The Security Blog» Latest InfoSec Threat Research & News | TheSecurityBlog.com

Security vulnerabilities in Pligg CMS version 1.0.4

Acunetix — Fri, 03 Sep 2010 13:09:50 +0000

While beta testing the latest version of Acunetix WVS v7, we found a large number of security vulnerabilities in various web applications. In the following days we will publish some of these vulnerabilities. Note that ...

The correct CV(or malware)

Xinran — Fri, 03 Sep 2010 08:09:57 +0000

Today we have observed some messages which at first glance appeared to be somebody trying to correct their mistakes on the CV they sent out. All messages had the same body text that read as follows: Thank you for the chat yesterday, it really helped me get a clearer idea of recruitment as well as exploring any potential [...]

Zombie game inspires scammers to target your brains

paperghost — Fri, 03 Sep 2010 07:17:00 +0000

Zombies. Whether they’re shuffling Romero types, the wisecracking “send more cops” variety or even the crumbling Fulci efforts it’s important to be prepared (no, I’m not counting the ones that run. Those are stupid).As you can see, I’m re...

We are good at finding names

PandaLabs Blog — Fri, 03 Sep 2010 01:30:54 +0000

We have received this file today. Rogue creators are spending less time creating interface and spending more time to find a new name.Malware name: Adware/MySecurityShieldVirusTotal File name: 622ed7d54cbeb06ef977ee111e2b97ddf3f78dd5 Submission date...

To infinity and beyond

Sophos — Fri, 03 Sep 2010 00:02:51 +0000

SophosLabs has discovered a technique in anti-virus marketing, which we detect as Spin/BigNumber-P. Typical behaviour involves phrases such as “Product detects X viruses!”, where X is a large, rather exact-sounding number. Some variants involve high-tech numerical displays updated in real-time with ever growing numbers. This technique has been spotted in the wild. Never one to be [...]

Organized Web Mobsters Getting Jobs Inside Corporations

Robert Siciliano — Fri, 03 Sep 2010 00:01:14 +0000

In 2009, there were a reported 140 million records compromised, compared to 360 million in 2008. In 2010 there have been almost 13 million records stolen. But don’t have a party just yet. Criminals are fine-tuning their craft and getting better. The industry just isn’t making it as easy. 97% of those records were stolen [...]

Putting BitTorrent Under the Spotlight

Wade — Thu, 02 Sep 2010 21:48:57 +0000

We have added a new video that introduces the key security concerns swirling around BitTorrent and specifically how to manage the risks that this incredibly popular application brings to your networks. We will cover how BitTorrent has evolved to avoid detection by traditional firewalls and IPS, how hackers are using BitTorrent to control malware, and [...]

Ben Franklin’s Endpoint Security Advice

Lumension — Thu, 02 Sep 2010 20:17:57 +0000

Ben Franklin dished out some pretty good security advice in his day. In fact, he was one of the most well known security professionals of his time. Many of you may realize it was Franklin that coined the saying ‘An ounce of prevention is worth a pound of cure’ but what you might not know [...]

Safe Web Surfing Rule # 1: READ the URL

Tom Kelchner — Thu, 02 Sep 2010 19:54:00 +0000

Safe Web Surfing Rule # 2: See Rule # 1Email and social networking sites might be a global phenomena, but English remains widely used in URLs and elsewhere on the Internet. In the English verbiage in malicious email, URLs and web sites there are words ...

U.S. Labor Day: phishers won’t be on holiday

Tom Kelchner — Thu, 02 Sep 2010 17:18:00 +0000

Holidays are times when we see a big uptick in email retail advertising. They are also a time when we should be especially aware of threats from phishing schemes in all those ads.In that surge of emails promoting holiday sales we can expect fraudulent ...

Where’s Waldo? Adjusting Law and Policy for Location-Based Services

shanford@cisco.com — Thu, 02 Sep 2010 13:46:38 +0000

Last month, my colleague Christopher Burgess shared some thoughts on the “double-edged sword” of location-based services at the Huffington Post. In his post, Christopher highlighted how these services could alternately be a benefit, and whe...

Chilean miners tragedy used to distribute malware

PandaLabs Blog — Thu, 02 Sep 2010 12:00:15 +0000

We want to warn you of a Banker Trojan that is using the news of the miners trapped in Chile to be distributed and infect users. It has been detected as Banbra.GUC.The malicious file reaches the computer with the following icon:When this file is ...

Tenable Security Showcase – New York City

Paul Asadoorian — Thu, 02 Sep 2010 11:00:00 +0000

Please join Tenable's own Ron Gula, Renaud Deraison, Marcus Ranum and Paul Asadoorian for a Security Showcase on October 6, from 8:30am to 2:00pm at the New York Marriott East Side, 525 Lexington Ave. at 49th Street in New York...

Faulty Fiverrs

paperghost — Thu, 02 Sep 2010 10:43:00 +0000

Fiverr is an excellent site that allows you to buy / sell services – all of which cost $5.There’s all sorts of crazy things on there, but does it attract rogues and individuals who generally want to mess up your day?You bet. With a little furti...

FakeAV, now with sounds

Prashant Kumar, SophosLabs AU — Thu, 02 Sep 2010 05:17:23 +0000

Recently, creators of Fake Anti Virus software have been getting quite creative and somewhat “professional” in designing the look and feel of their fake software. Today I came across one with sounds.Whenever the malware does a fake scan and finds something wrong with the user’s computer, a lady’s voice (in typical GPS style, I might add) [...]

Cyberthieves Hit Another University

Walt Conway — Wed, 01 Sep 2010 23:00:00 +0000

This post isn't PCI-related, but it does address your security and your money, so read on...According to a report in Krebs on Security, cyber thieves made off with nearly $1 million from a University of Virginia satellite campus:According to several so...

Security Advisory for NetWare 6.5 OpenSSH

DVLabs: Blogs — Wed, 01 Sep 2010 22:13:05 +0000

Posted by Zef CekajThis is a little information clarifying the exploitability of ZDI-10-169 as discovered by ZDI researcher Francis Provencher. Novell has classified this bug as a Denial of Service and will not be issuing a patch. Novell's official s...

GFI/Sunbelt Labs quarterly briefing is on Web

Tom Kelchner — Wed, 01 Sep 2010 19:38:00 +0000

“Turn the Tables on the Bad Guys, Malware Unmasked”The Sunbelt Labs quarterly briefing “Turn the Tables on the Bad Guys, Malware Unmasked” is available for your viewing pleasure.Schwartzkopf began by describing GFI's recent acquisition of ...

How Do You Find 200,000 Unique Samples a Day?

TheSecurityBlogger — Wed, 01 Sep 2010 17:22:43 +0000

I recently received a couple of questions about signatures from a reader. 1- You said that ESET receives around 200000 unique malware samples daily, so does ESET detect most of them or detect only the malwares that their signatures are listed here: http://www.eset.com/threat-center/threatsense-updates ? 2- Nowadays why signatures are written? Are they written to detect malwares initially, ... Read More.

Mariposa: the Slovenian story

PandaLabs Blog — Wed, 01 Sep 2010 16:00:42 +0000

Some weeks ago it was announced that the Slovenian police had arrested some individuals who were responsible for selling the bot that was used to build the Mariposa botnet, whose creators were also arrested in Spain last March. Many confusing news have...