[img_assist|nid=7438|title=|desc=|link=none|align=left|width=64|height=64]The storm clouds over mobile security continued to gather this week with news of a new browser exploits for Android and a URL attack for iPhones, while OWASP’s AppSec conference in D.C. provided an update on Uncle Sam’s security priorities. Read on for Threatpost’s security Week in Review.
Browsing Author: Chris Brook
Researchers at security firm Websense have found that Amnesty International’s Hong Kong site, amnesty.org.hk, is serving up a cocktail of malware that includes last week’s Internet Explorer 0-day.
A Connecticut man pleaded guilty to automatic teller machine (ATM) fraud on Tuesday following a scheme that conned $4.8 million from a Rhode Island bank over the last few years.
The SpyEye Tracker, a new site that hopes to trace the activity of the budding SpyEye Trojan, went live this week and shows the emerging SpyEye botnet to be global in reach, but still much smaller than the Zeus botnet with which it has merged.
[img_assist|nid=7361|title=|desc=|link=none|align=right|width=100|height=100]With more than 600,000 copies of the FireSheep browser plug-in downloaded in a matter of weeks, Web security firm zScaler have released a new Firefox plug-in, BlackSheep, in hopes of combating attempts by those using FireSheep to try to hijack their Web session.
[img_assist|nid=7349|title=|desc=|link=none|align=right|width=87|height=87]The specter of politically motivated cyber attacks reared its head again this week, while closer to home, the names of two software giants: Google and Adobe were all over the headlines when it came to security this week, as several bugs were found…and fixed in the companies products. Read
on for the full week in review.
Microsoft’s Bing is looking into SSL and other privacy
settings for the next version of their search engine. Currently the site strips
SSL when forced into HTTPS and in turn, brings up an advisory on browsers signaling
an unsafe connection.
Introduced at Toorcon, the Firefox extension allows
attackers to capture site cookies from users on unsecured wireless networks and
browse under their logon.
[img_assist|nid=7078|title=|desc=|link=none|align=right|width=100|height=100]Autumn conferences grabbed the headlines this week as presentations at the Toorcon Conference in San Diego and SecTor in Toronto wrapped up October, with revelations about the vulnerability of social networking sessions and critical infrastructure headlining.
[img_assist|nid=7249|title=|desc=|link=none|align=left|width=85|height=85]Long a treasure trove for free illegal music, file-sharing website LimeWire was ordered to shut its doors Tuesday after receiving an injunction from the U.S. district court of New York.
[img_assist|nid=7216|title=|desc=|link=none|align=right|width=100|height=100]Federal agents on Monday raided the Melrose, Massachusetts home of a missile systems expert who formerly worked at U.S. defense
contractor Raytheon. Several boxes of items were taken by FBI and Immigration
and Customs Enforcement agents from the home, which is owned by Richard M. Lloyd.