Recent Articles
Sophos
For years I have been waiting for a “all-in-one” desktop security suite that includes things like anti-virus, anti-malware, intrusion detection and prevention, firewall, disk encryption, mobile device protection, and application protection. Well I think I may have found it with Sophos. I spoke to Richard Jacobs their CTO the other day and got [...]
Who is hacking your network?
I found a great article that I reposted here as I believe it has a lot of really good information…
————
Are Russian, Chinese or America cybercriminals targeting your data? PC Plus goes in search of cybercrime’s dark heart.
New York, Moscow, Sao Paulo, Timbuktu – if a hacker is determined to empty your bank account, they can [...]
Scams using Social Networking Sites
There is a blog post that discusses a couple of scams using social networking sites Facebook and Twitter. Good to be aware.
Spear Phishing Scam
Kevin Prince of Perimeter eSecurity has an interesting post regarding the anatomy of a spear phishing or targeted phishing attack using the recent Aetna data breach as an illustration. You can see it here.
All of Kevin’s stuff is posted at security.perimeterusa.com
DDOS Attack Against a Domain Registers DNS Server
Botnets have grown in size and sophistication and as such we should gear up for some real attacks coming from them. I think we will begin to see more attacks like the one that happened a couple of weeks ago in China. A DDOS attack against a popular domain registrer in China. [...]
Malicious Insiders Causing Havoc at Financial Institutions
The SANS institute (www.sans.org) posted these two blurbs that caught my attention regarding threats from the inside.
–Bank Employee Draws 39-Month Sentence in Theft Scheme (May 25, 2009) A former bank employee has been sentenced to more than three years in jail for attempting to steal GBP 1.2 million (US $1.9 million) from his [...]
20,000 Legitimate Websites Compromised Through New Injection Attack
Websense recently made this announcement:
“Websense Security Labs(TM) Threatseeker(TM) Network has detected that a large compromise of legitimate Web sites is currently taking place around the globe. Thousands of legitimate Web sites have been discovered to be injected with malicious Javascript, obfuscated code that leads to an active exploit site. The active exploit site uses a [...]
Can Hackers Take Over the U.S. Power Grid?
There is an interesting article that I read recently entitled “Cybercriminals have penetrated U.S. electrical grid” that is quite disturbing. In the original Wall Street Journal article, it states that cybercriminals have gained access to U.S. power grid systems and are mapping the network and infecting computers with malware. Although it appears [...]
Would you like a Trojan with that pirated software?
Cyber criminals know that often times people want to get their hands on the latest and greatest software prior to its official release. As a result, these hackers have been known to modify this software and post it to the Internet for unsuspecting people to download. The modifications that they make include methods [...]
Your Data for Ransom
This isn’t the first time I have heard about this type of thing, but it does appear to be a growing threat. According to Wikileaks.org, cyber attackers breached the Virginia Department of Health Professionals’ prescription monitoring website, downloaded a ton of data and are now demanding $10 million dollars in ransom for its return. [...]