Monthly Archives: March 2012
MasterCard and Visa payment processor compromised, up to 10 million cards stolen
Over 10 million credit cards may have been stolen by criminals who compromised a credit card processing company last month. Read on to find out what happened and what actions you may wish to take to protect yourself.
Check your Twitter account for rogue applications
If you're careless about what applications you allow to access your Twitter account, don't be surprised if you find the bad guys are spamming tweets out in your name without your permission.
Mac backdoor Trojan embedded inside boobytrapped Word documents
A backdoor Trojan horse, which would allow a remote hacker to access your Mac computer without your knowledge and potentially snoop on your files and activity, has been discovered hidden inside a boobytrapped Word document.
US House declines to block employers demanding Facebook passwords
The US House of Representatives on Wednesday voted down a bid to stop telecommunications companies from demanding Facebook logins from prospective job applicants. Is this about privacy or a bun fight between parties?
Search Engine Poisoning live in Brisbane, Queensland
Will you be in Brisbane, Queensland, on the evening of Tuesday 03 April 2012?
If so, you're invited to a live demo of Search Engine Poisoning, plus a touch of Mac malware, at the April chapter meeting of OWASP.
Trayvon Martin, Anonymous, and the problem with vigilantism
Mrs. W guest blogs: A look at vigilantism by hacktivist collectives like Anonymous in light of the Trayvon Martin shooting, and why it's distracting and ineffectual.
Are you being more private on Facebook?
Researchers looked at 1.4 million Facebook profiles from New York City in March 2010 and then again in June 2011. Do you think anything changed in that time?
Stopping the zombies: introducing the new FCC anti-botnet code
A new voluntary code of conduct for ISPs in the US creates new measures for addressing botnets. Does it go far enough?
Draw Something scam targets players via Twitter
Are you one of the millions of devotees of the Draw Something game?
Watch out! Scammers are trying to dupe you into clicking on their links.
Technical paper: Learn about the Blackhole exploit kit
Since the Blackhole exploit kit first reared its head in 2010, it's grown to become one of the most notorious exploit kits ever seen. SophosLabs' Fraser Howard takes a more detailed look into Blackhole and how it works.
Adobe Flash enables auto-updating while patching two critical flaws
Adobe has released an out-of-band fix for two critical vulnerabilities in Flash Player. More importantly they have also introduced an automatic, silent updater that can ensure you are on the latest version without the hassle.
Trojan Android games send expensive SMS messages
New Android malware seems to continue to roll off the criminal assembly lines, this time in China. Downloading an innocent game *can* get you into trouble.
OpenX ads leading to malware c/o 'BlackAdvertsPro'
Take a look at some recent attacks where OpenX ad servers are being hacked in order to hit redirect users users to exploit sites and infect them with malware.
Interview with a Pinterest spammer, earning $1000 a day
A spammer, who claims to earn $1000 a day by automatically posting affiliate links onto Pinterest from thousands of bot accounts, has given an interview describing his operation.
Games developer Rockyou fined $250K for not securely storing customer data
Rockyou were fined by the FTC for storing customer data in plain text. 32 million login details were stolen and published on the web. What can the rest of us learn from this?
VX Heavens, old-school virus-writing website, raided by police
The website, which described itself as "dedicated to providing information about computer viruses (virii) and web space for virus authors and groups", has been running for many years.
Facebook teaches users how to kill adware
Curious to know who's been checking you out on Facebook? Tempted to see who's visited your timeline? Put that click-happy finger away!
Contactless payment cards raise security concern - but is there a much older problem?
A TV news report raises concern about the NFC-enabled contactless cards being used by Barclays banking customers. Professor Alan Woodward explores what he believes to be the real issue.
Justin Bieber's Twitter account - hacked!
Things could have been much much worse..
Justin Bieber had his Twitter account briefly hacked, as mischief-makers posted up an offensive message.
17-year-old Dutch hacker arrested for accessing KPN servers
The Dutch High Tech Crime Team has arrested a 17-year-old man for accessing customer account data on servers run by KPN, one of the largest ISPs in The Netherlands.
![Password security infomerical leaves Ellen DeGeneres in disbelief.. and it will you too [VIDEO]](http://sophosnews.files.wordpress.com/2013/04/ellen-thumb.jpg?w=75&h=75&crop=1)
![Can multiple moving cursors really hide your password from spyware and peepers? [VIDEO]](http://sophosnews.files.wordpress.com/2013/03/cursors-thumb.jpg?w=75&h=75&crop=1)
