Over the weekend, news reports of “hacked” iTunes accounts used to purchase worthless apps surfaced. And since there was no evidence nor report of an iTunes App Store data leak, it is most likely that individual iTunes user credentials were stolen via phishing attacks. What’s interesting about this incident is it doesn’t involve any malicious app

See the article here:
Cybercriminals Make Money Out of App Store

Over the weekend, our lab stumbled upon a spambot application that capitalizes on Chuck Norris’ popularity to boost a particular site’s search engine ranking via spamdexing.

Go here to see the original:
Chuck Norris Spamdexing

The infamous KOOBFACE botnet is sending direct messages (DMs) on Facebook . If this sounds familiar… it should be, as this tactic was previously discussed here in the Malware Blog back in March.

Continue reading here:
KOOBFACE Spreading via Facebook DMs Again

Cybercriminals leveraging social media is now basically a given, especially with users’ current dedication to social media (specifically on social networks). Actually, we’ve reported quite a few instances that prove how cybercriminals used Twitter for their operation, most especially in spamming.

Read the original here:
Twitter Kit Out to Make Twitter a Spammers’ Dream

Anti-Malware Testing Standards Organization (AMTSO), which F-Secure is a member of, had a meeting in Helsinki in May. During that meeting AMTSO members approved two new guidelines to be published

Read more here:
New AMTSO guidelines

Yesterday we blogged about a new piece of Symbian malware, which we detected as SYMBOS_FLOCK.I . This malware targets users of older Series 60 devices.

Read more:
SYMBOS_FLOCK.I – Where Does It Come From?

Millions of websites such as online news, blogs, e-commerce, banks, webmail, social networking and more utilize third-party hosted content on their webpages in the form of JavaScript, Adobe Flash, Microsoft Silverlight, HTML IFrames, and images. Often referred to as Web Widgets , common examples are banners (Google AdSense), search boxes (Yahoo), traffic counters (StatCounter), games (Pogo), videos (YouTube), Twitter / RSS feeds, user polls, security badges (VeriSign Secured Seal), social buttons (Facebook Like), etc.

Go here to see the original:
Third-Party Web Widget Security FAQ

Despite threats, companies lack policies on social media at work read more

Continued here:
Social Media: Can’t Live With it, Can’t Live Without It.

New versions of mobile operating like Apple’s iOS and Google’s Android may be in the news of late, but for all the publicity both receive older Symbian operating systems still make up around half of all smartphones sold in 2009. Advanced Threat Researcher Paul Ferguson came across a new suspicious application running on the S60 platform: Calling itself ZvirOK , the application has one primary payload: to send a text message to the number 7250, with the text mumym xxx joker90

Read the original:
New Symbian Malware On The Scene