Browsing Category: Social Engineering

[img_assist|nid=2304|title=|desc=|link=none|align=left|width=100|height=100]On Tuesday, clicking on the illustration on Google’s front page commemorating the 150th anniversary of the birth of Esperanto’s creator L. L. Zamenhof, generated an awful lot of malicious search results — taking visitors to dodgy advertisements or pages that tried to trick visitors into thinking their computers were infected and paying for fake antivirus software. Read the full article. [Computerworld]

Read more...

[img_assist|nid=2289|title=|desc=|link=none|align=right|width=100|height=100]A SQL injection flaw has been discovered in Rockyou.com – a social networking application development website used by app developers for Bebo, Facebook and Myspace; The flaw could have allowed hackers access to the 32 million usernames and passwords. Read the full article. [eWEEK Europe]

Read more...

[img_assist|nid=2228|title=|desc=|link=none|align=left|width=100|height=100]A large scale SQL injection attack has injected a malicious iframe on
tens of thousands of susceptible websites; The
injected iframe loads malicious content from 318x.com, which eventually
leads to the installation of a rootkit-enabled variant of the Buzus
backdoor trojan. Read the full article. [Help Net Security]

Read more...

[img_assist|nid=2220|title=|desc=|link=none|align=left|width=100|height=100]A rogue anti-malware product called DefenceLab redirects infected PCs
to Microsoft’s Support portal, but modifies the HTML content as it
returns so as to appear as if Microsoft is endorsing the worthless
software. Read the full article. [The Register]

Read more...

[img_assist|nid=2206|title=|desc=|link=none|align=right|width=80|height=136]Botnets – apart from inundating out inboxes with spam – can also be
used for ulterior purposes such as executing DDoS attacks or hosting
websites, so understanding the “modus operandi” and size behind the
well-known names is a good idea; Here’s a top ten botnet list. Read the full article. [Help Net Security]

Read more...

[img_assist|nid=2203|title=|desc=|link=none|align=right|width=130|height=76]Admitted TJX intruder Albert Gonzalez has entered into a plea agreement
on charges that he hacked into Heartland Payment Systems, Hannaford
Brothers, 7-Eleven and two other unnamed national retailers. Read the full article. [Wired]

Read more...