- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: Google Chrome prior to 3.0.195.32 Multiple Security Vulnerabilities
- Vuln: Multiple Horde Products Cross-Site Scripting Vulnerabilities and File Overwrite Vulnerability
- Vuln: Mod_Perl Path_Info Remote Denial Of Service Vulnerability
- Vuln: Apache mod_perl 'Apache::Status' and 'Apache2::Status' Cross Site Scripting Vulnerability
- Vuln: FreeBSD 'fifo_vnops.c' Resource Leak Local Denial of Service Vulnerability
- Vuln: Citrix NetScaler and Access Gateway Denial Of Service Vulnerability
- Vuln: PDFLib 'open_basedir' Restriction Bypass Vulnerability
- Vuln: Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
Search
Search Result
-
Spike in Social Media Malware, Phishing Attacks
Category: Network Security & Hacking News/Latest Security News
E-mail scams targeting users of social media sites like Twitter and Facebook are blurring the lines between traditional phishing attacks and those designed to plant password-stealing malicious software ...Wednesday, 04 November 2009 -
Is it phish, or is it Amex?
Category: Network Security & Hacking News/Latest Security News
... necessarily need to point this out. Apparently I was wrong on all counts, since I got another reminder message today. Are these people completely unaware of the existence and risk of phishing? Are they ...Wednesday, 04 November 2009 -
3 Tips to Improve Your Organization’s Application Security
Category: Network Security & Hacking News/Latest Security News
... control, an increase of more bots, phishing expeditions, and malware. By following these tips, you will significantly decrease the number of attacks. Evaluating your frameworks can really help with determining ...Wednesday, 04 November 2009 -
Facebook Phishing Campaign Pushes ‘Cocktail’ Attack
Category: Network Security & Hacking News/Global Security News
We have already discussed the Facebook phishing campaign. Now the scammers are using the phishing campaign not just for spamming but also for a cocktail attack. The scammers have targeted Facebook, telling ...Tuesday, 03 November 2009 -
The return of the worm
Category: Network Security & Hacking News/Latest Security News
According to Microsoft's Security Intelligence Report 2009, phishing and worm infections both rose in the first half of 2009. Enterprise environments appear to be particularly susceptible to worms According ...Tuesday, 03 November 2009 -
Microsoft report says more worms, vista better, file formats security
Category: Network Security & Hacking News/Latest Security News
... Phishing and Automated SQL Injection Attempts are on rise. Browser Based Exploits are increasing. You can get the report @ MS Threat Center Microsoft has released their latest Security Intelligence ...Monday, 02 November 2009 -
Summarizing Zero Day's Posts for October
Category: Network Security & Hacking News/Latest Security News
... encrypts files, demands $100 for decryption. 01. MS Security Essentials test shows 98% detection rate for 545k malware samples 02. Weak passwords dominate statistics for Hotmail's phishing scheme leak ...Monday, 02 November 2009 -
Week in review: Malicious email attachments, phishing trends, China's cyber army and Halloween attacks
Category: Network Security & Hacking News/Latest Security News
Here is an overview of some of last weekaposs most interesting news, interviews and articles: QA: Malware threats, Windows 7 and cyber crime Bo Olsen is a malware Researcher at Kaspersky Lab Ameri... ...Sunday, 01 November 2009 -
How Secure is your UK Online Banking?
Category: Network Security & Hacking News/Latest Security News
... Yorkshire based bank which actually prevents you from using special characters in your password! 3. Email Security a. We all know about phishing Emails now, but it’s still a major problem and a favourite ...Sunday, 01 November 2009 -
Email regarding Facebook account update is a phish – part 2
Category: Network Security & Hacking News/Latest Security News
MX Lab did intercepted emails what appeared as Facebook phishing emails. The From address is obviously fake and not related to Facebook in any way. These come in with the subjects: Facebook Account Update ...Saturday, 31 October 2009 -
Email regarding Facebook account update is a phish
Category: Network Security & Hacking News/Latest Security News
After a virus campaign, MX Lab now also intercepts a phishing campaign targetting Facebook users. The From address is obviously fake and not related to Facebook in any way. This email in particular was ...Friday, 30 October 2009 -
Finjan says controlled access Web portals now prime target of cybercriminals
Category: Network Security & Hacking News/Latest Security News
... even more highly secure Web sites. “Usually, cybercriminals are using this type of stolen data to create fake identities, as well as generating spam plus phishing attacks, as well as many other ...Friday, 30 October 2009 -
Survey: Employees spend work time shopping
Category: Network Security & Hacking News/Latest Security News
... The potential danger of shopping online is that it can open the door to viruses, spam and phishing attacks that invade the workplace and cost enterprises thousands per employee in lost productivity and ...Friday, 30 October 2009 -
Defeating Zombies: Five Ways To Improve Defenses
Category: Network Security & Hacking News/Latest Security News
Defeating Zombies Attackers have a number of avenues leading directly into your network, and more importantly, into your data. Each week I read about new data losses, phishing scams and the release of ...Friday, 30 October 2009 -
Phishing experiment sneaks through all anti-spam filters
Category: Network Security & Hacking News/Latest Security News
A recently conducted ethical phishing (New study details the dynamics of successful phishing) experiment impersonating LinkedIn by mailing invitations coming from Bill Gates, has achieved a 100% success ...Thursday, 29 October 2009 -
Twitter warns of new phishing attacks
Category: Network Security & Hacking News/Latest Security News
Phishing campaign uses a direct message and a fake Twitter login page to pilfer credentials. Twitter issued a spam warning via a Twitter message telling users not to click on a direct message that sends ...Thursday, 29 October 2009 -
Facebook hit by phishing scam and banking Trojan combo
Category: Network Security & Hacking News/Latest Security News
Facebook users should be on the lookout for an email threat that is posing as a message from Facebook administrators. The message contains both a phishing scam and a notorious “banking Trojan” virus. ... ...Thursday, 29 October 2009 -
Security Briefing – October 29th
Category: Network Security & Hacking News/Latest Security News
... of Kindness Twitter phishers are after your password – Sophos Phishing trends according to the Anti-Phishing Working Group – Net Security Bank Trojan botnet targets Facebook users – ...Thursday, 29 October 2009 -
Spear phishing scammers target Taiwan officials
Category: Network Security & Hacking News/Latest Security News
TrendLabs reports that they have discovered several instances of spear phishing. Spear phishing is a specific type of phishing fraud that involves customizable emails and URLs directed at specific t... ...Wednesday, 28 October 2009 -
Phishing trends according to the Anti-Phishing Working Group
Category: Network Security & Hacking News/Latest Security News
The Anti-Phishing Working Group issued the results of a survey they conducted in the first half of 2009, in which they sifted through data they collected and some provided by private sources and phish... ...Wednesday, 28 October 2009 -
FDIC Spam Points to Info Stealer
Category: Network Security & Hacking News/Latest Security News
... According to Advanced Threats Researcher Joey Costoya, the brains behind this spam attack are the same cybercriminals responsible for other spam campaigns like the CapitalOne phishing attack and the ...Tuesday, 27 October 2009 -
Use Hotmail or Gmail? Be on alert for phishing scams
Category: Network Security & Hacking News/Latest Security News
... 2. Learn to recognize phishing scams in case the scams look like they’re coming from someone that you know. 3. Be careful with ...Monday, 26 October 2009 -
Week in review: RSA Conference, Web application security, fuzzing, Metasploit, and more
Category: Network Security & Hacking News/Latest Security News
Here is an overview of some of last weekaposs most interesting news, interviews and articles: Anti-phishing coalition deploys real-time education program The APWG and Carnegie Mellon University’s C... ...Monday, 26 October 2009 -
Paypal phishing: take online survey and receive money
Category: Network Security & Hacking News/Latest Security News
MX Lab is intercepting phishing messages that target PayPal users. The email comes from the spoofed address Pay Pal.Inc Account0909Sur@pay.com with the subject Confirm refund request Identity Verification. ...Friday, 23 October 2009 -
Learn to avoid identity theft and online scams
Category: Network Security & Hacking News/Latest Security News
Working within highly organized e-fraud cartels, todayaposs criminals are outwitting even Web-savvy consumers by luring them to phishing sites, clever copies of the real thing designed to capture sensiti... ...Thursday, 22 October 2009 -
ZBOT and a CapitalOne Phish
Category: Network Security & Hacking News/Latest Security News
... would have you believe that you would need to install a Digital Certificate in order to use CapitalOne’s website. Clicking on the email link brings you to the following site: This is the phishing part. ...Thursday, 22 October 2009 -
A good business model: Symantec reports on “scareware”
Category: Network Security & Hacking News/Latest Security News
Maybe we’ve made people too security conscious? I’m being facetious, but if we hadn’t succeeded in scaring people straight into worrying about identity-stealing malware and phishing attacks, would so ...Monday, 19 October 2009 -
Anti-phishing coalition deploys real-time education program
Category: Network Security & Hacking News/Latest Security News
The APWG (Anti-Phishing Working Group) and Carnegie Mellon University’s CyLab Usable Privacy and Security Laboratory (CUPS) will announce tomorrow the deployment of their real-time counter-eCrime educ... ...Monday, 19 October 2009 -
“Mafia-style” cybercrime organizations
Category: Network Security & Hacking News/Global Security News
... Bettini presented in their session are unequivocal. On the carding/phishing scheme the last piece of news also demonstrates the size and the worldwide organization of the actual cybercrime gangs. In ...Monday, 19 October 2009 -
Podcast: Inside the OWA attacks, Patch Tuesday wrap-up
Category: Network Security & Hacking News/Latest Security News
In this podcast with Threatpost co-editor Dennis Fisher, I discuss the recent Outlook Web Access phishing attacks, the Microsoft/Adobe patchapalooza and the true extent of the botnet/malware epidemic. ...Friday, 16 October 2009 -
Zbot Spam Campaign Continues
Category: Network Security & Hacking News/Latest Security News
... coming internally from the company, thus luring unknowing users into executing the malware. This attack is a follow-up on the phishing email we blogged earlier this week. The said email purports as ...Thursday, 15 October 2009 -
Tailor-Made ZBOT Spam Campaign Targets Various Companies
Category: Network Security & Hacking News/Latest Security News
Trend Micro threat analysts were recently alerted to a phishing attempt targeting random employees of several companies. The email posed as a notification from the company's “system administrator,” reminding ...Tuesday, 13 October 2009 -
30 years of failure: the username/password combination
Category: Network Security & Hacking News/Latest Security News
A lot of the effort involved in establishing a secure computing environment focuses on technological solutions, from providing warnings about phishing attacks to blocking the propagation of botnets. But, ...Tuesday, 13 October 2009 -
Weekly Intelligence Summary: 2009-10-09
Category: Network Security & Hacking News/Latest Security News
... they were probably the result of malcode infections and not phishing. The scale of this infection/breach is more significant to enterprise security than the web e-mail accounts that were compromised. ...Friday, 09 October 2009 -
FBI Director almost got phished
Category: Network Security & Hacking News/Latest Security News
Those of us who have had the good fortune and sense not to fall victim to a phishing attack, may wonder at those who have. And even get mad sometimes - if there were no such people, phishers wouldnapost ...Friday, 09 October 2009 -
Webmail phishing attack only the beginning
Category: Network Security & Hacking News/Latest Security News
In the wake of the news reports this week of the large-scale webmail phishing attacks, much of the coverage has surrounded the compromise of email accounts which, according to the numbers, affected a ... ...Thursday, 08 October 2009 -
Phishing Scam Spooked FBI Director Off E-Banking
Category: Network Security & Hacking News/Latest Security News
In announcing a crackdown on "phishing" e-mail scams that netted one of the FBI's largest cyber crime cases ever, FBI Director Robert Mueller on Wednesday offered a candid revelation: A personal close ...Thursday, 08 October 2009 -
Phishing attacks and online banking fraud losses soar in the UK
Category: Network Security & Hacking News/Latest Security News
The number of phishing attacks on online banking systems has risen by 26% in the first half of this year. Phishing is the technique that was used to uncover the tens of thousands of Hotmail, Google Mail ...Wednesday, 07 October 2009 -
Microsoft vs. Malvertising: tackling the threat of malicious online advertising
Category: Network Security & Hacking News/Latest Security News
... Web sites. Familiarize yourself with common phishing scams. Share this post : Read Full Article ...Wednesday, 07 October 2009 -
Hot Hot HotMail!
Category: Network Security & Hacking News/Latest Security News
... perform authentication. Another speculation was that this is the result of a massive (or possible several massive) Phishing campaigns. I find this too hard to believe. First, the list is extremely long ...Wednesday, 07 October 2009 -
All about Website Password Policies
Category: Network Security & Hacking News/Latest Security News
... authentication. Multi-factor authentication helps prevent a number of attack techniques including those in which users are tricked into handing over their passwords by a phishing scam. So if logging in ...Wednesday, 07 October 2009 -
Citing cybercrime, FBI director doesn't bank online
Category: Network Security & Hacking News/Global Security News
The head of the U.S. Federal Bureau of Investigation has stopped banking online after nearly falling for a phishing attempt. The head of the U.S. Federal Bureau of Investigation has stopped banking online ...Wednesday, 07 October 2009 -
Latest email phishing scam and the pattern of users passwords
Category: Network Security & Hacking News/Latest Security News
A list of 10,000 users was posted online from a phishing scam to pastebin.com website. Initally it was thought that only microsoft's hotmail was compromised but later more details emerged and the results ...Tuesday, 06 October 2009 -
Three Ideas to Encourage Employee Net-Cops
Category: Network Security & Hacking News/Latest Security News
... forward box for spam, phishing and other types of suspicious email. Enter the first people to report each sample into a monthly or quarterly drawing for movie tickets or some small prize. Not only will ...Tuesday, 06 October 2009 -
The Register: Gmail, AOL, Yahoo! all hit by webmail phishing scam
Category: Network Security & Hacking News/Latest Security News
The Register: Gmail, AOL, Yahoo! all hit by webmail phishing scam The Register: Gmail, AOL, Yahoo! all hit by webmail phishing scam Read Full Article ...Tuesday, 06 October 2009 -
Weak passwords dominate statistics for Hotmail's phishing scheme leak
Category: Network Security & Hacking News/Latest Security News
The recently leaked accounting data of thousands of Hotmail users Gmail has also been affected obtained through what appears to be a badly executed phishing campaign, once again puts the spotlight on the ...Tuesday, 06 October 2009 -
Massive phishing scheme affects Microsoft Hotmail accounts
Category: Network Security & Hacking News/Latest Security News
Hotmail passwords stolen; Gmail, Yahoo affected as well. Microsoft is blaming a highly successful phishing scheme for pilfering thousands of passwords to Microsoft Hotmail Live email account holders. In ...Tuesday, 06 October 2009 -
Statistics of the Hotmail phishing attack
Category: Network Security & Hacking News/Latest Security News
Bogdan Calin from Acunetix examined the passwords published after the Hotmail phishing attack, came to several conclusions and published some basic statistics. The top 20 most common passwords from... ...Tuesday, 06 October 2009 -
Statistics from 10,000 leaked Hotmail passwords
Category: Network Security & Hacking News/Global Security News
... quickly generated some statistics from these passwords. First, my impression is that these passwords have been gathered using phishing kits. Even more, I An anonymous user posted usernames and ...Tuesday, 06 October 2009 -
Up to 20,000+ Windows Live Hotmail account details leaked online
Category: Network Security & Hacking News/Latest Security News
... a large scale phishing attack The access details of possibly more than twenty thousand European Windows Live Hotmail accounts have been made available on the internet. It's thought that access to the ...Monday, 05 October 2009
