-
- ChetWisniewski: Fancy some geeky tech-puzzle fun? Try our latest #sophospuzzle (and win a NERF gun) http://t.co/9k3pr1Qaabout 3 hours ago
- ChetWisniewski: Looks like no #Canadians have solved the latest #sophospuzzle yet - c'mon, let's give'r http://t.co/9k3pr1Qaabout 4 hours ago
- SophosLabs: Sophos just released a beta of its free Android anti-virus scanner (does other things too). Get it here http://t.co/9ankUHxhabout 5 hours ago
- gcluley: Technical paper - Fake anti-virus: The journey from Trojan to a persistent threat http://t.co/8pyjNEbGabout 5 hours ago
Monthly Archives: January 2010
Salesmen Are Not My Friends
I dislike salesmen. The look on their faces irks me when I can feel the dollars flicking in their eyes. I hate it when my car insurance company ask if i want to get home insurance as well. I do Read more…
Now you too can mount your own Operation Aurora Attacks!!!
But don't. Please don't!... just.... don't!... Instead, why don't you apply the out-of-band patch ( MS10-002 ) that Microsoft has just released...?!!! Patching remote-code-execution vulnerabilities is usually "a good idea" to say the least. But, considering that: Microsoft rushed to Read more…
Operation Aurora: Patch available, new evidence of China connection
Microsoft has responded very quickly turning around a patch for the 0 day exploit in Internet Explorer in approximately one week. This is impressive, as something as complicated as Windows with all of the language variants, service packs, etc is Read more…
Major virus outbreak at University of Exeter
The University of Exeter in England has reported that it suffered a "severe" virus outbreak, which resulted on its entire network being shut down earlier this week. Although the University reports that 95% of its network is now back to Read more…
Windows kernel vulnerability adds to Microsoft's woes
Microsoft are under the pump fighting vulnerabilities at the moment. Just six-and-half hours after blogging that the Operation Aurora Internet Explorer fix would be ready the next day, they blogged about a publicly-announced Windows kernel vulnerability. Microsoft's 979682 advisory about Read more…
iPhish - fake iPhone warranty steals info
This week we've seen a spam campaign aimed at separating unsuspecting users from their iPhone details. Messages have the subject "IMPORTANT: Your iPhone Warranty Extension for 1 Year!", pretend to be sent from "iphonewarranty@apple.com", and look as follows (click to Read more…
Microsoft name the day for "Aurora" patch
As Chet mentioned yesterday Microsoft are going to release an out-of-band patch for the IE zero-day vulnerability used in the "Aurora" hacks. Today Microsoft have confirmed that the patch will be released on January 21. Microsoft's announcement : http://www.microsoft.com/technet/security/bulletin/ms10-jan.mspx Although Read more…
Operation Aurora, and a brief video apology from me
Paul Ducklin of this parish (well, actually our Sydney, Australia office) has made a terrific video, demonstrating the Internet Explorer vulnerability at the heart of the Operation Aurora/Google vs China hacking story. If you watch the video you can see: Read more…
Operation Aurora: Further activity - copycat sites
As previously predicted, copycat attacks attempting to exploit the IE zero day vulnerability (CVE-2010-0249) were inevitable. Though numbers are still very low, over the past 24 hours or so we have seen a few sites serving up malicious code attempting Read more…
The Operation Aurora exploit - live and explained on video!
The Operation Aurora Internet Explorer vulnerabilty is the biggest IT news story of the year so far. So watch this video now. (Also available in High Definition.) The video covers: Quick recap of the history of Operation Aurora Roughly how Read more…
Firefox and Opera benefit from Operation Aurora fall-out
According to a report in the Wall Street Journal, the high profile "Operation Aurora" hack attack against Google and some 30 other companies has been good news for some firms. Namely, the makers of the Firefox and Opera web browser. Read more…
Critical patches emerge for Mac OS X security holes
It's not clear if Apple was feeling left out with all the attention being given to a zero-day vulnerability in Microsoft's Internet Explorer, but they have issued a security update for users of their Mac OS X operating system. 2010's Read more…
Microsoft to release "Operation Aurora" fix out of band
Microsoft has just announced they will be releasing an out-of-band fix for the "Operation Aurora" Internet Explorer zero-day exploit. This is great news for Internet Explorer users and should serve as enough warning to IT administrators to prepare to roll Read more…
Should we bin Internet Explorer?
Australia has joined the list of countries with official guidelines suggesting that you consider giving up on Internet Explorer, at least until Microsoft has fixed the now-widely-known vulnerability in its browser. France and Germany have floated similar advice, presumably over Read more…
Operation Aurora Update - Google, Adobe, and the 0 day flaw in IE
Being that we have been blogging as the story develops, I thought I would create a brief summary of where we stand. We are now approaching the one week point since Google announced it would stop filtering search results in Read more…
Operation Aurora: More on the IE zero day
Following last week's announcement of the new zero day vulnerability in Internet Explorer, and its role in high profile, targeted attacks [1,2], the news wires have been hot with announcements about 'what to do'. Particularly strong warnings have been sent Read more…
Operation Aurora: France says stop using Internet Explorer
It looks like European countries might be falling over themselves to boost the uptake of Firefox, Safari, Chrome and other non-Microsoft internet browsers. The French government has followed in the footsteps of its German counterparts by recommending that users stop Read more…
What is identity?
Guest blogger Michael Argast: SSN 627-44-3942, DOB July 17th, 1971 Lie. I generally consider myself pretty truthy, but increasingly these days I find myself lying. A website needs my date of birth? Make something up. Mother's maiden name: Jones. Favorite Read more…
Jewish Chronicle website hacked by 'Palestinian Mujaheeds'
The website of the Jewish Chronicle newspaper, the world's longest running Jewish newspaper, has been hacked by a group calling itself the "Palestinian Mujaheeds", protesting against the continuing blockade of the Gaza Strip by Israel. The hackers appear to have Read more…
Dangers Of Virus Signature Checksum
Malware authors are not stupid. When they recognise their creations have been blocked by a particular anti-virus, they resort to finding ways around it so that their new creations would slip through the detection. To stay ahead of the malware Read more…
