-
- ChetWisniewski: Microsoft wasn't the only one to release patches on Valentine's. Adobe Shockwave and Oracle Java get critical fixes http://t.co/S26DjIl7about 1 hour ago
- SophosLabs: Warning - Whitney Houston autopsy video links on Facebook aren’t what they seem http://t.co/aLG1e7vY tip @techmemeabout 8 hours ago
- SophosLabs: Who has better privacy laws: USA or European Union? http://t.co/rQUnw2kW (via @mooseabyte)about 8 hours ago
- gcluley: Warning: Whitney Houston autopsy video links on Facebook aren’t what they seem http://t.co/sg98h50Fabout 8 hours ago
- SophosLabs: iPhone 5 tester SMS text scam hits cellphones http://t.co/0orOOGG7about 12 hours ago
Monthly Archives: February 2009
Win a Sophos goody-bag by completing our quick survey
I've been having a dig around in the catacombs of Sophos, and found some goodies that I'm delighted to offer you dedicated Clu-blog followers as competition prizes. To be in the running for one of these fabulous prizes all you Read more…
Bumper security update for Apple users
Last week Apple released a security update, addressing more than 50 security holes in its Mac OS X and other software. The patches apply to Mac OS X 10.4, Mac OS X 10.5, Java for Mac and Safari for Windows, Read more…
Indian government computers hit by Chinese spyware attack?
Sources inside India's Ministry of External Affairs (MEA) have confirmed to the media that "several" of its 600 computers have been infected by spyware. The spyware is said to affect computers inside the section of the Indian ministry which deals Read more…
More Multi-Player Than The Game Itself
SophosLabs received an unusual file today in the form of a supposed game installer called Project:Snowblind . Project: Snowblind is a multi-player first-person shooter (in the same genre as Doom) released by Eidos Interactive a few years ago. Upon running Read more…
More social networks targeted by Koobface
Since we started monitoring the Koobface family of malware, we've seen it move from simply attacking Facebook users to targeting a more diverse set of social networks, including MySpace, Bebo, hi5, and GeoCities. A few months ago I blogged about Read more…
Stimulus check before the bill is passed?
At the time of this writing, the House of Representatives in the United States has just passed the stimulus bill. The bill still awaits the approval of the senate and signing by President Obama before it can be enacted. Given Read more…
InfoWorld tests McAfee, Sophos, Symantec, Trend Micro and Check Point
InfoWorld has published an in-depth test of computer security products from McAfee, Symantec, Trend Micro, Check Point and - of course - Sophos. InfoWorld's conclusion was that "Sophos Endpoint Security and Control covers all important bases regarding to client security Read more…
The Twitter "Don't Click" clickjacking stampede
Yesterday, many Twitter users were swamped with messages saying "Don't Click", pointing to what appeared to be a web link. Naturally, humans being what they are, the "Don't Click" got clicked on. A lot. Bzzt. That wasn't a good idea, Read more…
Where's Waled?
We're seeing new Waled malware today, and the custom packer it's using has changed again. In fact it's using a decryption trick to hide its code that I thought was worth sharing. The decryption code starts off by changing the Read more…
Microsoft offers $250,000 for the head of Conficker's author
Microsoft has announced that it is offering a $250,000 reward for information that leads to the capture and conviction of the authors of the Conficker worm (also known as Downadup or Confick). This development shouldn't surprise anyone. Microsoft's reputation is Read more…
Malware fights back at "in-the-cloud" AV protection
Just the other day, I noticed a sample that may be one of the early attempts to thwart in-network malware protection -- a downloader that fetches an encrypted malicious payload and performs the custom decryption on the infected target machine. Read more…
Court halted by fast-spreading virus
Houston Municipal Court in Texas has had its operations shut down since last week because of a virus that has infected over 400 of its computers, according to media reports. Although originally misidentified at the time of the initial infection Read more…
Fast-infecting polymorphic virus causing a stir
We've had some customers this morning asking us about a Windows virus that targets HTM, HTML, PHP and ASP web files, as well as executables, as it spreads via network drives and USB sticks. The questions seem to be coming Read more…
Februrary 2009 Microsoft Security Bulletins
Despite the lack of high profile vulnerabilities in Microsoft products discovered out-of-band in January, February batch of Microsoft Security bulletins brings patches for vulnerabilities that are bound to raise some interest with malware writers, which also means that SophosLabs are Read more…
30,000 Kaiser Permanente workers warned of identity theft risk
Workers at the US healthcare provider Kaiser Permanente have been warned about the risks of identity theft, following the discovery of staff records in the hands of a non-employee who was subsequently arrested. A computer file in the possession of Read more…
Hackers attack German Interior Minister's website
The website of Wolfgang Schäuble, the German Interior minister, was broken into yesterday by hackers opposed to his plans for biometric passports and the authorities being allowed to log all telephone, mobile, email and internet communications. Anyone visiting the site Read more…
Facebook spammers seize control of 1.5 million user group
A Facebook group of 1.5 million computer users set up with the apparent intention of collecting five million people against the site's revamped user interface has been commandeered by "Make Money Fast" spammers, who have plastered its Facebook page with Read more…
Public information film about Valentine eCard threat
Following an experiment with a time machine, a tin of turps and an old copy of the Radio Times, the following sexist public information film appeared on my desk this morning. It provides some old-fashioned sound advice on the threat Read more…
Virus warning warning!
Years ago, Friday 13th and thereabouts was considered a high risk period for virus infections by people with a predilection for having things to worry about. The reason for this was the once-widespread Jerusalem virus, which triggered on any Friday Read more…
Scribble In Your Files
We've been seeing a lot of activity from a new polymorphic mid-infecting virus, W32/Scribble-A. While this new family has quite a lot in common with members of the older Vetor and Virut families of viruses, the main code looks to Read more…
