Wednesday, August 26, 2009

Wednesday 08/26/09

Microsoft Expands Office Anti-Piracy Program
Permalink
Microsoft expanded its anti-piracy program this week, shipping a new software update that checks whether Office users are running a licensed or pirated version of the productivity suite.

----------

Businesses Reluctant to Report Online Banking Fraud
Permalink
A confidential alert sent on Friday by a banking industry association to its members warns that Eastern European cyber gangs are stealing millions of dollars from small to mid-sizes businesses through online banking fraud. Unfortunately, many victimized companies are reluctant to come forward out of fear of retribution by their bank.
...
In many cases, the advisory warned, the scammers infiltrate companies in a similar fashion: They send a targeted e-mail to the company's controller or treasurer, a message that contains either a virus-laden attachment or a link that -- when opened -- surreptitiously installs malicious software designed to steal passwords. Armed with those credentials, the crooks then initiate a series of wire transfers, usually in increments of less than $10,000 to avoid banks' anti-money-laundering reporting requirements.

----------

Manipulating Breathalyzers
Interesting video demonstrating how a policeman can manipulate the results of a Breathalyzer.

----------

"TrendWatch, the malware research arm of TrendMicro, has posted a white paper titled 'A Cybercrime Hub' (PDF, summary here) describing the activities of an Estonian ISP acting as a cover-up for a large cybercrime network. It's involved with malware distribution and DNS hijacking, which leads to credit card fraud. The story's interesting, and a typical internet user would be exposed in such a situation. What security measures should be taken to prevent normal users from falling victim to such malicious bodies? Note that they are represented legitimately and are offering real services like any other internet company."

----------

Snow Leopard Has Built-In Antivirus
Originating on the Intego blog, a new Snow Leopard find may indicate Macs are not so immune to malware. In fact, Apple itself seems to be taking security issues more seriously with the latest version of Mac OS X, something that doesn’t quite fall well with its latest Get a Mac ads. In its latest TV commercials, Apple continues to bash PCs for being highly unreliable and prone to getting infected by viruses, whereas the Mac is downright immune to these threats. However, the people at Intego (security compan...

----------

Newly Discovered Vulnerability Could Threaten Cisco Wireless LANs
Aug 24,2009
Flaw in Cisco Over-The-Air-Provisioning could allow attackers to gain control of wireless access points, AirMagnet researchers say

----------

IDC Report: Most Insider Leaks Happen By Accident
Aug 25,2009
Unintentional leaks may cause more damage than internal fraud, research study says

----------

Arterial, crowdsourced traffic info comes to Google Maps
August 25, 8:01 p.m. UTC - by Jacqui Cheng Posted in: The Web
You already know how to find the status of traffic on the highway, but what about regular roads? Google has added arterial road information to Google Maps in select cities and has begun using crowdsourced data to provide more live updates.
Read more

----------

Pirate Bay ISP Victim of Sabotage After Shutdown
UPDATE: Black Internet, the ISP that on Monday turned off the access to file-sharing site The Pirate Bay, says it has become the victim of sabotage.

----------

Jessica Biel Could Give You a (PC) Virus
McAfee finds that searching for the actress's name is likely to lead you to spyware, adware, malware, and more.

----------

Personal Spy Gear: Is It Ethical? Is It Legal?
From disguised video security cams to GPS tracking loggers, personal security is going high-tech. But these gadgets bring up a host of sticky ethical and legal issues.

----------

DHS report: IT sector is resilient against serious cyberattacks
A U.S. Department of Homeland Security presents scenarios in which well-chosen attacks against key IT infrastructure elements could cause disruptions on a national scale. The document also offers a surprisingly sunny assessment of the resilience and redundancies within the IT sector to mitigate the risk of such disruptions. Read more...

----------

Hackers rest over summer, pounce during Christmas
Chuck Miller August 25, 2009
Much like average American workers, hackers tend to take off during the summer -- and weekends -- but come Christmas and New Year's, they are out in full force.

----------

More Mac DNS changing malware uncovered
Dan Kaplan August 24, 2009
Despite conventional wisdom, Mac malware remains alive and well.

----------

Federal Reserve Chairman Hit By High-Tech Pickpocket Ring
Identify theft isn’t just for the little people.

Federal Reserve Board chairman Ben Bernanke and his wife are among the victims of the tech-savvy pickpocket and ID theft ring Cannon to the Wiz, Newsweek reported Tuesday.

Threat Level readers will remember that Wiz is a national ring of some 200 light-fingered scammers that kept police around the country on their toes for at least two years. The group was led by Clyde Austin Gray, Jr., 52, of Waldorf, Maryland, who went by the names “Big Head” and “Poochie.” Gray pleaded guilty in July to conspiracy to commit bank fraud in a scheme that resulted in losses of at least $2.1 million from 10 financial institutions. Nine other co-conspirators have been charged to date.

----------

New FCC Boss: We'll Defend Net Neutrality
Though vague positions and vague neutrality principles remain problematic...

----------

Brazilian Malware Writers Stumble Again
I like to pick on malware writers, especially the dumb ones as you can see here. Sometimes they’re just too big a target to ignore.

The latest round is with Brazilian malware writers again. As you are aware, some days ago the Delphi virus was discovered; we detect it as W32/Induc. So today I got a Brazilian PWS-banker malware that was infected with–guess what?–the W32/Induc delphi virus! What an irony.

Back in 2007, I wrote about something quite similar here. And, surprise, it was another Brazilian PWS-banker malware.

So, please, malware writers, repeat after me: “I must install anti-virus software. I must install anti-virus software.”

Today, you can buy a customized Brazilian PWS-banker malware for about US$50. That may explain why it is so cheaply made.

----------

Twitter Weight Loss Spam
Hundreds of Twitter accounts have been hacked and used to send spam.

----------

No comments: