Want to be a Member of the Program ???

9
March

It seems that fans around the world are not the only ones who are hooked on the Oscars .

See the article here:
Oscars 2010 Awards Users with FAKEAV

Category : infySEC | Blog
25
February

More than 60 websites have been found to be hotbeds for SEO poisoning. Each of these domains host hundreds of possible matches for search keys. Also, the topics in one domain overlap with that of the other domain, thus making it possible that they will both emerge in the search results

Here is the original post:
60+ Compromised Sites with SEO Poisoning

Category : F-Secure | Blog
14
January

Less than a month after the so-called “Iranian Cyber Army” reportedly “hacked” the popular micro-blogging site, Twitter , they are back with another attack, this time against another Internet giant, Baidu. Baidu is the China’s most popular search engine, as 62 percent of the total number of Web searches in China are done compared with Google’s 29 percent share, according to research firm Analysys International. Some days ago, users who tried to access Baidu were instead redirected to the following page: According to Trend Micro Advanced Threat Researcher Paul Ferguson, this attack was not a defacement

Read this article:
Iranian “Cyber Army” Strikes at China’s Search Engine Giant, Chinese Hackers Retaliate

Category : infySEC | Blog
31
December

The first signs of New Year malware for this year were already sighted a while back, but the current one we’re seeing in circulation wishes “Happy New Year 2010″ and points to a fast flux domain site which serves up Trojan-Downloader:W32/Agent.MUG.

Excerpt from:
It’s almost 2010, yearly round of new year related malware is going on.

Category : F-Secure | Blog
17
December

We have recently learned of yet another zero-day exploit in Adobe Acrobat . This time it’s an overflow for a special type parameter in a function provided by the multimedia.api plugin that can be manipulated from JavaScript in the following manner: media.newPlayer(null)

Read more from the original source:
New Adobe Acrobat Zero-Day

Category : Symantec | Blog
15
December

BREDOLAB set out on a spam rerun just in time for the holidays. This recent run is similar to the laptop delivery note spam run we reported in August. This time, however, the spammed message appears to have come from known courier, DHL

Read the original:
BREDOLAB Regifts Old Spam

Category : infySEC | Blog
7
December

I recently took a sudden and unexpected trip to Norway. During my time there I needed to quickly update my family and friends as to my situation. How does one do that when one’s family and friends span the globe?

More here:
"You are signing in from an unfamiliar location."

Category : F-Secure | Blog
6
November

It seems like most people who have gone to watch the Michael Jackson This Is It movie have told me that it is really worth watching. However, we are not too sure if Michael Jackson’s Official Website at http://www.michaeljackson.com is actually worth visiting now. Well, it turned up on our systems, which indicate that some of the child pages have been compromised with malicious scripts

Here is the original post:
This Is It!

Category : F-Secure | Blog
3
September

Very often security budgets are justified through risk management, closely related to loss avoidance or boosting the bottom-line (income after expenses). A security manager might say to the CIO, ” If we spend $X on Y, we’ll reduce risk of loss of $A by B%, resulting in an estimated $C financial upside for our organization.

Visit link:
Outsourcing and Top-Line Security Budget Justification

Category : Web App Sec | Blog
19
August

Update: 09.03.2009 : ” Production-Safe Website Scanning Questionnaire ” posted to add context to the chart and ensuing discussion. Also, new vendors have been added to the sheet. Update 08.24.2009 : Billy Hoffman (HP) and I have been having some email dialog about the production-safe heading

See more here:
Website VA Vendor Comparison Chart

Category : Web App Sec | Blog