Monthly Archives: February 2010

Old websites are also used in spam SEOs

Image (1) lynx.jpg for post 25209

On Friday, I blogged saying that spammers SEO campaign. Working today, I went to check to see if the local police authority had cleaned up their old web page. So I wgetted the file and scanned it. It was no Read more…

Tsunami blackhat SEO begins

Image (1) tsunamiseo500.png for post 3099

Unfortunately, as Graham Cluley regularly blogs, any breaking news topic tends be exploited by hackers who use Search Engine Optimization (SEO) to lure people to visit their malicious pages. Today's news of a large earthquake in Chile seems to be Read more…

Free FakeAV at Virus-Total (That's not VirusTotal)

Image (1) virustotalfakeav1.png for post 25205

VirusTotal has been well known to most readers of the blog. It's a free virus and malware online scan service which allows submitters to test a particular file against a multitude of malware scanners. So, it's not highly surprising that Read more…

Multiple personality disorder?

Multiple personality disorder?

Are malware authors and spammers suffering from the same affliction of "word salad", or are they perhaps devoted students of combine random words in an attempt to look legitimate? The reason is a simple one - not only are humans Read more…

Sophos bloggers at the RSA Conference

Default image

Sophos will be out in force at the RSA Conference in San Francisco next week, giving you the opportunity to see our products in action and meet (amongst others) bloggers Paul Ducklin, Chet Wisniewski and err.. me. Topically enough, considering Read more…

Insight into fake AV SEO

Insight into fake AV SEO

Readers of the Sophos blogs will probably have seen the post Graham made about the 'killer whale video' SEO attacks. We have described SEO attacks before (for example here). In this post I want to highlight how these attacks are Read more…

UK Cabinet Minister Ed Miliband hacked on Twitter

Image (1) twitter-ed-miliband-sex.jpg for post 15944

Ed Miliband MP, the high profile British Secretary for Energy and Climate Change, has fallen victim to the current swathe of phishing attacks sweeping the Twitter system. Mr Miliband, who is a member of Gordon Brown's cabinet, appears to have Read more…

Troj/IFrame-DY: Old websites don't die they just get infected

Image (1) redirect.jpg for post 25188

Earlier this week Sophos informed a UK Local Police Authority (Hertfordshire) that a website they owned was infected with Troj/IFrame-DY. It turns out that the Police Authority has a new site and the infected site is an old one that Read more…

Flirty phishing? 24/female/horny has just Twitter-spammed you

Image (1) 24-female-horny-twitter.jpg for post 15939

Plenty of Twitter users must be finding the spate of spam and phishing attacks that have plagued them this week pretty tedious by now. The latest message being spammed out claims to come from a young woman: hi, i'm 24/female/horny... Read more…

Educate your users about social networking threats with our free toolkit

Image (3) sally-adam.jpg for post 15935

Sally in the marketing department has put together a really handy package, which will help you educate your users about social networking threats. And the best news of all is that it's completely free! Tell us all about it Sally.. Read more…

Sea World killer whale attack video leads to malware

Image (3) dawn-brancheau.jpg for post 15929

Dawn Brancheau, a trainer at Sea World in Orlando, was killed yesterday after being attacked by a killer whale. News of the tragedy sped quickly around the world, and now sick cybercriminals are exploiting the story of 40-year-old Brancheau's death Read more…

Guest blog: Beta test upcoming Sophos products

Default image

Camera-phobic guest blogger Kim Charlton, who manages the beta program at Sophos, wants to bribe you into helping us improve our products. Over to you Kim.. It's beta time again and I am once again on the lookout for people Read more…

This you???? : Phishing attack hits Twitter users

Image (1) this-you-tweet.jpg for post 15921

There is another widespread phishing attack hitting users of Twitter today. Messages asking "This you????" followed by a link are being sent via the system to unsuspecting users. If you click on the link you are taken to a fake Read more…

Full surveillance internet society?

Image (1) watching-you.jpg for post 1460

Queensland, Australia, is reeling from the news of two child murders in the past two weeks. 12-year-old Elliott Fletcher was stabbed to death last week at school; 8-year-old Trinity Bates was killed and dumped in a storm drain just 100 Read more…

Vote for your favourite security blogger

Default image

Those terribly nice folks at SC Magazine are running a number of online polls on their homepage in the run-up to their awards ceremony at the RSA Conference. The poll for the most popular security blogger caught my eye in Read more…

FTC notifies almost 100 organisations of P2P data leaks

Image (1) ftc-notification.jpg for post 15917

The Federal Trade Commission has notified close to 100 US organisations of serious P2P-related security breaches that have exposed consumers to the risk of identity theft and fraud. The use of P2P file-sharing networks to download music and movies opens Read more…

Surveillance rootkits on smartphones

Image (1) smartphone-snooping.jpg for post 15913

Liviu Iftode and Vinod Ganapathy, two researchers at Rutgers University, have revealed some experiments they have been conducting, showing how rootkits could be used to take control of smartphones. The scientists have shown that a malicious attacker could cause a Read more…

Routers with poor passwords at risk from Chuck Norris

chuck-norris

Have you changed the password on your home router, or are you still using the default password it shipped with? Well, a new malware attack named after a cult action movie star might make you wake up to the risk Read more…

Malware-spiked adverts hit Star Tribune website

Image (1) star-tribune-logo.jpg for post 15910

The Star Tribune, the largest newspaper in the state of Minnesota, has confirmed that visitors to its website (www.startribune.com) were hit by malicious adverts earlier this week. The "malvertising" attack, which began on Sunday, spurred the newspaper into disabling all Read more…

New affiliate scam strikes Facebook

Image (1) fbscam500.jpg for post 3089

Another scam using stolen Facebook credentials is making the rounds. It is unclear how the spammers are acquiring the credentials, but it is likely the result of phishing, or Koobface. This attack is using the subject "Y o y Tube", Read more…