Monthly Archives: December 2008

Don't be dumb in internet cafes in 2009

by Graham Cluley on December 31, 2008 | Comments Off
Default image

I was fortunate enough to spend the last couple of days wandering the chilly streets of Prague. It's a beautiful city, and if you ever get the chance to visit I'd recommend it. It was pretty strange though flying out Read more…

Share

Monkeying around with postcards and ecards

by SophosLabs on December 31, 2008 | Comments Off
Image (1) monk-icon.gif for post 23128

The predictability of the social engineering used by malware authors is one of the few things that we can be certain about at Christmas (see Samir's post here). True to form, over the past days and weeks a variety of Read more…

Share

Play phishing

by SophosLabs on December 31, 2008 | Leave a comment
Default image

Over Christmas I spent some time in the metropolis that is Heathrow's Terminal 1. To pass the time I bought a couple of non-computing magazines (holidays are a chance to forget about work!). Imagine my surprise then when upon opening Read more…

Share

Phishing with Google Calendar

by Graham Cluley on December 29, 2008 | Comments Off
Image (2) googlecal-1.jpg for post 11953

As you know, one of the challenges that phishers face in defrauding you out of your username, passwords and - ultimately - cash, is how can they convince you that they are legitimate? I'm indebted to Clu-blog reader Pete who Read more…

Share

Crackdown on online service exploitation

by Fraser Howard on December 28, 2008 | Leave a comment
Image (1) d1.png for post 23110

Whilst reading the paper yesterday morning an interesting article caught my eye. It suggested that the UK Government are considering to impose some form of ratings system on web sites in order to thwart offensive and malicious activity. From the Read more…

Share

A Long Shortcut

by Robert Poston on December 27, 2008 | Leave a comment
A Long Shortcut

Drivng to family for Christmas, some of you may have tried taking a shortcut to avoid traffic queues. Sometimes those "shortcuts" can end up longer than the original route, but hopefully they did not get you into as much trouble Read more…

Share

Who needs spammers when you have the CIA pushing Viagra?

by Graham Cluley on December 27, 2008 | Comments Off
Default image

We've grown to think of spammers and other internet bad guys as finely-honed organised criminals, quick to use new avenues to make a quick buck, and rapid in their exploitation of breaking news stories and emerging trends. It's therefore surprising Read more…

Share

RBS WorldPay data breach puts 1.5 million cardholders at risk

by Graham Cluley on December 26, 2008 | Comments Off
Image (1) worldpay-logo.jpg for post 13199

RBS Worldpay, the electronic payment service, has admitted that hackers have broken into its systems and may have accessed the personal information of some 1.5 million cardholders and other individuals. Of these, some 1.1 million people may have had their Read more…

Share

Pakistani hackers hit Indian railway website

by Graham Cluley on December 26, 2008 | Comments Off
Image (1) eastern-railway.gif for post 13193

The official website of Eastern Railway, part of the state-owned Indian railway network, was struck by an SQL Injection attack earlier this week by a hacking gang believed to be based in Pakistan. According to reports, the www.easternrailway.gov.in website was Read more…

Share

Dorf to SQL in a year

by SophosLabs on December 26, 2008 | Comments Off
Default image

Reviewing Chee and Samir's posts for Dec 26 2007 reminded me how much the Dorf family of malware dominated thinking in 2007. I don't know the actual figure but I suspect a significant number of blog posts and identities written Read more…

Share

Nigerian 419/advance fee scams: the FBI edition

by Mike Coulter on December 25, 2008 | 1 Comment
Image (1) fbi-nigerian1a.png for post 23098

On this relatively quiet Christmas day, I got a chance to examine some of the messages that came to our spamtraps. I was searching for Christmas/new year related Nigerian scams, and I came across something else quite strange, which is Read more…

Share

McColo and me

by SophosLabs on December 25, 2008 | Leave a comment
Image (1) deccatchrate.jpg for post 23083

Today, I am in work with Mathieu and we are processing any spam that the automated systems don't already block and analysing any malware that we don't already proactively detect - actually Mathieu is doing the hard work whilst I Read more…

Share

Plenty of Bargains for Christmas Day Shoppers

by seanmcdonaldsophos on December 25, 2008 | Leave a comment
Image (1) meds_scam.jpg for post 19944

Forget the financial crisis folks, there are still plenty of too-good-to-be-true deals available for those looking for a last minute Christmas day bargain gift. Check out the following great email deals: For those that need help in the sack, and Read more…

Share

Happy Christmas

by Graham Cluley on December 25, 2008 | Comments Off
Default image

Huzzah! It's Christmas! Newspapers are reporting that Santa Claus's reindeer-powered Sat-Nav system was not affected by a computer virus, and he has managed to deliver presents to good boys and girls around the world. As I write this he is Read more…

Share

Good CV, Bad CV

by Prashant Kumar on December 25, 2008 | Leave a comment
Image (1) bad_cv.jpg for post 23064

If you are a employer, you may receive lots of CVs from candidates. Generally one would just open it up and review the content? Now you better be careful the next time you receive one, because you just might have the "other" kind Read more…

Share

Virus infected: Samsung digital photo frames

by Graham Cluley on December 25, 2008 | Comments Off
Image (1) samsung-frame.jpg for post 13188

They're being sold up and down the high street, but if the latest reports are true then it may be the last thing you want to find yourself unwrapping under the Christmas tree on December 25th. According to reports on Read more…

Share

Fine for alleged scareware firm which ignored court order

by Graham Cluley on December 24, 2008 | Comments Off
Image (1) pacman-ghost.jpg for post 13182

Earlier this month a court ordered two companies to halt their operations, after they were suspected of tricking innocent users into purchasing bogus security software (an unpleasant scam known as scareware). According to a statement at the time by the Read more…

Share

Winter wonderland at the Canadian Labs

by SophosLabs on December 24, 2008 | Comments Off
Image (1) snow_1.jpg for post 850

This isn't my typical malware related blog post definitely. Canada is experiencing some of the worst winter weather in a long time. The reason I elected to settle in Vancouver in the first place was primarily because it snowed 3 Read more…

Share

Picture Picture in the Worm

by F Ho on December 24, 2008 | Leave a comment
Image (1) smallpic.jpg for post 23059

I came across a worm this week that had some interesting properties. The worm was written using a copy of Visual Basic. Nothing unusual about that. This time, however, the author decided to include a portrait as an icon. I Read more…

Share

Spam of the dumbest

by Graham Cluley on December 24, 2008 | Comments Off
Image (1) survival-of-dumbest.jpg for post 13179

You have to wonder who the spammers think they are targeting when they use a subject line like this one I saw in a pharmaceutical campaign: An interesting approach, to abuse your potential customers with a subject line like "Survival Read more…

Share