-
- duckblog: Get into RSA 2012 in San Francisco for free! Use the code SC12SPH - http://t.co/DXO28TCYabout 2 hours ago
- ChetWisniewski: Update on the KPN compromise in The Netherlands, company says "password are encrypted with UTF8" http://t.co/EmDuXfqSabout 3 hours ago
- gcluley: Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/aN78hlkpabout 5 hours ago
- ChetWisniewski: Leaks website Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/OxSK9sifabout 6 hours ago
Monthly Archives: May 2009
National Autistic Society petition Downing Street over NASA hacker extradition
The National Autistic Society (NAS) has launched a petition calling on British Prime Minister Gordon Brown not to extradite NASA hacker Gary McKinnon to the United States. The petition, which at the time of writing has over 1700 supporters, asks Read more…
Troj/PHPMod-A: Behind the Troj/JSRedir-R attacks.
Yesterday, Onur posted showing how prevalent detections of Troj/JSRedir-R are. Today we have released detection for one of the culprits for the mass-defacement (Troj/PHPMod-A). The site Unmask Parasites.com has recently blogged on this issue. If you think that your website Read more…
Spammers hack New York Times account on Twitter
Yesterday, a Twitter account run by the New York Times was the latest high profile victim of an account hack. The Moment, a fashion blog from the New York Times, which has over 510,000 followers on the micro-blogging network, fell Read more…
Malicious JSRedir-R script found to be biggest malware threat on the web
Research done by experts in SophosLabs has revealed that a new web-based threat has blown all previous web-based malware out of the water, being found six times more often than its nearest rival. Troj/JSRedir-R accounts for some 42% of all Read more…
...And We Have A Winner!
I was just going over some reports for the past week and noticed one particular web threat that is blowing away all the competition with the number of infections we're seeing on the web. Since Sunday, we've observed that Troj/JSRedir-R Read more…
Patchtastic! Updates for PowerPoint, PDFs and Mac OS X
If you're the person responsible for rolling out patches across your company then you're in for a busy time. First off the block are Microsoft, who have released a critical security fix which aims to banish a zero-day flaw in Read more…
France threatens draconian internet piracy law
Sacre bleu! According to the Financial Times, authorities in France are set to introduce rules which could mean people are accused of internet piracy, and thrown off the internet, without their guilt having been proven in a court of law. Read more…
APWG CeCOS III conference in Barcelona
Here I am in beautiful Barcelona participating in the APWG conference with focus on fighting electronic crime. CeCOS is a conference where members of banks and payment industry, government organisations and security researchers meet to discuss the way forward in Read more…
Why you shouldn't reveal your porn star name on Twitter
In the last day or so there has been a major trend for users of the Twitter website to Tweet their porn star names, typically formed by posting the name of your first pet and the name of the first Read more…
BitTorrent on iPhone? Apple says "no thanks"
Apple has reportedly rejected an application which would allow users to download material from peer-to-peer (P2P networks) from being listed in its iPhone App Store. DriveTrain from Maza Digital has been rejected, says Apple, because such application are "often used Read more…
Don't open that Western Union Transfer email
Our spam traps have been seeing a widespread malicious attack today, posing as a communication from Western Union. The emails have a subject line of Western Union Transfer MTCN: <random number> and an attached file called MTCN_NR8621982.zip. Part of the Read more…
Why bogus Microsoft patches aren't always malicious
For years we've been warning you about fake Microsoft security patches - usually these have been spammed out by hackers, using forged email headers to pretend to come from the software giant, and recommending you install the attached file immediately Read more…
BATibot aye!
Just when I thought that the malware author who had the hots for MissPiggy has grown up another one of his "masterpieces" has found its way to our labs. The Philippine malware authors guild must be running overtime producing such Read more…
Mother's Day Scam
Here I am, working on a Sunday looking at all the different kinds of spam flowing into our spamtraps. It also happens to be Mother's Day, which means only one thing. Thats right ... a Mother's Day scam. This one pretends Read more…
Advice For Auntie
Phishing for our confidential bank details continues to be a lucrative sport for the senders of spam. Even on a Saturday the phishers are out in force, their lines baited with such tempting morsels as: *******This message is for Abbey United Kingdom customers only*********** Read more…
Why I lied on Swiss TV last night
Last night I lied on Swiss TV. A film crew came to visit Sophos in March to ask us about Conficker, botnets, spam and all that kind of thing. However, the reporter insisted that I tell him my full date Read more…
Spammers offer free Viagra with Tamiflu pills
I'm indebted to Zoe in our labs who pointed out the following special offer that drug-peddling spammers are making on their website today. Yes, spammers - never slow to miss a trend - are offering four free Viagra pills with Read more…
WorldPay card transactions carry malware danger
Cybercriminals are up to their old tricks again, disguising their Trojan horses by spamming them out attached to emails claiming to come from legitimate organizations. Today one of the malware campaigns we are seeing pose as communications from WorldPay, claiming Read more…
34% of resold hard drives contain personal data, study reveals
Researchers from BT and the University of Glamorgan are in the news today because they have found a disturbing number of hard drives sold on auction websites and at computer fairs contain sensitive information. The study, conducted in the UK, Read more…
Sparkling AMTSO
Today I am at the AMTSO meeting in Budapest. We have just voted and approved 3 papers for publication: In the Cloud testing, Malware validation and Review Analysis. These 3 papers will shortly be available on the new AMTSO website. Read more…
