You get a quick message from a friend on Facebook, click on the link and absentmindedly log in to a website pretending to be Facebook. This is what happened last week, when scammers unleashed a new attack on Facebook, collecting users’ log-in information and passwords and pilfering victims’ “friends” lists to target the next dopes. [...]
Still Loving FaceBook
Dec 3
The Koobface Web site offers a video posted by ‘SantA’. The usual ruse of requiring a codec to watch the video is used, to encourage the user to install and run a file called setup.exe (SHA1:a2046fc88ab82abec89e150b915ab4b332af924a). This file is currently detected by 16 out of 41 antivirus products according to VirusTotal.
On the compromised Facebook page [...]
Anybody want to know Trend Micro’s top secret internal strategic plans for our upcoming projects? How about our financial returns for the next quarter?
Well, sorry, obviously we are not going to give that sort of information out publically—we’d need to be crazy to do something like that.
… On the other hand if you want a [...]
GENEVA — The attacks and scams that have been affecting users of Facebook, Twitter and other popular social networking sites are continuing to evolve and improve, as the attackers learn more about their victims and refine their tactics, experts say.
The poster child for these attacks has been the Koobface worm, which has been circulating on [...]
September 14, 2009 — CSO — While incidents of identity theft, phishing attacks and other schemes that take place on Facebook have been well documented (See: Five Facebook, Twitter Scams to Avoid and 5 More Facebook, Twitter Scams to Avoid), it turns out the latest scam simply uses the popular social networking site [...]
The Dark Side of Social Media.
Memphis Cisco Users Group Meeting
Tuesday, September 8th, 2009
(The Second Tuesday of Every Month)
6:00-7:00 PM
Location:
Cisco Memphis Office
57 Germantown Ct, Suite 301
Cordova, TN 38018
The Dark Side of Social Media.
Memphis Cisco Users Group Meeting
Tuesday, September 8th, 2009
(The Second Tuesday of Every Month)
6:00-7:00 PM
Location:
Cisco Memphis Office
57 Germantown Ct, Suite 301 Cordova, TN 38018
We were asked to check the integrity of a larger financial firm located in Canada. We had a couple of meetings about where the important information was most vulnerable. After great debate, we decided that the HR department would be our target. They held a lot of SSN and PMI information. As a team we [...]
Craigslist Phishing attack
Aug 25
What a great attack! Well done.
During our regular update and verification of all Craigslist accounts we have not been able to verify your account information. Either your information has changed or it is incomplete.
Please login to your account and update your Craigslist account information:
http://user-accounts-craigslist.org/account.verification/user.account.html
Failure to verify your account may result in [...]
Weekly product update – Cenzic detects a PHP Restriction Bypass Vulnerability and enhances 3 SmartAttacks
As of August 21, 2009 Cenzic now detects a PHP ‘mail.log’ Configuration Option ‘open_basedir’ Restriction Bypass Vulnerability (Bugtraq ID 36007). PHP is prone to a ‘open_basedir’ restriction-bypass vulnerability due to a design error. Successful exploits could allow an attacker to write [...]
