Web Security

Over 50% of Malware Are Phishing Attacks

More than half (55.59 per cent) of all malware sent on email is an attempted phishing attack, according to analysis of malware by researchers. Read the full article. [Help Net Security]

U.S. Congress Websites Defaced

A number of Congressional websites were defaced with abuse aimed at
President Obama following Wednesday’s State of the Union address. Read the full article.  [The Register]

Key Employees’ Friends Were Facebook Targets in Aurora Attacks

A significant discovery in the recent Aurora attack that affected Google, Adobe, Yahoo and others is that the attackers had selected
employees at the companies with access to proprietary data, then learnt
who their friends were. The hackers compromised the social network
accounts of those friends, hoping to enhance the probability that their
final targets would click on the links they sent. Read the full article. [The Financial Times]

Scareware scammers are taking advantage of rumors about an “unnamed
app” that supposedly poses a security risk to Facebook users in order
to trick users into sites slinging rogue security software packages. Read the full article. [The Register]

A Nebraska man agreed today to plead guilty to participating in an
attack on Church of Scientology websites in January 2008 that shut down
the group’s websites. Read the full article. [Help Net Security]

Harvard professor and noted Google critic Ben Edelmen provided video evidence of the Google toolbar transmitting data back to the Mountain View Chocolate Factory after he chose to disable the application in the browser window he was currently using. Google has updated the toolbar. Read the full article. [The Register]

Researchers at the University of Cambridge Computer Laboratory, say the
3D Secure (3DS) authentications system branded as the “Verified by
Visa” and “MasterCard SecureCode” schemes are “a text book example of
how not to design an authentication protocol.” Read the full article. [The H Security]

Google has announced the availability of Chrome version 4.0 for Windows which addresses several high-risk security vulnerabilities, the latest release of the WebKit-based browser includes a number of new features. Read the full article. [The H Security]

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.