category
News

Samsung and I Got Bit by a VIPRE

Yesterday I reported that Samsung laptops were infected with a keystroke logger. This certainly appeared to be the case as a Samsung supervisor reportedly confirmed (http://www.networkworld.com/newsletters/sec/2011/040411sec1.html) that Samsung shipped infected laptops. Samsung has since indicated that this is not the case. This incident has some very important lessons. My entire information supply was polluted and

Got a Samsung? You Got Owned

[Final Update... I think -  THERE WAS NO KEYSTROKE LOGGER please see http://blog.eset.com/2011/03/31/samsung-and-i-got-bit-by-a-vipre to find out what happened.] [Update – There will be a new blog about this incident. I relied upon the information at http://www.networkworld.com/newsletters/sec/2011/040411sec1.html that Samsung had confirmed the presence of the keystroke logger in asserting that the laprops were infected. Since then

More Spam for Tripadvisor.com users

It is unfortunate, but a fact that many organizations are going to suffer hacks. The internet was designed to be a cybercriminal’s dream. That was not the intent of the internet, but the design certainly is such that it serves the purpose well. Fortunately it also serves many great purposes quite well too. News came

Smart Phone, Bad App

As the number of apps for smartphones continues to grow, perhaps your paranoia about such apps should be growing as well. In an unusual statement, the former director of the CIA has warned that the government isn’t sharing enough information about cyber security. In an article at http://www.wired.com/threatlevel/2011/03/hayden-cyber/, retired four-star Gen. Michael Hayden is quoted

Sticky Criminals

CBS in San Francisco is reporting a rather novel cash machine attack. . It seems that crooks are applying superglue to the clear, enter, and cancel buttons on cash machines at banks. A customer goes to the cash machine, inserts their card and enters their PIN. Then the victim notices the enter key is not

Politicians Better at Security than Twitter, Yahoo, and Amazon

Recently Senator Schumer from New York wrote a letter (http://www.infosecurity-us.com/view/16328/senator-schumer-current-internet-security-welcome-mat-for-wouldbe-hackers/) to Twitter, Yahoo, and Amazon asking them to make SSL the default for internet connections. What this means is that instead of an http connection they should provide and https connection by default. This is important because with http connections you are exposed to risk

WordPress.com Survives DDOS Attack

WordPress.com is a popular blogging host. Recently, for unknown reasons miscreants launched a massive distributed denial of service attack (DDOS) against WordPress.com. According to TechCrunch (http://techcrunch.com/2011/03/03/wordpress-com-suffers-major-ddos-attack/) WordPress.com is responsible for 10% of the websites in the world. So far I have not seen anyone take responsibility for the attacks. With so many websites being hosted

When Technology Fails: Mobile Death Trap

People place way too much trust in technology. We see that time and time again as phishing attacks and rogue security programs  proliferate. Identity theft can be one of the more extreme results of believing a computer that told you the email came from a friend, but another technology can cause death if you trust

Internet Kill Switch – Armageddon Will Have To Wait

In recent months there has been a lot of discussion in the US about an Internet kill switch. The real idea behind the kill switch is not to protect the infrastructure as claimed, but rather for political control such as has been recently observed in Egypt and other countries. Proponents of the Internet kill switch

Arrested for Cheating the Cheaters

Picture from https://secure.wikimedia.org/wikipedia/en/wiki/File:Casino_slots.jpg This is a really bizarre computer crimes case. A man knows of a bug in a gambling machine at casinos. He goes into the casinos, uses the machines with complete authorization, at least in some cases, if not all, asks casino staff to modify the machines and they willingly do so. The

I’ll Tell You How to Vote

A recent article at Time http://www.time.com/time/politics/article/0,8599,2025696,00.html details how an online voting system was hacked. The good news is that it was a public test and not a real election. The bad news is that real people’s information was able to be obtained. The “hackers” professor J. Alex Halderman and some of his graduate students from

Tell Me Your Secrets

An Associated Press release http://news.yahoo.com/s/ap/20100927/ap_on_hi_te/us_internet_wiretaps today indicates that the Obama administration is drafting legislation that would require companies to make it technically possible to intercept all electronic communications in the US. This would affect all of the US telephone companies, Skype, and also companies, such a RIM (Blackberry) that are based outside of the US.

Your Fantasy, A Criminal’s Dream

Fantasy sporting leagues have become very popular. A good friend of mine is into fantasy car racing teams. Other friends are into fantasy soccer (football elsewhere in the world). In the US a lot of people are into the fantasy NFL (National Football League –not soccer). Recently a researcher, Gary Rios, joined an ESPN sponsored

Spyware in your Underwear?

A recent article on TheStreet talk Wal-Mart putting RFID tags in its merchandise.  The article questions whether or not this is an invasion of privacy, and some privacy advocates are up in arms about this. According to Wal-Mart the RFID tags can be removed from purchased items. The RFID tags are not personalized to the

Let’s Get High at Work!

Oh yeah, lot’s of us do it right under our boss’s nose. Some companies even offer incentives for their employees to get high. I particularly enjoy getting high on long airplane flights right in front of the flight attendants. What am I talking about? It is an ignorant article I read today about i-dosing, digital

Intuit Comes Back… sort of

Ginny Lee, CIO at Intuit stated: Our preliminary investigation indicates the outage occurred during a routine maintenance procedure Tuesday night. An accidental power failure during that procedure affected both our primary and backup systems, taking a number of Intuit websites and services offline. While power was quickly restored, we’re working diligently to validate our systems

Intuit Offline

For more than 24 hours Intuit has been offline. Intuit is a financial services company that provides the products TurboTax, Quicken and the QuickBooks accounting program. According to the Wall Street Journal Intuit has ruled out a cyber attack, however, the duration of the outage would tend to indicate a security breach. It is quite

Sarah Palin’s Email Hacker Convicted.

A jury handed down a mixed verdict in the case of David Kernall, who hacked into Sarah Palin’s Yahoo email account. Kernall used a password reset attack to break into Palin’s Yahoo account, something that wouldn’t have happened if either Yahoo had been using reasonable security practices at the time, or if Palin would have

Carrots, Sticks and Cyber-spies

Carrots, Sticks and Cyber-spies The US legislature is proposing international cybercrime laws according to an article on Dark Reading . The idea is to provide incentives to cooperate on fighting cybercrime, as well as penalties for countries that do not cooperate. Part of the plan calls for a “Cyber-Security Ambassador” . There is an interesting

iPad scammers target the unwary

The Apple iPad is the current gadget du jour amongst the digerati and has been seeing strong presales, with estimates as high as 150,000 units on the first day.  With such attention in the media and the blogosphere, it is no wonder that both legitimate businesses and scammers have taken to using it as bait

Follow Us

Automatically receive new posts via email:

Delivered by FeedBurner

4 articles related to:
Hot Topic
31 Mar 2011
ESET Virus Radar

Archives

Select month
Copyright © 2014 ESET, All Rights Reserved.