'sophisticated and dangerous'
New trojan virus Zeus v3 empties online bank accountsHow to protect yourself from trojans when banking online
- Make sure your anti-virus software is up to date.
- Keep firewalls set to the highest level.
- Never open an e-mail attachment from someone you don't know.
- Never double-click on an e-mail attachment that ends in .exe. It is an 'executable' file and can do what it likes in your system.
- If you think your machine has already been infected, contact your bank immediately. If the bank thinks you are a genuine victim of fraud it will reimburse you.
common sense...
Top 8 Things You Shouldn't Give Social Networking SitesRelated: Social Networking Privacy: How to be Safe, Secure and Social
don't trust the bunny
Energizer DUO USB battery charger software allows unauthorized remote system accessIs your data safe? (2)
- Official Google Blog: A new approach to China
Like many other well-known organizations, we face cyber attacks of varying degrees on a regular basis. In mid-December, we detected a highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google.
- Official Google Enterprise Blog: Keeping your data safe
This attack may understandably raise some questions, so we wanted to take this opportunity to share some additional information and assure you that Google is introducing additional security measures to help ensure the safety of your data.
- Google's half-truths and a plea for perspective
Coordinated enough to get at GMail’s internal data store, if only the one with e-mail headers. If that doesn’t scare you, it should. What Google does with their .cn site is relatively minor news.
banking/e-commerce at risk
Creating a rogue CA certificateThis successful proof of concept shows that the certificate validation performed by browsers can be subverted and malicious attackers might be able to monitor or tamper with data sent to secure websites. Banking and e-commerce sites are particularly at risk because of the high value of the information secured with HTTPS on those sites. With a rogue CA certificate, attackers would be able to execute practically undetectable phishing attacks against such sites.
'jail-break' with care
Worm attack bites at Apple iPhoneThe worm, known as ikee, only affects "jail-broken" phones, where a user has removed Apple's protection mechanisms to allow the phone to run any software.
Is your data safe?
Facebook and MySpace security: backdoor wide open, millions of accounts exploitable[Simon Willison's Weblog]Facebook and MySpace fixed this quickly after being notified...
'notorious rogue'
FTC Shuts Down Notorious Rogue Internet Service Provider, 3FN Service Specializes in Hosting Spam-Spewing Botnets, Phishing Web sites, Child Pornography, and Other Illegal, Malicious Web ContentRelated: US cuts off 'criminal' net firm
an echo in here...
[Yet another] Serious security flaw found in IE[!]Related (12/17/08): Microsoft plans quick fix for IE
don't click
Facebook users hit by virus – "The virus tricks users by telling them they're in a video..."the scum never sleeps
Spammers announce World War IIIYet another reminder to "never follow links in unsolicited email messages." (and beware of intrusive/annoying ad tactics if you visit the news site's home page)
beware of 'fake E-shops'
Cybersquatting Security Vendors for Fraudulent PurposesDon't be cheap, if you're to buy any kind of software, do so through the official site, and cut the fraudulent intermediaries like the ones in this case.
no privacy here, thank you
Security Lapse Exposes Facebook PhotosBeware of links to other news sites with heavy and/or intrusive advertising.
here's your proof...
Clarkson stung after bank prankTV presenter Jeremy Clarkson has lost money after publishing his bank details in his newspaper column.The Top Gear host revealed his account numbers after rubbishing the furore over the loss of 25 million people's personal details on two computer discs. He wanted to prove the story was a fuss about nothing...
fixed in Firefox 2.0.0.7
Mozilla Foundation Security Advisory 2007-28: Code execution via QuickTime Media-link files (upgrade)'unacceptable intrusion'
German spyware plans trigger row – "German government plans to spy on terror suspects by deploying malicious e-mails have drawn sharp criticism."how secure?
Bloggers battered by viral stormGoogle's Blogger site is being used by malicious hackers who are posting fake entries to some blogs.
The fake entries contain weblinks that lead to booby-trapped downloads that could infect a Windows PC.
company denies security breach
Monster attack steals user dataUS job website Monster.com has suffered an online attack with the personal data of hundreds of thousands of users stolen...
'open to attack'
Users warned on Windows cursors – "Animated cursors could prove risky for Windows users, Microsoft has warned...."good to know...
Debit card versus credit card – "Your federal debit card legal rights are weaker than your credit card rights."simple advice worth repeating...
Security Response Weblog:To protect yourself against these threats, do not trust unsolicited files or documents about “interesting” topics. Do not open attachments unless they are expected and come from a known and trusted source.
security warning - don't click!
Beware you morbid types...It hasn't been long since reports surfaced that videos of Saddam Hussein’s execution are available for download on the Internet. It’s no surprise that enterprising malware creators have latched on to this latest news in an attempt to spread their wares...
caution: plugin vulnerability
When PDFs Attack!We have received reports of a significant problem relating to Adobe Acrobat files and Cross Site Scripting (XSS). A weakness was discovered in the way that the Adobe Reader browser plugin can be made to execute JavaScript code on the client side...See article for details.
You can avoid this problem by implementing a work around in your browser so that it does not use the Acrobat Reader plugin.
Update (1/5/07): A supposedly more secure, new version of Adobe Reader is available. Beware of optional additional software installation, which is checked by default. [BBC]
