SEARCH RESULTS
 
Showing 1-10 of 62 records
 
Expand article

Phishing Tactics Evolving

The Article has images
2008-04-21 11:18:17 by HASH0x85bed5c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...tactics so smart? Mainly because they forward the responsibility to the infected party, and I can reasonably argue that a phishing page hosted at a .biz or .info tld will get shut down faster than the one hosted at a home user's PC. As for the SQL injections, the RFI, and the consolidation between defacers and phishers if it's not defacers...
 
Tags: halifax-online, halifax, mem binformslogin, user, user-142o3ds, web application vulnerabilities, mem binhalifax loginformslogin, vulnerable sites, turkish defacement
 
 
 
 
Expand article

Protect your data: everything else is just plumbing

The Article has images
2007-07-02 20:46:32 by Steve Riley in Steve Riley on Security
...tactics to react toand possibly get in front ofthe tactics of the bad guys. Weve got to invert the traditional thinking and now emphasize security by following this new model Because protecting your data is now paramount, data protection deserves the bulk of your attention. Application securitydeveloping applications with a mind toward...
 
Tags: data security, comrms data security, data, security, confidential information, information, information security, temporary data, data vanishes
 
 
 
 
Expand article

Phishing Using FasterFox Prefetching

2008-01-03 16:18:15 by RSnake in ha.ckers.org web application security lab
 
...tactics http://ha.ckers.org/blog/20070608/cross-domain-basic-auth-phishing-tactics my Firefox showed up the HTTP-Auth dialog immediately, which I placed on my subdomain testing.bitsploit.de But why I asked myself I looked into your HTML source to find a hidden image or something like this, but I didnt found anything but the link. I havent...
 
Tags: fasterfox, firefox prefetches, trick fasterfox-users, http-auth dialog pops, link, http-auth dialog immediately, firefox, email, people
 
 
 
 
Expand article

Corporate Spying

2008-01-16 12:21:41 by schneier in Schneier on Security
 
...tactics already practiced by private investigators. One such ploy is pretexting -- obtaining information by pretending to be somebody else. While private detectives have long posed as freelance reporters or job recruiters to get people to talk, former agents have elevated pretexting to an art Similarly, ex-agents have helped popularize the...
 
Tags: agents, intelligence agents, wal-mart, off-duty police officers, officers, wal-mart employee fired, cell-phone calls, phone calls, obtain
 
 
 
 
Expand article

Summarizing June's Threatscape

The Article has images
2008-07-01 07:05:01 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...tactics which when combined can result in a lot of people unknowingly visiting the sites 12. Phishing Campaign Spreading Across Facebook - An internal phishing campaign was circulating across Facebook, which got taken care of thanks to coordinated efforts with Facebook's security folks. There's also an indicating tha they are currently...
 
Tags: site, fake youtube site, web site defacements, malware, malware hosts, web site defacer, sites, vulnerable sites, malicious
 
 
 
 
Expand article

Lithuania Attacked by Russian Hacktivists, 300 Sites Defaced

The Article has images
2008-07-07 01:19:13 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...tactics ensure the success of the information warfare as a whole start publicly justifying upcoming attacks based on nationalism sentions, which in a bandwidth empowered (botnets) collectivist society ensures a decent degree of cyber mobilization. In Lithuania's case, the discussions across web forums were on purposely escalated to the point...
 
Tags: lithuania, attack lithuania surprisingly, estonia, estonia attack, sites, attack, attack strategy, attacks based, attacks
 
 
 
 
Expand article

On virtualisation

2007-05-29 16:20:00 by Niels Provos in Google Online Security Blog
 
...tactics can be applied to your virtual machine. As always, try to minimise what has to run as root or administrator Keep software up to date Keep your virtual machine software up to date, and look out for any security advisories from your vendor so that you can apply any patches promptly
 
Tags: machine, virtual machine process, virtual machine software, host machine, host, software, virtual machine, low, low level access
 
 
 
 
Expand article

Thwarting a large-scale phishing attack

2007-06-11 11:35:00 by Niels Provos in Google Online Security Blog
 
...tactics to combat this new threat In late March, we reached out to MySpace to see what we could do to help. We provided lists of the top phishing sites and our anti-phishing blacklist to MySpace so that they could disable compromised accounts with links to those sites. Unfortunately, many of the blocked users did not remove the phishing...
 
Tags: myspace, myspace profiles, real myspace content, myspace account, attack, dummy myspace account, phishers move, phishers, lower-value sites
 
 
 
 
Expand article

ORDB offline

2007-01-16 05:38:45 by Administrator in Email security & compliance blog
 
...tactics in recent years, as have the anti-spam community Whether you used their list or not, it is always sad to say goodbye to a good spam fighting effort If you were using ORDB.org to check for spam, it is highly advisable to disable the list in your spam filtering software
 
Tags: ordb, ordb volunteers, relay database ordb, anti-spam community, spam, comprehensive list, list, org, relay rbls
 
 
 
 
Expand article

Storm switches tactics third time, adds rootkit

2007-12-28 00:00:00 by HASH0x84706a0 i