-
- duckblog: Get into RSA 2012 in San Francisco for free! Use the code SC12SPH - http://t.co/DXO28TCYabout 3 hours ago
- ChetWisniewski: Update on the KPN compromise in The Netherlands, company says "password are encrypted with UTF8" http://t.co/EmDuXfqSabout 3 hours ago
- gcluley: Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/aN78hlkpabout 6 hours ago
- ChetWisniewski: Leaks website Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/OxSK9sifabout 6 hours ago
Monthly Archives: June 2009
How to trap a Facebook fraudster
I love this. Meng Wong, one of the chaps who lead the creation of Sender Policy Framework (SPF) a few years back, recently found himself on the receiving end of a Facebook "stranded in a foreign city" scam. I've discussed Read more…
Was Lindsay Lohan's Twitter account hacked?
Fans of Hollywood actress and doyen of the gossip columns, Lindsay Lohan, might have noticed that she's been acting a little strangely recently. At least if they follow her antics on Twitter. Last week, a topless photograph of the 22-year-old Read more…
Anti-Malware-Malware!?!
1]. However, some people just fail to do their research. Enter SpenserNK - an Anti-USB-malware program which happens to operate by infecting removable devices, and keeping a library of its contents for matching at some later stage to determine whether Read more…
The short arm of the law
Over the years, IT administrators (or, to be more accurate, the sort of IT administrators who take part in the admittedly unscientific polls we conduct on the Sophos website) have generally come across as a rather punitive sort. In particular, Read more…
What would Turing do?
It really annoys me when I look at a spam message and don't understand its intention. This is what happened today, when I saw a strange campaign that hit our spam traps when I was finishing my weekend work shift: Read more…
Date set for next chapter in Gary McKinnon case
According to ZDNet, the high court is set to hear a London-based hacker's application for judicial review of a previous decision by the Crown Prosecution Service (CPS) not to prosecute him in the UK. Lord Justice Stanley Burnton and Mr Read more…
Want a job? Then give us your social networking passwords
File this one under "bonkers bureaucracy". According to media reports, the city of Bozeman in Montana has been insisting that prospective employees seeking a job with the city must not only reveal if they have accounts with the likes of Read more…
Sophos wins excellence in innovation award
Aside from playing the tuba, guest blogger Rich Baldry is also a product manager for our web security solutions based in our Vancouver offices. Over to you Rich.. On Wednesday night I had the great honour of representing Sophos at Read more…
Yet more mass injections
With the whole Gumblar incident still ringing in the ears [2], we have been monitoring a series of other mass injection attacks over recent weeks. One such attack, dubbed 'Nine-Ball' [3], has gained some press this week. We have also Read more…
Fake Microsoft Security Alert - KB910721
Yesterday afternoon our spam traps caught a piece of malware disguised as a false security alert from Microsoft: Update for Microsoft Outlook / Outlook Express (KB910721) Brief Description Microsoft has released an update for Microsoft Outlook / Outlook Express. This Read more…
Apple update fixes 46 iPhone security vulnerabilities
To some fanfare, Apple has released the latest version of its iPhone operating system to an eagerly-awaiting world. Existing iPhone users can update their operating system via iTunes to version 3.0, and take advantage of a number of longed-for new Read more…
Russian spam about spam looks like a ransom note
Like anyone else who's been on the net for twenty years or more, I've had a few email addresses in my time. One of them, which I barely ever use, is for a website I created more than 15 years Read more…
Outlook reconfiguration emails carry malicious URLs
At the beginning of the month we have written about a couple of spam campaigns which contained fake notifications urging users to reconfigure Microsoft Outlook applications by following the link embedded in the email message or extracting the attached ZIP Read more…
Don't open Worldpay_NR9712.zip!
Although so many hackers choose to attack innocent computer users via websites today, that doesn't mean that malware spread via email attachment is dead. Take this example, for instance, which we have seen in large numbers in our spamtraps today. Read more…
Howard Stern's pal pleads guilty to identity theft
One of the benefits of being based in Great Britain is that I've so far managed to avoid ever hearing the Howard Stern shock jock radio show. But media reports inform me that a zany associate of his, who goes Read more…
Cligs short url service hacked, millions redirected
URL shortening services like TinyURL, bit.ly and is.gd have increasingly become part of many computer users' everyday lives in the last year or so, with the surge in popularity of micro-blogging websites like Twitter. The services allow you to shorten Read more…
You WEREN'T in a sex movie with Sherrie, so why open the link?
Looking through the daily avalanche of spam intercepted in our traps can be a soul-destroying job. Take this email, for instance, with the subject line "Hello! This is Sherrie from last Friday video shoot." Sherrie says that it was great Read more…
Virtual woman lures Fidel Castro's son into love sting
A Miami man is reported to have tricked Fidel Castro's son into an eight month internet romance by posing as a woman online. 42-year-old Antonio Castro Soto del Valle, the son of Fidel Castro and the physician for Cuba's baseball Read more…
With friends like these who needs password security?
I'm indebted to Clu-blog reader John who told me about an email he received at the end of last week from the social networking site Friends Reunited. Launched in the UK in 2000, Friends Reunited pre-dated comparable sites like Facebook Read more…
UnVirex, fake anti-virus
Recently, I saw a new fake malware cleaner from UnVirex which claims to be designed by "the industry's top software experts". Sophos detects the installer, as well as its main components as Troj/FakeVir-NA. Most of the time, this rogue anti-spyware Read more…
