Millions of websites such as online news, blogs, e-commerce, banks, webmail, social networking and more utilize third-party hosted content on their webpages in the form of JavaScript, Adobe Flash, Microsoft Silverlight, HTML IFrames, and images. Often referred to as Web Widgets , common examples are banners (Google AdSense), search boxes (Yahoo), traffic counters (StatCounter), games (Pogo), videos (YouTube), Twitter / RSS feeds, user polls, security badges (VeriSign Secured Seal), social buttons (Facebook Like), etc.

Go here to see the original:
Third-Party Web Widget Security FAQ

Social media has affected business organizations in many different ways through the years and these effects caused the development of a rather complicated relationship between the two. Social media has proven to be an effective marketing tool for businesses.

Read more from the original source:
Malware Sales Through Social Networks

What do the FIFA World Cup and Gaza attack have in common? They are both currently being used for social engineering by a couple of malware campaigns seen on Twitter . TrendLabs SM Senior Threat Researcher, Ivan Macalintal, spotted several malicious programs being distributed via the popular microblogging site.

Follow this link:
FIFA and Gaza Attack Tweets Dump Backdoors

Cybercriminals have found yet another way to grab users’ attention. This time, they posed as members of the Federal Bureau of Investigation (FBI) from Washington D.C.

Visit link:
419 Scam Resurfaces with FBI Spam

We’ve recently seen a slew of emails that ask recipients to run a virus scan using an attached virus checking tool. We see emails like this pretty often; however, this time the language used in the attack is Japanese. According to JPCERT , the email has the following characteristics:

The rest is here:
“Virus Check” Malware Attack in Japanese

A new exploit has been found in the Japanese word processor Ichitaro . JP-RTL engineers have received a sample Ichitaro document, which is capable of exploiting the previously unknown vulnerability

Go here to read the rest:
Another Vulnerability Discovered in Ichitaro

Italian bank Banca Popolare di Sondrio has become phishers’ new target with the discovery of a spammed message containing a link to the supposed bank’s Internet banking site, SCRIGNO . As with previous bank-related phishing attempts, clicking the link leads users to a site that looks very much like the legitimate Internet service’s login page. The site asks users to enter their user codes and personal identification numbers (PINs).

Read this article:
Phishing Scam Targets Italian Bank

No doubt many have noticed that I’ve been on a blogging hiatus. Between attending to literally life and death personal matters, an overwhelming work schedule, and taking some much needed time off — blogging was put on hold for a while

Read more from the original source:
Time to start blogging again…

May 4, 2000 hit the world with what was then the biggest ever computer virus . It was important that this, along with all other email viruses, was right out in the open, visible to everyone. Each user could see the email in question and after a couple of days, every user knew it was a virus and everyone clicked it anyway.

View original post here:
Remembering the Love Bug 10 Years On

Yesterday, while researching some blacklisted domains, we came across five rogue scanning UIs hosted from a single URL. That’s five scams for the price of one and we only needed to refresh our browser. All of our screenshots were taken from a computer running Linux

See the article here:
Rogue AV Localization Fail