What is TrustedSource? | Create Account | Login 
Secure Computing Corporation
 
Home  Threats and Trends  TrustedSource™ Blog
TrustedSource™ Query
Enter IP address, CIDR range, domain name or URL:
Search
 

TrustedSource™ Blog

RSS Feed

Rogue Flash ads hijack your clipboard

August 19th, 2008

There is a new twist with Malvertising (malicious advertising), as first reported here. These latest banner ads contain malicious ActionScript code which has access to your system’s clipboard - and it’s not a bug, it’s a feature. Since ActionScript 1.0, there is a method which puts a specified text string onto the clipboard (replacing other text [...]

More

Web Application Vulnerabilities Can Make The Difference - How To Tackle The Threat

August 18th, 2008

Automated SQL injection attacks against Websites have truely changed the Web threat-landscape this year. Attack toolkits misuse search engines to query for vulnerable Web pages. One reason why such attacks remain so successful is that it’s not based on a common Web server vulnerability that could simply be patched. Rather, the attacks work due to [...]

More

CNBC Features One of Secure Computing’s Researchers

August 14th, 2008

CNBC recently sought out Secure Computing’s own Jonathan Zdziarski to explain his recent discovery of a kill switch mechanism embedded in the latest iPhone Software. Zdziarski helped to clear up the conspiracy theories and explained that the kill switch was a last-ditch security mechanism “designed to make up for lack of a secure operating system” [...]

More

New SQL Injection Attack Infecting Machines

August 10th, 2008

A new SQL injection attack started circulating last week, and appears to have infected several thousand web servers as of late Friday evening. The attacks look similar to the one below, and attempt to query random valid files on the web server. The sysobjects and syscolumns tables queried are the give away: the attack is targeting [...]

More

Bargain shoppers watch out for compromised web sites

August 7th, 2008

Bargain shoppers should watch out.  A popular e-commerce web site in the United Kingdom is infected with malicious content. We have blogged about infected web pages several times before and wanted to warn users about this as well.  A normal web surfer would not recognize anything suspicious, but a closer look at the actual HTML source [...]

More

MyWorm is your worm is everybody’s worm

August 5th, 2008

There is a new worm in the wild which targets users of the social networking sites MySpace and Facebook. The worm misuses the functions of these popular networking sites; by posting comments and sending messages like “Paris Hilton Tosses Dwarf On The Street“, “OMG!!! This is you on hidden cam“, “You must see it!!! Funny video clip” or “Funny [...]

More

New Vundo Trojan spotted in the wild

August 4th, 2008

A new variant of the “Vundo” desktop hijacker trojan (a.k.a. “Virtumonde”) has been sighted. It is capable of phoning home and sending sensitive information about an infected system back to its servers in the Netherlands that belong to the Trojan’s authors. Once the malware is executed, it drops a DLL using a random name into Windows’ [...]

More

Secure Computing’s Research Team Releases Quarterly Internet Threat Report

August 1st, 2008

The Secure Computing Research and Anti-Malware teams have issued our Internet Threats Report for Q2, 2008. The in-depth report provides statistics on trends in spam, malware and web traffic, a look back at some of the most notorious threats in Q2, and a look forward with some predictions of what we might expect to see [...]

More

FBI vs. Facebook - Makes Any Sense?

July 28th, 2008

Of course not. It’s another new Storm campaign on the loose, with a minor change in the social-engineering trick. Mail with subjects like “FBI wants instant access to Facebook” is hitting users’ inboxes at the moment. If a user follows the trick, he will be presented with the following web site: As usual the fake web [...]

More

Wrap-Up on July’s Fake Invoices

July 25th, 2008

Since the beginning of July there are steady waves of mass-mailings hitting the users’ inboxes with fake invoices. Fake UPS messages claim that a package couldn’t be delivered and was returned, the user should print out the attached invoice - which in fact is the malware of course. Yesterday two different spoofs were on the loose, [...]

More

Yet Another Storm Variant - Amero Replacing the Dollar

July 23th, 2008

We have seen evidence of yet another storm variant on the attack.  This one announcing that the Amero will be replacing the dollar. The victim may see an email with a subject something like:  The AMERO currency replacing the Dollar With the following text: The Dollar disappeared http://ip_address_here When the user goes to this URL they are displayed a [...]

More

A new threat from “Angelina Jolie”

July 21st, 2008

Secure Computing’s TrustedSource Research Team has recently detected a new Web-based malware and spam email attack that features news on Angelina Jolie as a bait. Both the Web and email campaign were detected jointly by SecureWeb (Webwasher) and SecureMail (Ironmail) appliances and successfully correlated by TrustedSource. On average, about 2.28% of the total global daily [...]

More

Phishing Webinar with White Hat World

July 16th, 2008

If you’ve ever wanted to know what makes phishing tick, or more importantly, what the leading companies are doing to fight it, tune in for White Hat World today at 2PM EST. Jonathan Zdziarski, Research Scientist at Secure Computing, and several other panelists will be engaging in a round table discussion all about phishing, why [...]

More

Trojan infecting multimedia files

July 9th, 2008

A new trojan has been spotted spreading in the wild, infecting multi-media files on a victim’s harddisk with malicious content. The malware embeds malicious content into multimedia files based on the Advanced Systems Format (ASF), a widely used format for video and audio content such as MP3 and WMA music files, WMV video files and others. [...]

More

Cyberattack on Lithuania

July 6th, 2008

In what appears to be an imitation of last year’s high profile attacks on Estonian national cyber infrastructure, Russian nationalist hackers once again demonstrated their displeasure at the actions of another Baltic country’s political leaders by defacing over 300 Lithuanian websites this week, including the website of the ruling Social-Democratic party. Screenshot of one of the [...]

More

 Previous Entries  
 
Secure Computing Corporate Homepage | Contact | Privacy Policy | Disclaimer

Copyright © 2007-2008 Secure Computing Corporation. All Rights Reserved.

ANY INFORMATION PROVIDED BY SECURE COMPUTING ON THIS BLOG ARE OFFERED "AS IS" WITH NO EXPRESS OR IMPLIED WARRANTIES, CLAIMS, PROMISES OR GUARANTEES ABOUT THE ACCURACY, COMPLETENESS, OR ADEQUACY OF THE INFORMATION CONTAINED IN OR LINKED TO AND NO RIGHTS ARE CONFERRED. BY USING THIS BLOG, YOU ASSUME ALL RISK FOR YOUR USE. IN NO EVENT WILL SECURE COMPUTING BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL, EXEMPLARY, OR OTHER DAMAGES WHETHER OR NOT SECURE COMPUTING HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH LOSS OR DAMAGE. SECURE COMPUTING HAS NO OBLIGATION TO POST BLOG SUBMISSIONS OR RESPONSES.