-
- duckblog: Get into RSA 2012 in San Francisco for free! Use the code SC12SPH - http://t.co/DXO28TCYabout 3 hours ago
- ChetWisniewski: Update on the KPN compromise in The Netherlands, company says "password are encrypted with UTF8" http://t.co/EmDuXfqSabout 3 hours ago
- gcluley: Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/aN78hlkpabout 6 hours ago
- ChetWisniewski: Leaks website Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/OxSK9sifabout 6 hours ago
Monthly Archives: December 2008
'Twas The Night Before Christmas
While going through the daily routine of analysing various malware and samples, one particular item caught my eye. The item contains an email with the subject line which (when translated) reads,"Seasons Greetings!" and embedded within the email was a ZIP Read more…
Execute... your photos?
I came across an interesting piece of software today - a runnable archive of photos. It seems a relatively popular document management system (that shall remain nameless) has a "feature" that lets you export photos as an executable program - Read more…
Newspaper exposes hospital and council data losses
The Western Morning News, a regional newspaper in Britain, has a front page exclusive today about how hospitals and councils in the south west of the country have had embarrassing incidents involving lost data in the last three years. The Read more…
Tax refund email is too good to be true
The holiday season can be taxing for many of us. Your house is full of unwanted relatives, kids are crying that they wanted a cuddly Adipose toy not a voice-changing Cyberman's mask, and - of course - a mysterious absence Read more…
Stop smoking, start losing your identity
I got a call this morning from BBC Radio Lincolnshire, asking me to go on their news programme. Tim, the researcher who rang me, told me that memory sticks containing the confidential details of 26,000 patients had been lost in Read more…
Vulnerable children put at risk after memory stick lost
A newspaper in South Wales is reporting that an employee of Neath Port Talbot council has lost a memory stick containing confidential information about vulnerable children. The council is refusing to comment on the incident until its investigations are complete, Read more…
New Year's Resolutions for website owners, operators and hosters
If you've read our recent Sophos Security Threat Report, you can't fail to have missed the increasing part the web plays in spreading malware. We singled out the USA for a lot of the problem - as websites there host Read more…
Herbal King spammer fined in New Zealand
A man from New Zealand, based in Queensland, Australia, has been ordered to pay a NZ $100,000 fine (US $57,000) and NZ $7,666 in costs after pleading guilty to his involvement in an international spam operation. 26-year-old Lance Atkinson admitted Read more…
Merry Christmas from the Viagra spammers
Many offices around the world are beginning to wind down for the holidays, but the spammers never sleep. Here is an example of a spammer's seasonal snow-covered sales pitch that was caught in our spam traps this morning: You may Read more…
Lie culture: why spam works
If you look through your spam email folder, or back through our blog articles, it very quickly becomes clear that they mostly try to convince you to do some or all of the following: run some malware (that sends more Read more…
A note of caution for the holiday season
Maybe you'll be one of the lucky ones unwrapping a snazzy new PC or laptop under the Christmas tree next week. If so, here's a note of caution. Many PCs sold on the high street come with software which was Read more…
Phreaking hackers hit man with $53,000 phone bill
A Canadian businessman has been lumbered with a Canadian $52,359.59 (US $43,000) phone bill after a hacker broke into his voicemail system and spent nearly three weeks making phone calls to Bulgaria. According to media reports from Bulgaria and Canada, Read more…
We got our Christmas present - but it's not all over!
Fraser reported earlier this week about the need for a patch to fix the latest critical IE vulnerability. Fortunately Microsoft have listened to the tide of opinion and put out the appropriate patch to fix this vulnerability. All credit to Read more…
AdWare supported FakeWare
I've recently wondered why we're seeing an increase in fake anti-virus type malware and I don't think the reason is as simple as fear-mongering and guilt. I recently analysed YAFA (Yet Another Fake Anti-virus) which upon installation immediately began to Read more…
A right Royal data loss: Fergie's laptop stolen
The Daily Telegraph is reporting that a laptop belonging to Sarah Ferguson, the Duchess of York, has been stolen. A thief broke into a photographic studio in Potters Bar, Hertfordshire, where one of Fergie's aides had taken the computer in Read more…
Christmas shoppers targeted in Aussie phishing campaign
Australian online shoppers are being targeted in a phishing campaign which pretends to be from Trading Post. (For those who don't know, Trading Post is an Antipodean competitor to internet auction site eBay). The offending emails warn that your account Read more…
Hong Kong businessman pleads guilty in stock spam case
According to media reports, a businessman from Hong Kong has pleaded guilty in a Detroit court for his part in a scam where tens of millions of spam messages were sent, pumping up the stock price of Chinese companies. How Read more…
Critical Internet Explorer patch now available from Microsoft
Microsoft has kept the promise it made yesterday and released the much-desired critical security patch for versions of Internet Explorer (Microsoft Security Bulletin MS08-078). Microsoft must have been working furiously around-the-clock to develop and test this emergency fix as soon Read more…
Defending against that Internet Explorer exploit
The world is waiting for the patch from Microsoft to fix a critical flaw in Internet Explorer. Guest blogger Paul Ducklin, Sophos’s Asia-Pacific head of technology, describes the steps you can take to defend your computers. Over to you Paul… Read more…
Microsoft to release emergency patch for zero-day flaw
Good news. Microsoft has announced that tomorrow (Wednesday, 17 December) it will release an emergency out-of-band patch for the critical security hole that has been sending a chill down the spine of Internet Explorer users. Concerns about the security bug Read more…
