- SophosLabs: RT @NakedSecurity Dutch ISP KPN hacked, credentials and personal information leaked http://t.co/W5qbrLkJ04:46 PM February 11, 2012
- gcluley: CIA website brought down – were Anonymous attackers responsible? http://t.co/QLDf3FIG10:22 AM February 11, 2012
- gcluley: RT @NakedSecurity Dutch ISP KPN hacked, credentials and personal information leaked http://t.co/Y8G8q4fo07:18 AM February 11, 2012
Latest Articles
From Nigeria with Love - old sk00l spam
Every now and then we at SophosLabs receive a sample of malware or spam that (laughs aside) shows the true inventiveness of the spammers and malware authors. During the World Cup I received some SMS spam on my phone but Read more…
Android malware steals info from one million phone owners
Updated A developer of Android apps has been accused of using their apps to steal information from more than one million smartphone users. John Hering and Kevin MaHaffey, of mobile security firm Lookout, told the Black Hat security conference in Read more…
Details of 100 million Facebook users were *already* exposed on the net
Have you seen the headlines? They're pretty scary-looking. Here's just a handful - although there were hundreds more to choose from: "A fifth of Facebook users names 'leaked' to file-sharers", Techwatch "Details from 100 million Facebook profiles posted online", Network Read more…
Could this be the most stupid spam I have ever received?
Here's a spam email I just received: "I am not sure if you're aware of why your ranked this low.." Err.. I know this is a long shot, but could it possibly be because our website has nothing to do Read more…
Black Hat 2010 – Malware? SCADA? Privacy? Cloud?
Thousands of international security experts are congregating in Nevada, USA, for the Black Hat 2010 conference. But why? What is the single biggest issue which the 2010 conference will address? Is it malware? SCADA? Privacy? Cloud? Hear from the experts Read more…
'Mastermind' of Mariposa botnet arrested
Last week I blogged about the net closing in on a group of Slovenian hackers believed to be connected to the Mariposa botnet. Today it is being reported that a 23-year-old Slovenian, known as Iserdo, was arrested in the city Read more…
Fake anti-virus poses as free McAfee VirusScan
Fake anti-virus software (also known as scareware or rogue anti-virus) continues to be a big problem. Malicious hackers create programs that pretend to be legitimate anti-virus products, but are actually designed to frighten you into believing you have security problems Read more…
How large is a piece of Malware?
Q. What is the average size of a typical malware file? Of course there is no definitive answer to this question, and different kinds of malware can have vastly different sizes, but for those wanting an answer I ran a Read more…
Citi iPhone banking app contains security flaw
iPhone-owning customers of Citigroup have been urged to update their mobile banking app immediately because of a security flaw that secretly stored account numbers, bill payments and security access codes in a hidden file. The Citi Mobile app allows customers Read more…
Australian Tax Refund Spam Again...
It is now Australian Tax Refund time again. And right on cue, spammers have re-emerged in producing phishing scams as they would never miss this opportune moment to steal money. So, what does this year's taxation spam look like? It Read more…
Shortcut exploit: protect against it with this free tool
Sophos engineers have been busy developing and testing a free tool that protects users from malware exploiting the critical zero-day vulnerability known as the "Shortcut exploit". We have begun to see more hackers taking advantage of the exploit, spreading malware Read more…
Guest blog: Are you ready for the Cyber Security Challenge?
Sophos's James Lyne is our guest blogger today, describing a national competition to identify the UK's cyber security talent. Take it away James.. The hunt is on - the UK is looking for online security gods and goddesses. As the Read more…
Shortcut exploit still quiet - Keep your fingers crossed
I have been closely monitoring the recently disclosed vulnerability in the method that all versions of Windows use to render shortcuts. Fortunately, no major attacks aside from Stuxnet have had much success, but we are starting to see malware authors Read more…
Why won't my sample run?
Here at SophosLabs we have recently been seeing samples of Zbot (also known as the Zeus crimeware kit) that refuse to execute on any of our testing machines. Often when this happens it is because the sample is corrupt or will Read more…
Blackhat SEO even targets researchers
In the past week I've garnered a lot of press attention from my ongoing research into the Windows shortcut vulnerability. Apparently this has brought my name to the attention of the SEO poisoners who continually target Google. There were more Read more…
Want to see who has viewed your Facebook profile? Take care..
I'm increasingly being asked by folks on Facebook if it's possible to tell who has been viewing their Facebook profile. A number have been attracted to webpages and Facebook applications that claim to be able to give you a secret Read more…
Demi Moore and Facebook security
What a strange world we live in.. If you have Facebook friends who you believe are acting unsafely online you should invite them to become a fan of the official Facebook Security page and join the Sophos Facebook page too. Read more…
More malware exploiting Windows shortcut vulnerability
It probably won't come as a surprise to anyone, but more evidence has come to light that cybercriminals are actively exploiting the Windows shortcut vulnerability (also known as CVE-2010-2568). Like the earlier Stuxnet attack, more examples of specially crafted shortcut Read more…
Slovenian hackers investigated in Mariposa botnet probe
According to regional press reports, three Slovenian men are being investigated as part of an international probe into one of the world's biggest botnets, which compromised millions of computers world. Homes have been searched and "a large number" of computers Read more…


