-
- ChetWisniewski: Fancy some geeky tech-puzzle fun? Try our latest #sophospuzzle (and win a NERF gun) http://t.co/9k3pr1Qaabout 3 hours ago
- ChetWisniewski: Looks like no #Canadians have solved the latest #sophospuzzle yet - c'mon, let's give'r http://t.co/9k3pr1Qaabout 4 hours ago
- SophosLabs: Sophos just released a beta of its free Android anti-virus scanner (does other things too). Get it here http://t.co/9ankUHxhabout 5 hours ago
- gcluley: Technical paper - Fake anti-virus: The journey from Trojan to a persistent threat http://t.co/8pyjNEbGabout 5 hours ago
Monthly Archives: February 2010
Malware attack spammed out disguised as email settings file
Sophos is intercepting a large number of malicious emails that have been spammed out around the world, posing as a new settings files for internet users' email systems. However, attached to the emails is a Trojan horse. Each email is Read more…
New spam wave hits Twitter: "Get bigger and have sex longer"
Many Twitter users still haven't got over this weekend's BZPharma LOL phishing attack, and now a new campaign is being spammed out from compromised accounts directing users to a site selling herbal viagra to improve sexual performance. A typical spam Read more…
Hiding in plain sight
There are many forms of malcode concealment, from the "obfuscated beyond recognition" to "in plain sight" yet seldom have we seen hijacking of compiler runtime stubs (although infection of compilers, ala Induc, has already been explored and exploited [2,3]) Obfuscation Read more…
Sexy Twitter spammer promotes adult websites
I am quite used to strangers following me on Twitter, and normally I presume they're doing it to keep up with the latest security news. However, occasionally my followers have no interest in information security, but lots of interest in Read more…
Video of Twitter phishing: The BZPharma 'LOL this is funny' attack
Twitter users are being warned about a widespread phishing attack spreading across the system, designed to steal the usernames and passwords of unsuspecting members. Messages include Lol. this is me?? lol , this is funny. Lol. this you?? followed by Read more…
The first good BSoD
Perhaps this title should read "Blue screen of blessing." Yes, you are reading that correctly. BSoDs can occasionally have a back-handed benefit. Last Tuesday after Microsoft released its latest batch of patches, complaints started streaming in that there was a Read more…
European Internet Explorer users invited to choose another browser
Starting next week, European users of Internet Explorer may expect to see an invitation to choose an alternative browser for surfing the worldwide web. As part of a settlement of a long-running anti-competition dispute with the European Union, Microsoft has Read more…
What the Zeus!? Kneber botnet unmasked
Media reports from yesterday about a "broad new hacking attack" against corporations and government agencies gained a lot of attention. Here are just a handful of the heart-stopping headlines we saw: More than 75,000 computer systems hacked in one of Read more…
73% of adults have received a scam email in the last year
Well done to the British Office of Fair Trading for dreaming up an imaginative method to raise awareness of scams amongst the general public. Aside from providing a contact email address for internet users to report scam websites and messages, Read more…
Tour de France cheat accused of hacking into doping lab
A US cyclist who was stripped of his title of Tour de France winner in 2006, after being found with unusual levels of testosterone in his body, is wanted in connection with an alleged hack attack against the French anti-doping Read more…
Please Rob Me site exposes danger of sharing too much information online
Users of sites like Twitter and Foursquare will be all-too-familiar with seeing messages from friends broadcasting their current location and - through implication - that they're not at home. A new website called Please Rob Me mashes together content from Read more…
Anatomy of a scam
Advance fee fraudsters (AFFsters) trick well-meaning people out of millions of dollars a year. Basic AFF works exactly as the name suggests. "Hello, victim! Please send me money up front! Your rewards come later." Except, of course, they don't. More Read more…
MP feels the heat after 'scum-sucking' tweet
British MP David Wright has found himself in hot water this week after being accused of posting an offensive message about his Tory party rivals on Twitter. The Member of Parliament for Telford, Shropshire, made the headlines when a message Read more…
Critical security update for Adobe Reader and Acrobat
Adobe has issued a security bulletin urging users of its Adobe PDF Reader and Acrobat products to update their software before hackers take advantage of two critical vulnerabilities. Adobe Reader 9.3 for Windows, Macintosh and UNIX, Adobe Acrobat 9.3 for Read more…
A bad first week for Google Buzz
I've just returned from vacation to find that the everyone is buzzing about.. well, Google Buzz. Google's launch of a Twitter-style social network, embedded into its popular Gmail service, was always bound to make headlines of course, but it became Read more…
Furthermore, a grand piano ruminates,
Now and then, a photon from a bartender throws the grizzly bear of an inferiority complex at a resplendent CEO. When you see the worldly maelstrom, it means that a fruit cake starts reminiscing about lost glory. When a pine Read more…
Fake Conflicker.B Infection Alert puts internet users at risk
The global network of spamtraps controlled by the experts inside SophosLabs are seeing a swarm of attacks today, posing as an email warning about the Conficker worm. Here is a typical message that has been spammed out by hackers: Subject: Read more…
ISPs, Governments and Cybercrime
In the past two weeks, all three arms of Australian government – the legislature, the executive and the judiciary – have been in the international IT spotlight. In a globally-watched lawsuit, the Australian movie industry took local ISP iiNet to Read more…
Olympic SEO Poisoning
A tragedy occurred on Friday morning when Nodar Kumaritashvilii of Georgia died during a luge training run for the Vancouver 2010 Olympics. As we've seen with many other high profile deaths lately, it was only a matter of minutes before Read more…
Password safety - Grader.com saved by Twitter OAuth
The news is finally out as to how worried Twitter.Grader.com users need to be over the hack I reported last week. Dharmesh Shah blogged on the lessons he learned from the attacks on his site. It turns out that the Read more…
