Author Archive
July
Over the weekend, news reports of “hacked” iTunes accounts used to purchase worthless apps surfaced. And since there was no evidence nor report of an iTunes App Store data leak, it is most likely that individual iTunes user credentials were stolen via phishing attacks. What’s interesting about this incident is it doesn’t involve any malicious app
See the article here:
Cybercriminals Make Money Out of App Store
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
July
Cybercriminals leveraging social media is now basically a given, especially with users’ current dedication to social media (specifically on social networks). Actually, we’ve reported quite a few instances that prove how cybercriminals used Twitter for their operation, most especially in spamming.
Read the original here:
Twitter Kit Out to Make Twitter a Spammers’ Dream
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
July
Yesterday we blogged about a new piece of Symbian malware, which we detected as SYMBOS_FLOCK.I . This malware targets users of older Series 60 devices.
Read more:
SYMBOS_FLOCK.I – Where Does It Come From?
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
July
Millions of websites such as online news, blogs, e-commerce, banks, webmail, social networking and more utilize third-party hosted content on their webpages in the form of JavaScript, Adobe Flash, Microsoft Silverlight, HTML IFrames, and images. Often referred to as Web Widgets , common examples are banners (Google AdSense), search boxes (Yahoo), traffic counters (StatCounter), games (Pogo), videos (YouTube), Twitter / RSS feeds, user polls, security badges (VeriSign Secured Seal), social buttons (Facebook Like), etc.
Go here to see the original:
Third-Party Web Widget Security FAQ
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
June
Twitter is becoming a common medium to spread spam, malware and all kinds of badness. Just a few weeks ago, we wrote about FIFA and the Gaza attacks being used as social engineering leverage by Trojan creators , and there are no signs of them stopping any time soon.
Original post:
Backdoors in Twitter, Now in Arabic
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
June
Full-Disclosure, Our Turn
Posted by (0) Comment
Vulnerabilities in websites happen, especially the ever pervasive Cross-Site Scripting (XSS). Essentially every major website has had to deal with XSS vulnerabilities published publicly or otherwise
Follow this link:
Full-Disclosure, Our Turn
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
June
We recently saw some articles on the Web saying that Slim Shady aka Eminem died in a car crash . Today, we received a spammed message that still claims the rumor is true.
View original post here:
Fake News of Eminem’s Death Leads to Malware
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
June
Earlier this month NPR’s Planet Money podcast had a session entitled, “ A War Between States And Corporations ,” where they interviewed Ian Bremmer (President, Eurasia Group). Mr. Bremmer is the author of The End of the Free Market: Who Wins the War Between States and Corporations
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
June
Vulnerabilities identifiable in an automated fashion, such as with a scanner, can be loosely classified as “low-hanging fruit” (LHF) — issues easy, fast, and likely for bad guys to uncover and exploit. Cross-Site Scripting, SQL Injection, Information Leakage, and so on are some of the most typical forms of website LHF
View original post here:
The Low Hanging Fruit scanner strategy can get you into trouble
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
June
We have recently seen some instances of spam email hitting our spam traps with a story about the Brazilian soccer coach Dunga, who was given a black eye by an angry fan last Sunday.
- Bookmark :
- Digg
- del.icip.us
- Stumbleupon
- Redit it
