Month: August 2010

Graham blogged about a Facebook clickjacking worm back in May which we dubbed Likejacking — for a number of weeks the threat ran rampant throughout Facebook. Since then, it has calmed down quite a bit and we don’t see much likejacking anymore. However, today we came across a new form of clickjacking where, instead of tricking the user into liking something, it tricks them into using the Facebook “Share” feature without requiring the user to acknowledge the fact that they’re sharing it. It starts off on a suspicious looking Facebook fan page where they offer the opportunity to see the … Continue reading New Facebook Clickjacking Worm

UPDATED:  Despite the red flag raised by a security researcher, Mozilla says users are not likely to be duped by a bug that can be used to bypass an alert meant for obfuscated URLs in Firefox. A bug in the Firefox browser that can be used to bypass an alert for obfuscated URLs is unlikely to trick users, according to Mozilla. The flaw was uncovered by Armorize Technologies researcher Aditya K. Sood, who warned it could be used by purveyors of malware to increase the chance of leading users to malicious sites. According to the bug report Sood filed to … Continue reading Mozilla: Firefox Security Bug Won’t Fool Users

SANTA FE, N.M. (AP) – Secretary of State Mary Herrera says her office has been the target of computer system attacks during the past four months, including a virus that places links to pornographic websites into a computer. Herrera said Tuesday her laptop was among those infected with "malware" or malicious software that was disguised as antivirus software. Herrera said her office is working with the state Department of Information Technology to safeguard computer equipment. KOB-TV first reported the computer virus problems. Herrera said the computer attacks did not jeopardize the state’s voter registration database or personal information about victims … Continue reading Computer virus hits secretary of state’s computers

A do-it-yourself kit that will enable ill-intentioned people to steal usernames and passwords to all kind of accounts Phishing is known to be the weapon of choice for all cybercriminals that are after login credentials. However, a new attack tool – facebook Hacker – has drawn attention to the ill-intentioned people in need of passwords and usernames that are not theirs. This do-it-yourself kit helps the wrong doer steal login credentials from whoever was targeted without the user even having to type in any of these desired fruits. The kit is intuitive, thus extremely easy to configure, just like any … Continue reading facebook Hacker – A Dangerous Tool

Microsoft is planning to release a new engine version of Microsoft Security Essentials (MSE) and Forefront Client Security (FCS) on August 19, 2010 Engine Version will be in the range of 1.1.610X.0 http://blogs.technet.com/b/enginenotifications/archive/2010/08/09/new-antimalware-engine-is-planned-for-release-on-16-aug-2010.aspx http://blogs.technet.com/b/enginenotifications/archive/2010/08/13/new-date-for-antimalware-engine-release-in-aug.aspx

Dell has partnered with Juniper Networks and SecureWorks to roll out security products aimed and small and medium enterprises (SMEs) to enable them to identify and manage risks, reports IT Channel Planet. Dell says its partnership with SecureWorks provides managed security services to SMEs, including day-to-day security monitoring, management and remediation, designed to improve security, achieve regulatory compliance, and lower IT costs. Steve Felice, Dell president, consumer, small and medium business, says: “It is difficult and increasingly complex for midsize businesses to assemble the resources to protect against the numerous security threats they face, a data breach through the network, … Continue reading Dell teams with Juniper, SecureWorks

Cupertino succumbs to Jedi server trick A hack attack that can expose users to malware exploits has infected more than 1 million webpages, at least two of which belong to Apple. The SQL injection attacks bombard the websites of legitimate companies with database commands that attempt to add hidden links that lead to malware exploits. While most of the sites that fell prey appear to belong to mom-and-pop operations, two of the infections hit pages Apple uses to promote iTunes podcasts, this Google search shows. The malicious links appear to have been removed since Google last indexed the pages in … Continue reading Apple.com hit in latest mass hack attack

Today, Adobe have updated the Security Advisory for Adobe Reader and Acrobat with Vulnerability identifier APSB10-17 Release date: August 5, 2010 Last updated: August 17, 2010 Adobe is planning to release updates for Adobe Reader 9.3.3 for Windows, Macintosh and UNIX, Adobe Acrobat 9.3.3 for Windows and Macintosh, and Adobe Reader 8.2.3 and Acrobat 8.2.3 for Windows and Macintosh to resolve critical security issues, including CVE-2010-2862 discussed at the Black Hat USA 2010 security conference and the Adobe Flash Player update as noted in Security Bulletin APSB10-16. Adobe expects to make these updates available on Thursday August 19, 2010. Note … Continue reading Adobe Reader Out-of-band Security Updates on August 19, 2010

Worldwide security software revenue is forecast to surpass $16.5 billion in 2010, an 11.3 percent increase from 2009 revenue of $14.8 billion, according to Gartner, Inc. Although the economic downturn slowed security revenue to 7 percent growth in 2009, organizations have indicated an intention to give priority to security budgets. "Most segments of the security software market will continue to grow over the next few years, although a significant degree of variation is expected between the more-established and less-mature technologies," said Ruggero Contu, principal research analyst at Gartner. "Overall, security will remain one of the fastest-growing areas within the enterprise … Continue reading Gartner Says Security Software Market is Poised for 11 Percent Growth in 2010

When it comes to being fast, not crashing and safety and security, which Internet browser is the best? Well according to PCWorld, Google Chrome is. For security, Chrome opens each site in its own ‘sandbox’ to protect your computer from malware, according to the Detroit News. Chrome was also the last browser standing in a recent annual hacking contest. http://www.bbb.org/us/post/google-chrome-picked-best-browser-for-security-speed-5766 I agree of the speed and security thingy on Chrome but there are issues on it.