Monthly Archives: October 2009

Gizmodo hit by malware adverts

by Graham Cluley on October 27, 2009 | Comments Off
Image (1) gizmodo-logo.jpg for post 15196

Gizmodo, one of the most popular technology and gadget blogs on the internet, has warned that it was distributing malicious adverts to its millions of readers last week, putting them at risk of infection. In a statement on its website, Read more…

Share

How AntiVirus Pro 2010 finds "malware"

by SophosLabs on October 26, 2009 | Comments Off
Image (2) antiviruspro_2010.jpeg for post 24548

"AntiVirus Pro 2010" is one of the most infamous Fake Antivirus malware. Usually it manages to penetrate into a user's computer via a small downloader. Once installed, it will attempt to download further components associated with this malware. After a Read more…

Share

iframes are EVIL! Hate Zeus!

by SophosLabs on October 26, 2009 | Comments Off
Image (1) source.jpg for post 24552

This morning the security researcher behind the Malware Domain List emailed me after reading Mal/Iframe-N: The next big threat? and pointed me at an interesting compromised website he had noticed. This JavaScript is non-malicious and will neuter Iframes on a Read more…

Share

Pumpkins and penis pills - Viagra spammers enjoy Halloween

by Graham Cluley on October 26, 2009 | Comments Off
Image (1) halloween-viagra.jpg for post 15193

Fresh from adopting a naughty nurse motif, the spammers behind the Canadian Pharmacy websites that flood inboxes with adverts for Viagra and Cialis have adopted a seasonal new logo. Normally the myriad of Canadian Pharmacy websites we see have an Read more…

Share

Barack Obama hacked by SQL injection

by Chester Wisniewski on October 26, 2009 | Comments Off
Barack Obama hacked by SQL injection

This story has been updated with content that supersedes much of the original content. Updates are found at the bottom of the story Hackers disclosed this morning that they have been able to compromise BarackObama.com through a SQL injection attack. Read more…

Share

ACMA 1 Phone spammers 0

by Paul Ducklin on October 26, 2009 | Leave a comment
Image (2) short-spam-act.jpg for post 1320

In Australia, offences against the Spam Act are enforced not by the State or Territory police forces, but by a federal body called ACMA -- the Australian Communications and Media Authority. And on Friday, 23 October 2009, ACMA had something Read more…

Share

Bredo vs. Zeus: The Battle of the Bots continues

by SophosLabs on October 25, 2009 | Comments Off
Image (1) code_zbot_exe_paths.png for post 24533

The Bredo and Zeus/Zbot malware families are both vying to infect your PC. If these bots are not busy spamming themselves out from an infected endpoint, with either bogus delivery invoices or forged IRS statements, they are scouring the local Read more…

Share

Mal/Iframe-N: The next big threat?

by SophosLabs on October 25, 2009 | Leave a comment
Image (1) van.jpg for post 20033

Since releasing detection for Mal/Iframe-N on Wednesday (21st Oct) SophosLabs have seen a rising number of detections. Detections are now into the thousands of websites affected by this threat. A couple of the sites hit are well known and one Read more…

Share

Guardian Jobs website hacked, personal data at risk

by Graham Cluley on October 25, 2009 | Comments Off
Image (1) guardian-jobs.jpg for post 15187

In news that will send a shiver down the spines of many job seekers, it has been revealed that the UK version of the Guardian Jobs website has been broken into by hackers. The site, which is described as one Read more…

Share

Social networking in the antipodean spotlight

by Paul Ducklin on October 25, 2009 | Leave a comment
Social networking in the antipodean spotlight

Dear Diary, I've just returned from Aotearoa, where I have been speaking at events in the Sophos Signature Luncheon series. Now in their fifth year, these Signature Luncheons bring together experts and thought leaders in IT security for frank and Read more…

Share

Hackers launch "Contract of Settlements" attack on inboxes

by Graham Cluley on October 23, 2009 | Comments Off
Image (1) contract-of-settlements.jpg for post 15184

Cybercriminals have launched a widespread malicious spam attack today, aimed at tricking users into opening a malicious file. The emails, which have the subject line "Contact of Settlements", pretend to relate to a contract. Recipients are told that if they Read more…

Share

Email from DHL? More malware masquerading as missing mail

by Graham Cluley on October 23, 2009 | Comments Off
Image (1) more-dhl-malware.jpg for post 15180

Earlier this week I warned you about a torrent of dangerous emails which were flooding inboxes, posing as messages from DHL and FedEx. The attacks haven't stopped, but they have slightly morphed their appearance - using different subject lines and Read more…

Share

Pizza boy turned ATM hacker stole nearly $30,000

by Graham Cluley on October 23, 2009 | Comments Off
Default image

An Australian computer enthusiast who stole 30,000 Australian dollars (approximately US $28,000) from cash machines, using information he found on the internet to hack into ATMs, has escaped a two year jail sentence. According to media reports, Brian Sommer appeared Read more…

Share

Malicious update for Microsoft Outlook / Outlook Express (KB910721)

by SophosLabs on October 22, 2009 | Comments Off
Default image

This morning as I trawled the spam queues a sense of deja-vu descended on me when this subject line caught my eye:          Update for Microsoft Outlook / Outlook Express (KB910721) Didn't I see this a while ago and didn't Read more…

Share

How long has this been going on? Star's site infected

by SophosLabs on October 22, 2009 | Leave a comment
How long has this been going on? Star's site infected

Last night, Roger's Information Security Blog detailing the hacking of the legendary singer Van Morrison's website. From the description of the hack I would have expected Sophos to have been detecting the site as Mal/Iframe-F. Naturally, I visited the site, Read more…

Share

Is Windows 7 safe? Sophos is ready, are you?

by Chester Wisniewski on October 21, 2009 | Leave a comment
Image (1) windows7-250.jpg for post 2926

October 22nd, 2009 is the official public launch of Microsoft Windows 7. Those of us in the software development, hardware, and large enterprise space have had access to it for a few months now. We have been working to put Read more…

Share

Sophos - ready for Windows 7

by Graham Cluley on October 21, 2009 | Comments Off
Image (1) windows7-compatible.jpg for post 15176

People around the world are about to get the opportunity to purchase and install Windows 7 (in fact, some members of the public have already received and reviewed it), so you may well be interested in whether you can protect Read more…

Share

What the BNP membership list leak can teach us all

by Graham Cluley on October 21, 2009 | Comments Off
Image (3) sophos-dlp-small.jpg for post 15170

The far-right BNP (British National Party) is no stranger to making headlines in the United Kingdom for their controversial views. BNP leader Nick Griffin is scheduled to appear on the BBC's top political television debate program, "Question Time", tomorrow evening, Read more…

Share

New Data Loss Prevention? Not Really

by SophosLabs on October 21, 2009 | Leave a comment
Default image

It's been a busy and exciting time here at Sophos over the past few weeks with the release of the latest version of our endpoint software. Amongst the many new features is the introduction of data loss prevention (DLP) functionality. Read more…

Share

Kanye West has NOT died in a car crash, but hackers still exploit the rumour

by Graham Cluley on October 21, 2009 | Comments Off
Image (1) kanye-west.jpg for post 15165

Kanye West, known around the world for making a "jackass" of himself (at least according to President Obama) by interrupting an award acceptance speech by Taylor Swift, is the subject of an an internet hoax that is being spread rapidly Read more…

Share