Monthly Archives: June 2011

'Indestructible' rootkit rumours are greatly exaggerated! Stand down from high alert!

'Indestructible' rootkit rumours are greatly exaggerated! Stand down from high alert!

LulzSec has sailed away - if not off the edge of the world, at least into a part of space and time from which it can no longer trigger scared, and scary, headlines.

It seems we needed something to replace LulzSec, and it looks as though we've found it: the indestructible rootkit!

Weibo, China's Twitter-like service, hit by worm

weibo-thumb

A worm which broke out on Weibo, exploited a cross-site scripting flaw and sent around messages claiming to link to naked photos of Fan Bingbing, romantic poetry and mobile phone spyware.

Groupon subsidiary leaks 300K logins, fixes fail, fails again

sosasta-square

SoSasta, the Indian subsidiary of digital discount kings Groupon, leaked 300,000 usernames and plaintext passwords.

They've now closed the leak. But is the problem really fixed?

FBI searches LulzSec suspect's home in Hamilton, Ohio

pirate-thumb

The international investigation into the notorious LulzSec hacking gang continues, with news that FBI agents have searched a house in Hamilton, Ohio.

Phishing and YouTube marijuana videos send man to jail for 13 years

Operation Phish Phry and YouTube marijuana videos send man to jail for 13 years

A man has been imprisoned after being found guilty of leading an international phishing operation, and growing marijuana on an industrial scale in his house.

Google launches Google+ Facebook competitor, publishes new privacy policies

Google launches Facebook competitor, publishes new privacy policies

The mystery of the black menu bar at the top of your Google searches this morning is solved.

Apparently, it's part of gearing up for Google's latest assault on the social networking scene.

Is Facebook the right place to report a crime?

Is Facebook the right place to report a crime?

Ballarat, a country town in Australia, has made the news today thanks to social networking. One source has written that its "Cops Want Crimes Reported Via Facebook."

Actually, they don't, and it's important to realise why.

Apple pushes out critical Java security update for OS X users

softwareupdate-square

Oracle published its latest update to the Java Platform in the second week of June, pushing out the impressively-named Java SE 6 1.6.0_26.

Apple has now caught up, and OS X users are strongly advised to apply this latest update.

Sleazy subject lines spammed out with malware

Sleazy subject lines spammed out with malware

Would files with names like Love-Spots.bat, map-of-love.com, and Love-Map.com pique your interest?

If so, your behaviour could be putting your computer's security at risk.

MasterCard.com brought down in apparent Wikileaks-motivated internet attack

MasterCard.com website down after apparent internet attack

MasterCard's website was knocked offline following what appears to be a WikiLeaks-inspired internet attack by hacktivists against it.

Once again, a denial-of-service attack is a hactivist's best friend - but don't forget they're illegal.

EA resets users' passwords following LulzSec hack

EA resets users' passwords following LulzSec hack

Customers of EA (Electronic Arts) are reporting receiving emails from the company telling them that their passwords have been reset as a security measure.

'Boy reaction after his Ex girlfriend posted' clickjacking Facebook scam

'Boy reaction after his Ex girlfriend posted' clickjacking Facebook scam

A new clickjacking scam spreading across Facebook poses as a video of a boy's reaction after his ex-girlfriend posts on his wall.

The LulzSec boat sails away. Was it worth the ride? Should you care?

The LulzSec boat sails away. Was it worth the ride? Should you care?

Just a day after the 'retirement' of hack-the-world cyberbreach group LulzSec, and the official announcement is old news.

The world is already in a questioning frenzy about what happens next. But how could you possibly know? And should you even care?

SSCC 65 - FBI scareware arrests, Ryan Cleary/LulzSec, WordPress Trojans and Bitcoin

Sophos Security Chet Chat 41

Paul Ducklin joins Chester this week for Chet Chat episode 65. Chet and Paul discuss the impact of the recent FBI arrests of scareware purveyors, the arrest of Ryan Cleary and LulzSec's latest stunts, Trojanized WordPress plugins and the imaginary world of Bitcoin digital currency.

Simon Pegg is Twitter-hacked, warns fans of Trojan horse threat

Simon Pegg is Twitter-hacked, warns fans of Trojan horse threat

Actor Simon Pegg says that his Twitter account was hacked in order to spread a malware-infected screensaver to his 1.2 million followers.

'Yeahh!! It happens on Live Television!' Wardrobe malfunction video used in Facebook scam

'Yeahh!! It happens on Live Television!' Wardrobe malfunction video used in Facebook scam

An Italian model and TV hostess suffers an embarrassing costume slip on live television. It's no surprise, therefore, to find scammers taking advantage of the video for their own financial ends.

Ryan Dunn's last words lead to a Facebook scam

Ryan Dunn's last words lead to a Facebook scam

Ryan Dunn, a star of the TV show Jackass, died last week after a high speed car crash. And within hours, ghoulish scammers were taking advantage of the daredevil's demise by claiming to have exclusive videos of the accident in links that spread via Facebook.

Ryan Cleary has Asperger's syndrome, court hears

Ryan Cleary 'has Asperger's syndrome', court hears

The hacking suspect, charged with launching a denial-of-service attack against the SOCA website, suffers from Asperger's syndrome and agoraphobia, a London court is told.

The end of LulzSec? Hacking group says it is disbanding, after 50 days of attacks

The end of LulzSec? Hacking group says it is disbanding, after 50 days of attacks

LulzSec says its 50 day cruise is over, and it must now sail into the distance.

Has the hacking group really abandoned ship?

Goatse hacker pleads guilty to stealing iPad user data

Goatse hacker pleads guilty to stealing iPad user data

An alleged member of the Goatse Security hacking group, has pleaded guilty to breaking into AT&T's systems and obtaining the email addresses of iPad users.