Archive for November, 2009

The Koobface gang has been keeping themselves busy of late.

Read more:
Koobface Kicking off the Festive Season

Tiger Woods is in the news, and predictably, search engine optimization (SEO) attacks are attempting to direct the curious towards scareware scams. We have a video demonstration available via the lab’s YouTube channel : On 30/11/09 At 04:34 PM

See the rest here:
Video - Tiger Woods SEO Attacks

I gone through a nice white paper on HTTP Botnets from team-cymru.

“Botnets come in many flavors. As one might expect, these flavors all taste different. A lot of Internet users have had their taste of IRC, P2P and HTTP based botnets as their computers were infected with malicious software. HTTP based botnets seem to be the flavor of the month, but what do we know about the recipe for HTTP based botnets? Who’s actually cooking them? This paper takes a closer look at HTTP botnets and tries to give insight on who is behind the stove and what exactly is being served.”

See more about this white paper from original here:

The car accident involving Tiger Woods last night outside his home in Windemere, Florida has been generating a lot of heat as far as Web traffic and searches go. Since the news broke, the top web searches on Google has been related to the this story. Even hours after the break of the story, six out of the top ten search items are still related to this event.

More here:
Tiger Woods Car Accident Heating Up the Web

Ten of Application Security industry’s coolest, most interesting, important, and entertaining links from the past week — in no particular order. Regularly released until year end. Then the Best of Application Security 2009 will be selected! Injection attacks, its not just SQL! You’ve been hacked.

See original here:
Best of Application Security (Friday, Nov. 27)

Security Response has discovered a threat that is being talked about among some members of certain discussion groups in Japan. The threat, named Infostealer.Kenzero , teaches yet another lesson to those using file-sharing networks not to download illegal games.

Read the rest here:
Illegal Games? Pay the Price—Publicly!

Security Response has discovered a threat that is being discussed among some members of certain discussion groups in Japan.

View original post here:
Illegal games? Pay the price - publicly!

Today is Black Friday in the United States.

Original post:
Black Friday 2009

Microsoft published a Security Advisory on Monday for a vulnerability in Internet Explorer 6 and IE7 that could allow for remote code execution. IE8 is not affected. Currently, there are no reports of this vulnerability being exploited in-the-wild

See the original post here:
Exploit Shield FTW

Okay, I did just coin the term “AV Friday” as a joke and it’s not to be taken too seriously. So, what is AV Friday all about

Visit link:
Black Friday, Cyber Monday, and now AV Friday!