1721

FBI warns of new Zeus-based malware in phishing scam

http://www.networkworld.com/news/2012/010612-gameover-malware-254623.html

http://www.ehackingnews.com/2012/01/newer-variant-of-zeus-malware-game-over.html

http://krebsonsecurity.com/2011/11/ddos-attacks-spell-gameover-for-banks-victims-in-cyber-heists/

GameOver With Just One Click
http://blogs.norman.com/2012/for-consumption/gameover-with-just-one-click

1722

Convicted murderer gets new trial after computer virus destroys data
http://nakedsecurity.sophos.com/2012/01/04/convicted-murderer-trial-virus/

1723

Well the fake HM Revenue & Customs Tax Refund email I reported on the 2nd Jan finally made the papers now. It turns out that HM Revenue & Customs have known about this for some time and have shut down 149 sites (I believe that is the number, but of that order).

Why the hell didn’t they make it public sooner is what I have to ask.

Following hard on its heals is yet another fake email, social engineering, phishing attempt, this time for Santander bank, “Account blocked: Confirmation required” as the subject.

Yet again easy to spot (not least because I don’t have a Santander account ;D) but banks just don’t pull these sort of strokes asking for information in this way. If you have any doubt that it might actually be legit, then logon to your bank in the normal way not via a link in an email.

The link in the email is easy to see is fraudulent, if you only look, hover the mouse over the link and look at the status bar or the email program where the true URL is displayed. For me using MailWasher it displays the underlying URL which stick out like balls on a plate (image).

The email headers also shoe that it doesn’t come from who they purport to be.

It also used an email address that I wouldn’t use for banking, my filtering email which I use for non-trusted sources like banking.

So stay alert, stay suspicious, stay safe as there will be another along soon with a slightly different format.

1724

Signed malware: Snooping on Chinese students?
http://blogs.norman.com/2012/malware-detection-team/signed-malware-snooping-on-chinese-students

By redirecting the address to a different IP, attackers are able to present users with altered web content or perform man-in-the-middle attacks. The purpose of this against a student site is up for speculation.

I wonder what the reason can be…hmmmmm ;D

1725

Microsoft Patches Critical Windows Drive-by Bug
http://blogs.norman.com/2012/security-exposed/microsoft-patches-critical-windows-drive-by-bug

Did You Think Email Is Threat Free? Think Again
http://blogs.norman.com/2012/security-exposed/did-you-think-email-is-threat-free-think-again

1726

Zappos Hack Believed To Have Affected Millions
http://online.wsj.com/article/BT-CO-20120116-706917.html
I received a letter from them today telling me of the attack.
I bought some boots from them not to long ago. :cry: (The boots are great.)

1727

More here: http://www.h-online.com/security/news/item/Customer-data-exposed-in-Zappos-com-breach-1413676.html

1728

Critical hole in McAfee products still open after more than 180 days
http://www.h-online.com/security/news/item/Critical-hole-in-McAfee-products-still-open-after-more-than-180-days-1413775.html

1729

Oracle Critical Patch Update Advisory - January 2012
http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html

1730

Typosquatting and Doppelgangers Pose Danger to Enterprises
http://blogs.norman.com/2012/security-exposed/typosquatting-and-doppelgangers-pose-danger-to-enterprises

Check Out Who Has Access to Your Social Media Accounts
http://blogs.norman.com/2012/for-consumption/check-out-who-has-access-to-your-social-media-accounts

1731

New stealthy botnet Trojan holds Facebook users hostage
http://www.theregister.co.uk/2012/01/18/carberp_steals_e_cash_facebook/

Five Koobface botnet suspects named by New York Times
http://www.theregister.co.uk/2012/01/18/koobface_prime_suspect_outed/

1732

Virus infections stop after suspects named
http://www.reuters.com/article/2012/01/19/us-facebook-cybersecurity-idUSTRE80I05720120119

1733

McAfee software bug could turn customers’ PCs into spam servers

http://www.theage.com.au/technology/security/mcafee-software-bug-could-turn-customers-pcs-into-spam-servers-20120120-1q93b.html

1734

FBI shuts down Megaupload.com, Anonymous shut down FBI

http://www.heraldsun.com.au/fbi-shuts-down-megauploadcom-charges-seven-with-online-piracy/story-e6frfro0-1226249114650

1735

more on the above…

FBI charges Megaupload operators with piracy crimes
http://news.cnet.com/8301-31001_3-57362152-261/fbi-charges-megaupload-operators-with-piracy-crimes/

Justice Department Charges Leaders of Megaupload with Widespread Online Copyright Infringement
http://www.fbi.gov/news/pressrel/press-releases/justice-department-charges-leaders-of-megaupload-with-widespread-online-copyright-infringement

1736

http://www.theregister.co.uk/2012/01/05/ramnit_social_networking/

http://www.theregister.co.uk/2011/09/12/tdss_rented_botnet_shenanigans/

1737

X.org server allows anyone to unlock computer
http://www.h-online.com/open/news/item/X-org-server-allows-anyone-to-unlock-computer-1417864.html

1738

Anonymous’s new weapon
http://www.h-online.com/security/news/item/Anonymous-s-new-weapon-1418337.html

1739

Another reason for having NoScript ;D

1740

@true indian

already posted…see reply #1717… check the date on the news before you post ::slight_smile: