Monthly Archives: March 2012

MasterCard and Visa payment processor compromised, up to 10 million cards stolen

Image of credit card terminal courtesy of Shutterstock

Over 10 million credit cards may have been stolen by criminals who compromised a credit card processing company last month. Read on to find out what happened and what actions you may wish to take to protect yourself.

Check your Twitter account for rogue applications

Check your Twitter account for rogue applications

If you're careless about what applications you allow to access your Twitter account, don't be surprised if you find the bad guys are spamming tweets out in your name without your permission.

Mac backdoor Trojan embedded inside boobytrapped Word documents

Mac backdoor Trojan embedded inside boobytrapped Word documents

A backdoor Trojan horse, which would allow a remote hacker to access your Mac computer without your knowledge and potentially snoop on your files and activity, has been discovered hidden inside a boobytrapped Word document.

Search Engine Poisoning live in Brisbane, Queensland

Search Engine Poisoning live in Brisbane, Queensland

Will you be in Brisbane, Queensland, on the evening of Tuesday 03 April 2012?

If so, you're invited to a live demo of Search Engine Poisoning, plus a touch of Mac malware, at the April chapter meeting of OWASP.

Trayvon Martin, Anonymous, and the problem with vigilantism

Trayvon Martin, Anonymous and the problem with vigilantism

Mrs. W guest blogs: A look at vigilantism by hacktivist collectives like Anonymous in light of the Trayvon Martin shooting, and why it's distracting and ineffectual.

Are you being more private on Facebook?

LIKE

Researchers looked at 1.4 million Facebook profiles from New York City in March 2010 and then again in June 2011. Do you think anything changed in that time?

Stopping the zombies: introducing the new FCC anti-botnet code

digitalskull

A new voluntary code of conduct for ISPs in the US creates new measures for addressing botnets. Does it go far enough?

Draw Something scam targets players via Twitter

Draw Something scam targets players via Twitter

Are you one of the millions of devotees of the Draw Something game?

Watch out! Scammers are trying to dupe you into clicking on their links.

Technical paper: Learn about the Blackhole exploit kit

Blackhole exploit kit

Since the Blackhole exploit kit first reared its head in 2010, it's grown to become one of the most notorious exploit kits ever seen. SophosLabs' Fraser Howard takes a more detailed look into Blackhole and how it works.

Adobe Flash enables auto-updating while patching two critical flaws

Adobe Flash security update for Windows, Mac, Android, Linux and Solaris users

Adobe has released an out-of-band fix for two critical vulnerabilities in Flash Player. More importantly they have also introduced an automatic, silent updater that can ensure you are on the latest version without the hassle.

Trojan Android games send expensive SMS messages

shutterstock_MobilePhoneMoney250

New Android malware seems to continue to roll off the criminal assembly lines, this time in China. Downloading an innocent game *can* get you into trouble.

OpenX ads leading to malware c/o 'BlackAdvertsPro'

OpenX ads leading to malware c/o 'BlackAdvertsPro'

Take a look at some recent attacks where OpenX ad servers are being hacked in order to hit redirect users users to exploit sites and infect them with malware.

Interview with a Pinterest spammer, earning $1000 a day

Interview with a Pinterest spammer

A spammer, who claims to earn $1000 a day by automatically posting affiliate links onto Pinterest from thousands of bot accounts, has given an interview describing his operation.

Games developer Rockyou fined $250K for not securely storing customer data

rockyou faces FTC fines

Rockyou were fined by the FTC for storing customer data in plain text. 32 million login details were stolen and published on the web. What can the rest of us learn from this?

VX Heavens, old-school virus-writing website, raided by police

VX Heavens, old-school virus-writing website, raided by police

The website, which described itself as "dedicated to providing information about computer viruses (virii) and web space for virus authors and groups", has been running for many years.

Facebook teaches users how to kill adware

Facebook silently tracking users' cursors to see which ads float our boats

Curious to know who's been checking you out on Facebook? Tempted to see who's visited your timeline? Put that click-happy finger away!

Contactless payment cards raise security concern - but is there a much older problem?

Contactless payment cards raise security concern - but is there a much older problem?

A TV news report raises concern about the NFC-enabled contactless cards being used by Barclays banking customers. Professor Alan Woodward explores what he believes to be the real issue.

Justin Bieber's Twitter account - hacked!

Justin Bieber's Twitter account - hacked!

Things could have been much much worse..

Justin Bieber had his Twitter account briefly hacked, as mischief-makers posted up an offensive message.

17-year-old Dutch hacker arrested for accessing KPN servers

handcuffs

The Dutch High Tech Crime Team has arrested a 17-year-old man for accessing customer account data on servers run by KPN, one of the largest ISPs in The Netherlands.