Monthly Archives: June 2010

Adobe, make my day. Disable JavaScript by default

Adobe make my day

Sophos principal virus researcher Vanja Svajcer guest blogs about the latest security updates from Adobe. Over to you Vanja... Users around the world will be pleased to learn that Adobe has managed to release an accelerated security update for Adobe Read more…

Aussies fall for "Shop for Free" scam on Facebook – watch out!

Image (1) target-scam.jpg for post 1576

Don't fall for the Target Week SHOP for FREE scam, which is currently proving very popular on Facebook. Thousands of Australians, and even more people elsewhere in the world, already seem to have decided that they "Like" this special offer Read more…

PDF and Java malware target unpatched PCs... again

Hidden Stormtroopers

I received a tip this week from one of our senior support representatives about a crafty new bit of PDF malware. He had been working with SophosLabs on an analysis request from a customer and ran into some clever and Read more…

Guest blog: Win a free iPad in our data security survey

Guest blog: Win a free iPad in our data security survey

Clearly Sophos's Carole Theriault is enjoying the power of guest-blogging. Here she is again, doing a favour for our UK marketing department who have an Apple iPad that they're dying to give away. The floor is yours Carole... Want the Read more…

Guest blog: Musings on Obama's 'kill-switch for the internet'

Guest blog: Musings on Obama's 'kill-switch for the internet'

Guest blogger Carole Theriault, a senior security consultant at Sophos, ruminates on the big red switch that President Obama might want installed in the Oval Office. Over to you Carole... Proposed US legislation, now approved by the US Senate committee, Read more…

Lessons from criminals - Good passwords matter

Screenshot of an SSH key

While I was returning from my trip to Boston a story broke about the Brazilian authorities' attempt to crack the encryption used by a financial criminal to protect his digital secrets. Daniel Dantas was convicted in Brazil for bribing a Read more…

Pas d'antivirus, pas de connexion à Internet

Default image

This article in Le Monde caught my eye today: Australie : pas d'antivirus, pas de connexion à  Internet. It concerns a report, published on June 21st by the Australian Standing Committee on Communications, in which the following recommendation is proposed: "... la coupure de l'accès Read more…

Guest blog: Does Apple stand at a security crossroads?

Guest blog: Does Apple stand at a security crossroads?

Ben Jupp, a Sophos technical specialist who lives and breathes all-things Mac, Linux and Unix, ponders Apple's attitude to security. Over to you Ben.. Apple gets a pretty rough press when it comes to security and to be honest I Read more…

Today's news brought to you by F-T-C and the number 20

Image (1) ftclogo.png for post 3308

In it's first move against a social networking site the US Federal Trade Commission published a press release yesterday announcing a settlement over privacy violations on Twitter. In the release the FTC used very strong language making its intentions to Read more…

Meghna Naidu isn't pregnant, she's been hacked

Meghna Naidu isn't pregnant, she's been hacked

Glamorous Bollywood actress Meghna Naidu has contacted the computer crime police in Mumbai, after her email and Facebook account were compromised by a hacker. 31-year-old Naidu, who I'm reliably informed is well known as a "sizzling hot Bollywood babe" in Read more…

'Peeping Tom' arrested for webcam blackmail attack spree

'Peeping Tom' arrested for webcam blackmail attack spree

FBI agents have arrested a man accused of hacking into more than 100 computers, and using personal information stolen from them to extort sexually explicit videos of young women and teenage girls. 31-year-old Luis Mijangos, of Santa Ana, California, was Read more…

Targeted Trident cyber-attack against defence company

Targeted Trident cyber-attack against defence company

Targeted attacks occur when cybercriminals launch malware against a specific organisation, industry or government department. In recent years we've often seen these distributed in the form of booby-trapped Word documents or malformed Adobe PDF files. Overnight we intercepted an attack Read more…

Workshop On Social Networking (WOSN) 2010

Workshop On Social Networking logo

This week I attended the Usenix Annual Technical Conference in Boston. The first day of the conference I attended the 3rd annual Workshop On Social Networking. It was interesting spending the day with academics who have an entirely different perspective Read more…

Podcast with SophosLabs on emerging threats

Default image

During last week's Sophos Security Chet Chat (episode 14) Michael Argast and I had a discussion about responsible media. We spent some time talking about AT&T's screwup of disclosing email addresses of iPad purchasers and how this really was not Read more…

Cybercrime forum suspects arrested by British police

Cybercrime forum suspects arrested by British police

Britain's Police Central e-crime Unit (PCeU) have announced today that they have arrested two men as part of an eight month investigation into what is said to be the world's largest English-speaking online cybercrime forum. The underground website consisted of Read more…

Taking your protection with you with Live URL filtering

Guest blog: Taking your protection with you

Rich Baldry, a product manager based in our Vancouver offices, discusses an exciting new security feature that will benefit everybody who browses the web away from their office. Over to you Rich.. The Winter Olympics may have been and gone, Read more…

"Who's your Verisign?" -- Malware faking digital signatures

"Who's your Verisign?" -- Malware faking digital signatures

Troj/BHO-QP is a rogue Browser Helper Object (BHO) which masquerades as a Flash Player extension from Microsoft, when in fact the BHO is a backdoor agent installed alongside QQ game automation freeware. The BHO has been seen installed as a Read more…

June roundup – "90 Second News"

Default image

Don't just read the latest computer security news – watch it in 90 seconds! Learn how Facebook 'clickjacking' actually works. Find out why Google is in the dogbox over vulnerability disclosure. See which companies had PR disasters sending out malware Read more…

Anatomy of a Symbian Malware

Anatomy of a Symbian Malware

Yesterday, I found a sample of Symbian malware while I was working on generic stuff. This kind of malware is quite difficult to spot, so today we are going to analyze this sample, which targets Symbian based smartphones. This malware Read more…

Guest blog: Sophos support for Windows NT 4

Guest blog: Sophos support for Windows NT 4

In this guest blog Sophos product manager Darren Teagles describes how Sophos's plans for continuing to support Windows NT 4 - long after Microsoft has officially given up on it! Over to you Darren.. Here's some good news. Sophos is Read more…