et le poisson
Poor old Nicolas Sarkozy. He's got a lot on his plate. Not only is he busy being President of la belle France and keeping the ravishing man-eating supermodel Carla Bruni entertained, but he's also had his bank account hacked! We've Read more…
Breaking news: Tom Cruise isn't dead
The last couple of days have seen a flurry of reports debunking a fast-spreading internet rumour that Tom Cruise had fallen to his death while filming in New Zealand. According to the hoax news story, the pint-sized sofa-bouncing film star Read more…
Teen who brought down anti-virus website let off the hook
Earlier this week I blogged about a secondary school student who had been arrested after a distributed denial-of-service (DDoS) attack against websites in Vietnam. Word has just reached me via local media reports that the authorities have allowed the student Read more…
Teenage hacker admits Scientology DDoS attack
A teenage hacker has admitted his involvement in a distributed denial-of-service (DDoS) attack against websites belonging to the highly controversial Scientology organisation. 18-year-old Dmitriy Guzner, of Verona, New Jersey, played a role in a crippling assault which flooded websites belonging Read more…
Mobile malware sends premium rate SMS messages
The world of mobile malware isn't completely dormant. Although we have been waiting almost ten years now for the dire predictions of some security companies to come true about the tidalwave of mobile malware waiting for us "real soon now", Read more…
Who creates email hoaxes and why?
The resurgence of the Marks & Spencer voucher hoax that I wrote about earlier this week got me thinking. Who is behind all these hoaxes and chain letters, and why were they created? "They don't know better" There is no Read more…
Crafty little redirect used by malware
As discussed previously, redirection - the ability to guide/control user traffic - plays a critical role in today's malware [1]. In this post I will describe a crafty way of redirecting users from a web page. Not new by any Read more…
Serious Badsrc malware magic
At the end of last week SophosLabs discovered that Adobe's website was linking to a site infected with Mal/Badsrc-C. The infection had been encountered by a business partner of ours who - thankfully - had been defended from the infection Read more…
