SEARCH RESULTS
 
Showing 1-10 of 54 records
 
Expand article

Bogus security promises and how to detect them

2008-03-10 00:00:00 by HASH0x8b06a70 in Network World on Security
 
...Bogus promises by vendors are all too common. In this recent Network World chat, outspoken security analyst Nick Selby humorously tackles issues such as the truth about data leakage products, smartphone protection, hotspot threats and the word "solution." Nick Selby leads The 451 Group's Enterprise Security Practice. Selby also serves as The...
 
Tags: nick selby leads, selby, true enterprise security, hotspot threats, threats, enterprise security practice, data leakage products, malware expert webcasts, white papers
 
 
 
 
Expand article

New Malware Spam Reporting Bogus Beijing Earthquake Targets Olympic Games Fans

2008-06-19 22:49:25 by CyberInsecure in CyberInsecure.com
 
Botnet operators are using false reports about an earthquake near Beijing that could disrupt the Olympic games to spread malware. Unsolicited emails discovered to be a part of a new malicious spam campaign that claims another earthquake has just occurred in China, and could derail the upcoming Olympic Games. Samples of the bogus alert doing the
 
Tags: olympic games, earthquake, malicious spam campaign, botnet operators, spread malware, bogus alert, false reports, claims, samples
 
 
 
 
Expand article

Syndicating Google Trends Keywords for Blackhat SEO

The Article has images
2008-10-03 04:19:24 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...bogus blogs used in the campaign, naturally pre-registered long before they executed it vinniedigg18 .spaces.live.com journals.aol .com/iolatour16 fredabreak02 .spaces.live.com thedaalerts01 .spaces.live.com allisonpolls08 .spaces.live.com rheabreak18 .spaces.live.com racquellog17 .spaces.live.com monikavideo11 .spaces.live.com journals.aol...
 
Tags: spaces, windows live spaces, malware, live, single malware campaign, aol journals, journals, campaign, blackhat seo campaign
 
 
 
 
Expand article

Make sure it's really Microsoft Update

The Article has images
2008-02-20 15:06:00 by Mike Rothman in Security Mike's Blog
...bogus update page (intall), F-Secure reported An Urgent Install button appears in the fake notice, next to a prompt reading Get critical update (obligatory). Users who click on the button receive a file labeled WindowsUpdateAgent30-x86-x64.exe, which installs a trojan-dropper on the victim's PC. F-Secure said the bogus update page is a fast...
 
Tags: microsoft, site, fast flux site, microsoft site, fake microsoft, launch microsoft, actual microsoft, imposter site, url
 
 
 
 
Expand article

Malicious Doorways Redirecting to Malware

The Article has images
2008-06-16 03:51:11 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...bogus .info and .biz ones for the leading position of hosting and serving malicious content, is a bit of an outdated and reactive approach for protecting against unknown threats. However, a single malicious domain whose live exploits can be easily detected and consequently blocked, is often just a front end to a large domains portfolio whose...
 
Tags: malicious, doorways, malicious doorways, malicious content, single sentence, single, single malicious domain, doorway, malicious doorway
 
 
 
 
Expand article

Summarizing August's Threatscape

The Article has images
2008-09-10 06:57:32 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...bogus Gmail account results in a blackhat SEO hosting blogspot account, flash based redirector hosted at Picasa, and a couple of thousands of spam emails sent automatically sent through Gmail in order to abuse it's trusted email reputation 03. Compromised Web Servers Serving Fake Flash Players If aggressiveness matter, this campaign...
 
Tags: malware, facebook malware campaigns, usefulness pinch malware, banker malware kits, malware campaigns, botnet, diy botnet kit, distribute malware, banker malware
 
 
 
 
Expand article

Spam Campaign Abusing Yahoo's Services

The Article has images
2008-09-17 09:25:24 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...bogus Yahoo.com email accounts, and spamming only Yahoo users with links to Yahoo's search engine using queries leading to the exact spammer's URLs, is almost 100% sure to make it through spam filters. That seems to be case with this spam campaign perfectly fitting into the "spam that made it through" category Sample search queries resulting...
 
Tags: spam, yahoo, spam campaign perfectly, spam campaign, yahoo users, spam systems, spam domains, yahoo emails, campaign
 
 
 
 
Expand article

Cybercriminals Abusing Lycos Spain To Serve Malware

The Article has images
2008-10-09 04:28:17 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...bogus accounts at Lycos Spain, which they seem to be registering on their own, by releasing a do-it-yourself malicious link generator redirecting to fake YouTube and Adobe Flash video pages. Whereas the concept of abusing legitimate web services for infection and propagation isn't new, what's new is the fact that the FTP access is efficiently...
 
Tags: lycos spain, installer setup, installer, bogus accounts, bogus accounts registration, services, malicious services, file, adobe flash
 
 
 
 
Expand article

Password policies. Once again.

2007-09-04 22:14:00 by Steve Riley in Steve Riley on Security
 
...bogus logon attempts every 15 minutes 2 seconds. So, contrary to the claim, enabling this setting actually can have significant impact on usability Account lockout is there for people who absolutely need it. But I can't think of any instance where this is true. Instead, have a policy that requires simple passwords at least 15 characters long....
 
Tags: account, enable account lockout, password, account lockouts, disable account lockout, 42-day default expiration, default, expiration, password expires