For cybercriminals, another celebrity’s death means a new life for their scams.

Read more:
Corey Haim’s Death Leads to FAKEAV

Before reading the following, ask yourself if you’d recommend to the average user that they store their passwords in a local password manager. Today there are four primary ways users lose control over their web-based passwords. Phishing Scams (email or SEO), Malware (installing malware or drive-by-downloads), website break-ins (SQLi, RFI, misconfiguration, etc.), and website brute-force attacks.

Here is the original post:
Password Managers, is this the best option user’s have?

Researchers from Microsoft recently unearthed exploits targeting the CVE-2010-0188 vulnerability. On February 16, Adobe released a security advisory describing a vulnerability in Adobe Reader and Acrobat 8.X and 9.X. Once the vulnerability is exploited, attackers gain the capability to perform denial-of-service (DoS) attacks on affected systems.

See the original post here:
More Adobe Exploits in the Wild

In February, spammers continued to use the news of the earthquake in Haiti and the recent earthquake in Chile as another vector to utilize.

More here:
Spam and Phishing Landscape: March 2010

Following our blog, 0-Day attack on IE6: JS.Sykipot doesn’t spare retired software , covering the recent IE 0-day , we thought it might be interesting to look at an attack in the wild using this vulnerabili

Continued here:
Backdoor.Sykipot At Work

An Estonian virus writer has been sentenced to jail in Harju, Estonia. The author of the Allaple virus family, 44-year old Mr

The rest is here:
Allaple Virus Author Sentenced

Hot on the heels of this month’s security bulletin , a new vulnerability exploit surfaces with a malware in tow. The new zero-day vulnerability, as described in a previous post, prompted Microsoft to release Security Advisory (981374) while investigations are still underway

See the original post:
New IE Zero-Day Exploit (CVE-2010-0806)

Internet Explorer 6 may have taken its path to retirement but it still remains a good target for exploits, as we can see from JS.Sykipot .

See more here:
Zero-Day attack on IE6 – JS.Sykipot Doesn’t Spare Retired Software

F-Secure has an additional blog that launched today. It’s called Safe and Savvy .

Read the original:
Be Savvy, Get Six Months of Internet Security