Monthly Archives: December 2010

Geinimi Android Trojan horse discovered

Android Trojan horse discovered

Android users may not be at risk from as much malware on their smartphone as on their desktop computer, but that doesn't mean they should be careless about security.

Pro-WikiLeaks hackers attack Zimbabwe government websites

Pro-WikiLeaks hackers attack Zimbabwe government websites

Hacktivists have struck a blow against the regime in Zimbabwe - attacking a number of government websites in support of newspapers who published secret cables in the ongoing WikiLeaks saga.

Stay alert for "prize offers" over the New Year's holiday

summerpuzzle-330

Are you working over New Year, like Sophos Support and SophosLabs?

If so, here's a bit of fun - official, educational fun! - to tide you over: a crossword puzzle for computer geeks.

WordPress warns of critical flaw, update to 3.0.4 immediately

WordPress250

WordPress is advising bloggers of a critical vulnerability in WordPress versions previous to 3.0.4. If you have a WordPress blog you should update immediately.

Sophos Security Chet Chat 41 - Who do you trust?

Sophos Security Chet Chat 41

The last Chet Chat of 2010 is live and Tony Ross joined Chester Wisniewski this week to discuss Apple pulling the WikiLeaks app, the new IE zero day, Christmas hacking, cloud data leakage and how to establish trusted advisor status with users.

WikiLeaks, Gawker, OpenBSD, Lineage II - 90 Sec News - Dec 2010

featured-250

Don't just read the latest computer security news - watch it in 90 seconds!

This month: the WikiLeaks show, massive Gawker password theft, an out-of-the-blue OpenBSD accusation, and virtual property stolen from Lineage II.

Honda hack: Millions of customers' email addresses stolen

Honda hacked: Millions of customers' email address stolen

American Honda says it has contacted millions of its customers after hackers stole a database containing names, email addresses, and VINs (the Vehicle Identification Number, or unique 17 character ID for your motor vehicle).

Mozilla accidentally publishes user IDs and password hashes

The tshirt Jacob Appelbaum was wearing during his MD5 talk at 25c3

Mozilla, of Firefox and Thunderbird fame, had accidentally published the user IDs and password hashes of users of their addons.mozilla.org website. It appears their reaction to the disclosure has contained the damage, but what can be done to prevent these incidents in the future?

Canada vows to be less spammy in 2011 - At least after September

6 Canadian Flags courtest of WindsorDi's Flickr photostream

On Dec 15th Canada passed its first anti-spam legislation. Will this have an impact on the global spam problem, or is it too little too late?

Owned and Exposed 2 - An unwanted Christmas gift for exploit-db, ettercap and others

owned-exposed-thumb

Hackers broke into 6 websites and announced their exploits on Christmas morning, both security experts and other hackers were targeted. Learn who was attacked and why you must remain vigilant with regards to your security.

Spare a thought for those working this Christmas..

Beware romance scams this Christmas

There are some groups of people for whom it's just another day, who don't have the luxury of taking some time off just because it's December 25th. Yes, I'm talking about the spammers, the scammers, the cybercriminals, the identity thieves..

Merry Christmas, grab some nog and listen to Chet Chat 40

Chet Chat logo with wreath

Merry Christmas from SophosLabs. As always we are on-duty 24 x 7 and bringing you the latest news with this Christmas edition of the Chet Chat.

Data security breach at the North Pole! Santa's Naughty/Nice list compromised

Santa's data security breach

Reports from the North Pole have confirmed that Santa's Naughty/Nice list has been compromised.

The list is said to contain the name, stocking address and naughty/nice score (the child equivalent of a credit rating) of every child on earth.

VIDEO: How poor security helped a geek get his stolen computer back two years later (NSFW)

zoz-thumb

Remotely hacking into a computer is wrong, right?

Well, maybe not if it's your computer - that was stolen from you two years beforehand..

Viral Facebook scam: OMG! 92% of the people who watch this will fall asleep instantly

Viral Facebook scam: OMG! 92% of the people who watch this will fall asleep instantly

A Facebook social network scam says that 92% of people will fall asleep upon watching their video.

But, in reality, the only people with their eyes closed are the Facebook users who are unwittingly help scammers earn money through online surveys.

Court hears Texan hacker stole $274,000 from Digital River

digital-river-thumb

A Minneapolis federal court hears that a Texan man stole more than a quarter of a million dollars from Digital River subsidiary, SWReg.

Internet Explorer zero-day exploit - explanation and mitigation

emet-250x250

A remote code execution vulnerability against Internet Explorer was announced recently.

Microsoft doesn't have a patch out yet, but it has published a workaround which protects against this exploit, and others of a similar sort.

School caretaker victimised after English Defence League database hack

School caretaker victimised after English Defence League database hack

Innocent man finds his job as a school caretaker is in peril, after his wife's name is found in a controversial right-wing database exposed by hackers.