-
- ChetWisniewski: Fancy some geeky tech-puzzle fun? Try our latest #sophospuzzle (and win a NERF gun) http://t.co/9k3pr1Qaabout 3 hours ago
- ChetWisniewski: Looks like no #Canadians have solved the latest #sophospuzzle yet - c'mon, let's give'r http://t.co/9k3pr1Qaabout 4 hours ago
- SophosLabs: Sophos just released a beta of its free Android anti-virus scanner (does other things too). Get it here http://t.co/9ankUHxhabout 5 hours ago
- gcluley: Technical paper - Fake anti-virus: The journey from Trojan to a persistent threat http://t.co/8pyjNEbGabout 5 hours ago
Monthly Archives: November 2008
Extortion threat exposes "potential large data breach"
Express Scripts handles the medical prescriptions of millions of Americans every year through home delivery and at retail pharmacies. That's a lot of important data for the Fortune 150 company to look after. You can, therefore, understand why Express Scripts Read more…
John McCain suffers fatal heart attack, claim drugstore spammers
There seem to be no depths too low for spammers trying to peddle their goods to the public. Today we are seeing a spate of new spam campaigns promoting an online Canadian pharmacy, using sensationalist subject lines about John McCain Read more…
Activation Key malware morphs its disguise
Earlier this week I told you about a widespread spam campaign with a malicious attachment that posed as a message about account activation keys. I'm afraid that the hackers are still spewing out their attack at a frenzied rate, with Read more…
Beware Barack's bogus banking Trojan
After yesterday's Barack themed malware spam attack, it was no surprise this morning to find BarackOb.exe first in the queue for analysis. President Elect Obama is definitely the hottest name in malware right now, one of the unfortunate side effects of success. Read more…
Fake WordPress steals data
Yesterday evening amid the researching the Barack related malware (1, 2) our friends at The Register pointed out an interesting article on Craig Murphy's blog. Craig talks about how when he logged in to his admin account in WordPress he Read more…
The president-elect's first malware campaign
And so it begins. The tickertape from Barack Obama's celebratory party has probably not even been swept up yet, but the hackers have wasted no time in launching a malware campaign. (Enjoy this video? You can check out more on Read more…
Obama searching malware
As if the torrent of malicious spam starring the Senator of Illinois wasn't enough, those searching the internet earlier today for details of President Elect Barack Obama's victory could have been in for a nasty surprise. Sophos received reports that Read more…
Barack Obama exploited in malware spam attack
Many Americans will have woken up today with a headache - either from celebrating the victory of Barack Obama or drowning their sorrows at John McCain's loss of the White House. One thing is clear though - malware authors haven't Read more…
Are Icesave customers at risk of phishing?
Jeremy Kirk, a journalist with IDG, has published an interesting story today about how customers of a collapsed bank may be at risk of phishing scams. When Iceland's banking system collapsed in October it made international headlines. Here in Britain, Read more…
Bank of Ireland loses customer data on memory stick
The personal information of almost 1000 bank customers has been lost by an employee of Bank of Ireland, after the data was copied onto an unencrypted USB memory stick. In the latest security blunder to befall a bank, details of Read more…
A Hallmark malware event
So, imagine you receive this email.. What do you think? Safe or not? Well, as you're reading this blog you're probably assuming that it's something malicious, but you can't actually tell that for sure from what I've shown you. Maybe Read more…
Sality goes for broke
We've seen continued activity from our old file-infector Sality, and a few weeks ago we saw a variant with some new tricks up its sleeve ... but at the price of stability. The author used to keep track of the Read more…
US election spam - an end in sight?
I'm British, so frankly what people get up to on the other side of the pond isn't any of my business and I should keep my nose out of it. Or so I expect I would be told. The only Read more…
Spammed out personal account keys contain Trojan horse
We've seen a spate of malicious spam today designed to fool internet users into an infection by a Trojan horse. The emails typically tell you that you can activate or register your account by using information in the attached file. Read more…
Buxom Russian women still looking for love online
27-year-old Julia from Russia doesn't have a lot to say for herself. She's sent me an email suggesting (from the subject line at least) that she is interested in dating, and included a soft-focus picture of herself in a wedding Read more…
Jail for ex-worker who opened up firm's servers for spammers
Some people leave their job with a chip on their shoulder - but not many would go so far as to hack into their ex-employees' computer servers and open them up for spammers. At least I hope not. 37-year-old Steven Read more…
Abusing Magic for fun and profit
So called "Magic" numbers evolved from the UNIX operating system and now play a regular role in (amongst others) identifying particular file types. The doctoring of these magic numbers may render files unrecognisable by the operating system or applications expecting Read more…
MS08-067 - follow up and video
It is unusually quiet on the MS08-067 front, despite a number of stable and public exploits freely available. As expected, experienced security researchers like Alexander Sotirov published a very good analysis of the vulnerability. So far we have seen a Read more…
"Hello kitten" - malware spammed out in sexy picture email
Do you know anyone who might call you "kitten"? Do you have a woman from your past (I assume she's a woman as she signs herself off as 'your mistress'), with only the loosest grasp of the English language? Is Read more…
Are You Being Served Malware?
As I mentioned last week, one of the first things I do each morning to review the internal labs dashboard to see what is happening. Today I was greeted with yet another email attachment outbreak. Seeing the list of subject Read more…
