Spammers have been exploiting a bug in McAfee’s software-as-a-service (SaaS) antivirus software to turn PCs into spam relays. As a result, a number of McAfee’s customers have had their emails blocked after their Internet protocol (IP) addresses were blacklisted by anti-spam services
via McAfee SaaS Antivirus Spews Spam – Security – Antivirus – Informationweek.
On 17 January 2012, The New York Times revealed that Facebook plans to name five men as being involved in the Koobface gang. As a result of the announcement, we have decided to publish the following research, which explains how we uncovered the same names.
via The Koobface malware gang – exposed! | Naked Security.
A member of the Anonymous hacktivist collective has published a list of Internet-facing Israeli SCADA (supervisory control and data acquisition) systems and alleged log-in details.
via Anonymous publishes Israeli SCADA log-in details.
The FTC alleged that after the personalized offers feature was enabled, extensive information was collected from the user and transmitted to Upromise, including the names of all websites visited, all links clicked by the user and information that users entered into certain web pages, such as usernames, passwords, search terms, credit card information, expiration dates, security codes and social security numbers. The FTC alleged that there was no way a user would be able to detect the extent of the data being collected by the Upromise software without special software and technical expertise
Android malware writers are taking advantage of the controversy surrounding Carrier IQ’s smartphone tracking software in order to distribute a premium SMS Trojan, security researchers from Symantec warn
via Carrier IQ detection tool converted to premium SMS Trojan.
A war of words and website hacks is escalating in Israel over the purported hack of credit card data by a hacker from Saudi Arabia
via Israeli, Saudi Hacker Battle Escalates – Security – Cyberterror – Informationweek.
Concerned with the amount of U.S. intellectual property being stolen from corporate networks, a group of security professionals sat down and compared notes on the various groups they tracked. They came up with an approximate tally of attackers targeting the intellectual property of U.S. and multinational companies: An even dozen, and all thought to be Chinese
via 12 Groups Carry Out Most APT Attacks – Security – Vulnerabilities and threats – Informationweek.
A study published today by merchant data security leader SecurityMetrics shows 71 percent of merchants who entered the study were found to store unencrypted payment card data in 2011, which is an increase of 8 percent since 2010.
via Study sees 8 percent rise in unencrypted payment card data | TechJournal South.
A programmer by the name of Juuso Salonen has created a Ruby script called BozoCrack that cracks MD5 hashed passwords with remarkable success and with very little effort.
via Cracking MD5 … with Google?!.
You shred an important document, it stays deleted forever. Right?
As it turns it, it took the eight members of team “All Your Shreds Belong to U.S.” only 33 days to piece together more than 10,000 shredded pieces of paper, split across five puzzles
via Team Wins $50K, Restores 5 Shredded DARPA Docs in 33 Days | News & Opinion | PCMag.com.