- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: eCryptfs 'parse_tag_3_packet()' Packet Heap Based Buffer Overflow Vulnerability
- Vuln: Cisco VPN Client for Windows 'StartServiceCtrlDispatche' Local Denial of Service Vulnerability
- Vuln: HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
- Vuln: PHP Versions Prior to 5.3.1 Multiple Vulnerabilities
- Vuln: KDE KDELibs 'dtoa()' Remote Code Execution Vulnerability
- Vuln: PEAR Sendmail 'From' Parameter Arbitrary Argument Injection Vulnerability
- Vuln: IBM Rational Products Multiple Cross Site Scripting Vulnerabilities
- Vuln: Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
Search
Search Result
-
Phishers Target Shaw Communications Customers
Category: Network Security & Hacking News/Latest Security News
Trend Micro threat analysts recently found a fake Shaw Communications phishing Web page http://nadaworld.net// that asks users for their customer care login name and password. Shaw Communications is one ...Sunday, 22 November 2009 -
c|net: FAQ - Recognizing phishing e-mails
Category: Network Security & Hacking News/Latest Security News
c|net: FAQ - Recognizing phishing e-mails c|net: FAQ - Recognizing phishing e-mails Read Full Article ...Tuesday, 17 November 2009 -
Tenable Network Security Podcast - Episode 12
Category: Network Security & Hacking News/Latest Security News
... into your networks and access sensitive information, its important for end users to be educated about these attacks. In the same way you raise awareness surrounding email phishing scams or the latest ...Monday, 16 November 2009 -
ISACA Warns Increase in Web Site Characters Could Lead to More Phishing Attacks
Category: Network Security & Hacking News/Latest Security News
... member of ISACA’s Conference Committee and founder of First Base Technologies. “The number of phishing attacks could surge, with attempts to confuse users by replacing conventional web addresses and gTLDs ...Monday, 16 November 2009 -
Phishing attack targets financial clearing house
Category: Network Security & Hacking News/Global Security News
Andrew Brandt, writing on the WebRoot blog, said, "When the world's largest clearing house for transfers of funds between banks supposedly sends you an email like this one, you probably would perk up and ...Sunday, 15 November 2009 -
Patch Tuesday - November 2009
Category: Network Security & Hacking News/Latest Security News
... question for Microsoft: why is this vulnerability rated “important” and not “critical”? In case you haven't heard, the way attackers are getting in is via phishing attacks and emailing end users. If you ...Friday, 13 November 2009 -
An Information Security Place Podcast – Episode 27
Category: Network Security & Hacking News/Latest Security News
... vulnerable to attack; ikee worm Rick Rolls iPhone users – Link Here New FDIC Phishing Attack – Link Here MSFT trying to walk the annoyance / security fine line with toned down User Access Control (UAC) ...Wednesday, 11 November 2009 -
Koobface Botnet's Scareware Business Model - Part Two
Category: Network Security & Hacking News/Latest Security News
... exploit serving domains at 195.88.190.247, participate in phishing campaigns, and register a money mule recruitment site for the non-existent Allied Insurance LLC. (Allied Group, Inc.). Now that's a ...Wednesday, 11 November 2009 -
MySpace subject to phishing campaign
Category: Network Security & Hacking News/Latest Security News
Social networks are often subject to phishing and today MySpace is the target. MX Lab intercepted some messages from MySpace message-*********@message.myspace.com where * stands for random letter and number ...Monday, 09 November 2009 -
Firefox Patch Tuesday
Category: Network Security & Hacking News/Latest Security News
... like social engineering, spear phishing, SPAM and emails with various types of specially-crafted attachments, etc. We must protect and educate our greatest asset, which is coincidentally also our weakest ...Monday, 09 November 2009 -
PayPal phishing in attachments
Category: Network Security & Hacking News/Latest Security News
Yesterday MX Lab reported regarding a phishing email that has no URL but instead an attached HTML document with a web form included. Since then we see more similar cases and also PayPal is subject to this ...Sunday, 08 November 2009 -
Phish of Banca Agricola Popolare di Ragusa has no URL but is in an attachment
Category: Network Security & Hacking News/Latest Security News
In almost every phish email there is an URL leading to the phishingsite where you are asked for a login, password and other personal information. With the latest phish targeting Banca Agricola Popolare ...Sunday, 08 November 2009 -
Are You Being (Facebook) Phished?
Category: Network Security & Hacking News/Latest Security News
... is provided. Trend Micro detects this as TROJ_ZBOT.CDX. As of this writing, the phishing URL as well as the malicious file has been blocked and detected already via the Trend Micro Smart Protection Network. ...Saturday, 07 November 2009 -
Spike in Social Media Malware, Phishing Attacks
Category: Network Security & Hacking News/Latest Security News
E-mail scams targeting users of social media sites like Twitter and Facebook are blurring the lines between traditional phishing attacks and those designed to plant password-stealing malicious software ...Wednesday, 04 November 2009 -
Is it phish, or is it Amex?
Category: Network Security & Hacking News/Latest Security News
... necessarily need to point this out. Apparently I was wrong on all counts, since I got another reminder message today. Are these people completely unaware of the existence and risk of phishing? Are they ...Wednesday, 04 November 2009 -
3 Tips to Improve Your Organization’s Application Security
Category: Network Security & Hacking News/Latest Security News
... control, an increase of more bots, phishing expeditions, and malware. By following these tips, you will significantly decrease the number of attacks. Evaluating your frameworks can really help with determining ...Wednesday, 04 November 2009 -
3 Tips to Improve Your Organization’s Application Security
Category: Network Security & Hacking News/Latest Security News
... control, an increase of more bots, phishing expeditions, and malware. By following these tips, you will significantly decrease the number of attacks. Evaluating your frameworks can really help with determining ...Wednesday, 04 November 2009 -
Facebook Phishing Campaign Pushes ‘Cocktail’ Attack
Category: Network Security & Hacking News/Global Security News
We have already discussed the Facebook phishing campaign. Now the scammers are using the phishing campaign not just for spamming but also for a cocktail attack. The scammers have targeted Facebook, telling ...Tuesday, 03 November 2009 -
The return of the worm
Category: Network Security & Hacking News/Latest Security News
According to Microsoft's Security Intelligence Report 2009, phishing and worm infections both rose in the first half of 2009. Enterprise environments appear to be particularly susceptible to worms According ...Tuesday, 03 November 2009 -
Microsoft report says more worms, vista better, file formats security
Category: Network Security & Hacking News/Latest Security News
... Phishing and Automated SQL Injection Attempts are on rise. Browser Based Exploits are increasing. You can get the report @ MS Threat Center Microsoft has released their latest Security Intelligence ...Monday, 02 November 2009 -
Summarizing Zero Day's Posts for October
Category: Network Security & Hacking News/Latest Security News
... encrypts files, demands $100 for decryption. 01. MS Security Essentials test shows 98% detection rate for 545k malware samples 02. Weak passwords dominate statistics for Hotmail's phishing scheme leak ...Monday, 02 November 2009 -
Week in review: Malicious email attachments, phishing trends, China's cyber army and Halloween attacks
Category: Network Security & Hacking News/Latest Security News
Here is an overview of some of last weekaposs most interesting news, interviews and articles: QA: Malware threats, Windows 7 and cyber crime Bo Olsen is a malware Researcher at Kaspersky Lab Ameri... ...Sunday, 01 November 2009 -
How Secure is your UK Online Banking?
Category: Network Security & Hacking News/Latest Security News
... Yorkshire based bank which actually prevents you from using special characters in your password! 3. Email Security a. We all know about phishing Emails now, but it’s still a major problem and a favourite ...Sunday, 01 November 2009 -
Email regarding Facebook account update is a phish – part 2
Category: Network Security & Hacking News/Latest Security News
MX Lab did intercepted emails what appeared as Facebook phishing emails. The From address is obviously fake and not related to Facebook in any way. These come in with the subjects: Facebook Account Update ...Saturday, 31 October 2009 -
Email regarding Facebook account update is a phish
Category: Network Security & Hacking News/Latest Security News
After a virus campaign, MX Lab now also intercepts a phishing campaign targetting Facebook users. The From address is obviously fake and not related to Facebook in any way. This email in particular was ...Friday, 30 October 2009 -
Finjan says controlled access Web portals now prime target of cybercriminals
Category: Network Security & Hacking News/Latest Security News
... even more highly secure Web sites. “Usually, cybercriminals are using this type of stolen data to create fake identities, as well as generating spam plus phishing attacks, as well as many other ...Friday, 30 October 2009 -
Survey: Employees spend work time shopping
Category: Network Security & Hacking News/Latest Security News
... The potential danger of shopping online is that it can open the door to viruses, spam and phishing attacks that invade the workplace and cost enterprises thousands per employee in lost productivity and ...Friday, 30 October 2009 -
Defeating Zombies: Five Ways To Improve Defenses
Category: Network Security & Hacking News/Latest Security News
Defeating Zombies Attackers have a number of avenues leading directly into your network, and more importantly, into your data. Each week I read about new data losses, phishing scams and the release of ...Friday, 30 October 2009 -
Phishing experiment sneaks through all anti-spam filters
Category: Network Security & Hacking News/Latest Security News
A recently conducted ethical phishing (New study details the dynamics of successful phishing) experiment impersonating LinkedIn by mailing invitations coming from Bill Gates, has achieved a 100% success ...Thursday, 29 October 2009 -
Twitter warns of new phishing attacks
Category: Network Security & Hacking News/Latest Security News
Phishing campaign uses a direct message and a fake Twitter login page to pilfer credentials. Twitter issued a spam warning via a Twitter message telling users not to click on a direct message that sends ...Thursday, 29 October 2009 -
Facebook hit by phishing scam and banking Trojan combo
Category: Network Security & Hacking News/Latest Security News
Facebook users should be on the lookout for an email threat that is posing as a message from Facebook administrators. The message contains both a phishing scam and a notorious “banking Trojan” virus. ... ...Thursday, 29 October 2009 -
Security Briefing – October 29th
Category: Network Security & Hacking News/Latest Security News
... of Kindness Twitter phishers are after your password – Sophos Phishing trends according to the Anti-Phishing Working Group – Net Security Bank Trojan botnet targets Facebook users – ...Thursday, 29 October 2009 -
Spear phishing scammers target Taiwan officials
Category: Network Security & Hacking News/Latest Security News
TrendLabs reports that they have discovered several instances of spear phishing. Spear phishing is a specific type of phishing fraud that involves customizable emails and URLs directed at specific t... ...Wednesday, 28 October 2009 -
Phishing trends according to the Anti-Phishing Working Group
Category: Network Security & Hacking News/Latest Security News
The Anti-Phishing Working Group issued the results of a survey they conducted in the first half of 2009, in which they sifted through data they collected and some provided by private sources and phish... ...Wednesday, 28 October 2009 -
FDIC Spam Points to Info Stealer
Category: Network Security & Hacking News/Latest Security News
... According to Advanced Threats Researcher Joey Costoya, the brains behind this spam attack are the same cybercriminals responsible for other spam campaigns like the CapitalOne phishing attack and the ...Tuesday, 27 October 2009 -
Use Hotmail or Gmail? Be on alert for phishing scams
Category: Network Security & Hacking News/Latest Security News
... 2. Learn to recognize phishing scams in case the scams look like they’re coming from someone that you know. 3. Be careful with ...Monday, 26 October 2009 -
Week in review: RSA Conference, Web application security, fuzzing, Metasploit, and more
Category: Network Security & Hacking News/Latest Security News
Here is an overview of some of last weekaposs most interesting news, interviews and articles: Anti-phishing coalition deploys real-time education program The APWG and Carnegie Mellon University’s C... ...Monday, 26 October 2009 -
Paypal phishing: take online survey and receive money
Category: Network Security & Hacking News/Latest Security News
MX Lab is intercepting phishing messages that target PayPal users. The email comes from the spoofed address Pay Pal.Inc Account0909Sur@pay.com with the subject Confirm refund request Identity Verification. ...Friday, 23 October 2009 -
Learn to avoid identity theft and online scams
Category: Network Security & Hacking News/Latest Security News
Working within highly organized e-fraud cartels, todayaposs criminals are outwitting even Web-savvy consumers by luring them to phishing sites, clever copies of the real thing designed to capture sensiti... ...Thursday, 22 October 2009 -
ZBOT and a CapitalOne Phish
Category: Network Security & Hacking News/Latest Security News
... would have you believe that you would need to install a Digital Certificate in order to use CapitalOne’s website. Clicking on the email link brings you to the following site: This is the phishing part. ...Thursday, 22 October 2009 -
A good business model: Symantec reports on “scareware”
Category: Network Security & Hacking News/Latest Security News
Maybe we’ve made people too security conscious? I’m being facetious, but if we hadn’t succeeded in scaring people straight into worrying about identity-stealing malware and phishing attacks, would so ...Monday, 19 October 2009 -
Anti-phishing coalition deploys real-time education program
Category: Network Security & Hacking News/Latest Security News
The APWG (Anti-Phishing Working Group) and Carnegie Mellon University’s CyLab Usable Privacy and Security Laboratory (CUPS) will announce tomorrow the deployment of their real-time counter-eCrime educ... ...Monday, 19 October 2009 -
“Mafia-style” cybercrime organizations
Category: Network Security & Hacking News/Global Security News
... Bettini presented in their session are unequivocal. On the carding/phishing scheme the last piece of news also demonstrates the size and the worldwide organization of the actual cybercrime gangs. In ...Monday, 19 October 2009 -
Podcast: Inside the OWA attacks, Patch Tuesday wrap-up
Category: Network Security & Hacking News/Latest Security News
In this podcast with Threatpost co-editor Dennis Fisher, I discuss the recent Outlook Web Access phishing attacks, the Microsoft/Adobe patchapalooza and the true extent of the botnet/malware epidemic. ...Friday, 16 October 2009 -
Zbot Spam Campaign Continues
Category: Network Security & Hacking News/Latest Security News
... coming internally from the company, thus luring unknowing users into executing the malware. This attack is a follow-up on the phishing email we blogged earlier this week. The said email purports as ...Thursday, 15 October 2009 -
Tailor-Made ZBOT Spam Campaign Targets Various Companies
Category: Network Security & Hacking News/Latest Security News
Trend Micro threat analysts were recently alerted to a phishing attempt targeting random employees of several companies. The email posed as a notification from the company's “system administrator,” reminding ...Tuesday, 13 October 2009 -
30 years of failure: the username/password combination
Category: Network Security & Hacking News/Latest Security News
A lot of the effort involved in establishing a secure computing environment focuses on technological solutions, from providing warnings about phishing attacks to blocking the propagation of botnets. But, ...Tuesday, 13 October 2009 -
Weekly Intelligence Summary: 2009-10-09
Category: Network Security & Hacking News/Latest Security News
... they were probably the result of malcode infections and not phishing. The scale of this infection/breach is more significant to enterprise security than the web e-mail accounts that were compromised. ...Friday, 09 October 2009 -
FBI Director almost got phished
Category: Network Security & Hacking News/Latest Security News
Those of us who have had the good fortune and sense not to fall victim to a phishing attack, may wonder at those who have. And even get mad sometimes - if there were no such people, phishers wouldnapost ...Friday, 09 October 2009 -
Webmail phishing attack only the beginning
Category: Network Security & Hacking News/Latest Security News
In the wake of the news reports this week of the large-scale webmail phishing attacks, much of the coverage has surrounded the compromise of email accounts which, according to the numbers, affected a ... ...Thursday, 08 October 2009
