-
- duckblog: Get into RSA 2012 in San Francisco for free! Use the code SC12SPH - http://t.co/DXO28TCYabout 3 hours ago
- ChetWisniewski: Update on the KPN compromise in The Netherlands, company says "password are encrypted with UTF8" http://t.co/EmDuXfqSabout 3 hours ago
- gcluley: Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/aN78hlkpabout 6 hours ago
- ChetWisniewski: Leaks website Cryptome was hacked this weekend directing users to Blackhole exploits. Advice for web admins http://t.co/OxSK9sifabout 6 hours ago
Monthly Archives: July 2009
Chinese hackers deface film festival website
Chinese hackers are being blamed for an attack on the website of the Melbourne International Film Festival, which left the site displaying the Chinese flag and slogans against Uighur leader Rebiya Kadeer. One message left by hackers on the website Read more…
MP resigns over Gary McKinnon hacker case
Andrew Mackinlay, the Labour MP for the constituency of Thurrock, is to quit his post in protest at the British parliament's failure to vote for Gary McKinnon's extradition to the United States to be blocked. According to media reports, Mackinlay Read more…
How time flies when you're counting viruses
My recent blog post about AV-Test.org now counting more than 22 million pieces of malware in its collection, caused some Clu-blog readers to remember "the good old days". One person who got in touch was Mike Hill who - way Read more…
Merchant websites compromised at Network Solutions
Over half a million credit card details may have been compromised, following a security breach at more than 4,000 ecommerce websites hosted by Network Solutions. Network Solutions announced that it found malicious code on servers supporting some of its customers Read more…
Relationships 101: Don't write malware for Girlfriend !!
All, Today I saw what seems to be another dumb effort by some script kiddie to please his girlfriend. The author attempts to show off his soft side, by dedicating the Japanese band l'Arc-en-Ciel's hit song "Honey" to his partner. He Read more…
Sex Thrills And Kills
There's no denying that sex thrills and kills. In the case of Troj/AdClick-FR, it actually does one but not the other. This malware won't thrill you but what it will do is kill your anti-virus processes and services. This malware Read more…
IT departments braced for Microsoft out-of-band patches
Microsoft has announced that on Tuesday it will release two out-of-band security patches designed to fix vulnerabilities in Internet Explorer and Microsoft Visual Studio. Microsoft normally bundles its security updates into a monthly package, known in the industry as "Patch Read more…
No News is Good News
Today we saw a novel social engineering attempt to deliver malware that is most unusual in how boring it is. Note the screenshot of the message provided, the message body is just plain text. The only interesting bit is a Read more…
Phishing for Gamers
While in the lab today checking out threat and scam activity, I came across this phish targeting "World of Warcraft" gamers: So what is so obviously phishy about this email apart from asking you to click on a link to Read more…
Emma Watson has NOT died in a car crash
Emma Watson, known around the world for her portrayal of teenage brainbox Hermione Granger in the Harry Potter movies, has become the unwitting star of an internet hoax that is being spread rapidly across the internet. The bogus reports claim Read more…
Download Sophos Security Threat report: Jan-July 2009
Earlier this week Sophos published an update to its Security Threat Report, looking at the trends and attacks that have emerged in the last six months. I recommend you download a free copy of the report [PDF], even if you're Read more…
AV-Test.org's malware count exceeds 22 million
The folks at the independent anti-virus testing body AV-Test.org have been in touch with some interesting statistics. They are finding more than one million unique malware samples a month, and presently the total amount of unique samples in their malware Read more…
Flash in the PDF? Another vulnerability with Adobe PDF/Flash
Over the weekend, SophosLabs received a strange PDF from a source who sends us large numbers of malicious files of Chinese origin. The PDF file contained two EXE files and two SWF files. The EXEs were stored within the PDF Read more…
E-card Scam
An e-card is similar to a postcard or greeting card, but rather than printed on paper or cardboard it is created using digital media. There are numerous e-card companies available on the internet offering a diverse range of e-cards including Read more…
Why you shouldn't send Erin Andrews peephole video links to your friends
The internet is still abuzz with talk of the video of Erin Andrews, the ESPN sports reporter who was covertly filmed naked in her hotel room. In fact, "Erin Andrews Peephole Video" and "Erin Andrews Peephole Pictures" seem to be Read more…
BlackBerry customers revolt after spyware scandal
If your customers think that you tried to spy on them, that's not going to be good for business. That's the message that's presumably being heard loud-and-clear by telecoms company Etisalat, which has found itself in the middle of a Read more…
HSBC fined £3.2 million for data lost in the post
HSBC has found itself on the receiving end of a record fine of over £3 million, after it was found by the the Financial Services Authority (FSA) to have carelessly handled the data of thousands of customers. Last year it Read more…
YouTube snafu! Erin Andrews video clean-up backfires
On Sunday morning I discovered that hackers were taking advantage of the notorious Erin Andrews peephole video to infect the owners of Apple Macs and Windows PCs. It seemed like a good opportunity to make an educational video about the Read more…
Swine Flu - Malware Fever
With the Swine Flu H1N1 pandemic ongoing, malware authors are continuing to play on the public's fears. We've seen spam use Swine Flu to take you to fake Viagra sites, scam sites selling Tamiflu, FakeAV using Swine Flue SEO, and Read more…
I need a ThousandFollowers
Last week Graham blogged about Addfollowers spam on Twitter gathering usernames and passwords. Earlier today I saw a very similar series of tweets and had a closer look. It seems that the folks behind Addfollowers have been busy in the Read more…
