Beacon's Blog » Security

Holy Zeus! Popular Botnet Rules As New Exploits Come Online – botnets/Vulnerabilities – DarkReading

Beacon (Eric Vogel) — Sat, 07 Aug 2010 00:46:59 +0000

Trusteer, AVG identify new botnets with different features, both built on Zeus technology
Aug 04, 2010 | 05:43 PM

By Tim Wilson
DarkReading

If there’s a "fashion trend" among botnet builders, Zeus is the new black — but its popularity is making many users and security professionals see red.

Zeus, a Trojan horse that spreads bots quickly, can be adapted for multiple purposes, is available in botnet-building kits, and serves as the platform for a growing number of botnets and sub-botnets that are being exploited across the globe, according to experts. In the past two days, researchers at Trusteer and AVG revealed details about two new instances of Zeus-based botnets, suggesting the Trojan is becoming more popular than ever.

Apple’s Worst Security Breach: 114,000 iPad Owners Exposed

Beacon (Eric Vogel) — Thu, 10 Jun 2010 22:46:30 +0000

Apple has suffered another embarrassment. A security breach has exposed iPad owners including dozens of CEOs, military officials, and top politicians. They—and every other buyer of the cellular-enabled tablet—could be vulnerable to spam marketing and malicious hacking.
http://gawker.com/5559346/apples-worst-security-breach-114000-ipad-owners-exposed

Only One In Seven Consumer AV Tools Catch New ‘Aurora’ Variants

Beacon (Eric Vogel) — Wed, 17 Mar 2010 23:10:56 +0000

NSS Labs says its new test shows emphasis on antivirus exploit detection flawed, but others disagree

By Kelly Jackson Higgins
DarkReading
Mar 11, 2010 | 04:20 PM

Most antivirus products don’t detect new variants of the exploit used in the so-called “Operation Aurora” attacks on Google, Adobe, and other U.S. companies, according to a new test conducted by NSS Labs.

www.darkreading.com/vulnerability_management/security/antivirus/showArticle.jhtml?articleID=223600014

New IE Zero-Day Flaw Being Used In Targeted Attacks

Beacon (Eric Vogel) — Fri, 12 Mar 2010 02:17:44 +0000

Microsoft issues special Internet Explorer 6 and 7 security advisory along with Patch Tuesday patches
Mar 09, 2010 | 02:13 PM

By Kelly Jackson Higgins
DarkReading

Microsoft is warning today about a newly discovered and unpatched flaw in Internet Explorer 6 and 7 that’s being exploited in the wild.

www.darkreading.com/vulnerability_management/security/attacks/showArticle.jhtml?articleID=223300129&cid=nl_DR_DAILY_2010-03-11_h

Laptop theft can be reduced by turning off WiFi

Beacon (Eric Vogel) — Wed, 03 Mar 2010 22:58:45 +0000

02 March 2010
Credant Technologies, the endpoint data security specialist, has warned laptop users to turn off their WiFi signals when not in use to prevent the use of low-cost scanners tracking down the machines.
www.infosecurity-magazine.com/view/7750/laptop-theft-can-be-reduced-by-turning-off-wifi/

Thousands Of Organizations Worldwide Hit By Widespread Malware Attack

Beacon (Eric Vogel) — Sun, 21 Feb 2010 01:18:17 +0000

Botnet bearing the Zeus Trojan infected 75,000 systems worldwide in 2,500 enterprises, government agencies
Feb 18, 2010 | 04:52 PM
By Kelly Jackson Higgins
DarkReading

Yet another sign that the Zeus Trojan isn’t just for stealing consumer online banking credentials anymore: Some 2,500 enterprises and government agencies worldwide have been infiltrated by a botnet spreading the pervasive piece of malware, a security firm revealed today.

http://darkreading.com/insiderthreat/security/attacks/showArticle.jhtml?articleID=223000193

15 Major Reasons Businesses’ Security Gets Compromised

Beacon (Eric Vogel) — Tue, 26 Jan 2010 02:08:06 +0000

www.focus.com/fyi/it-security/15-major-reasons-businesses-security-gets-compromised/

Anonymous Facebook Employee Says Network Keeps Track Of Whom You Stalk Most

Beacon (Eric Vogel) — Tue, 12 Jan 2010 22:13:29 +0000

By Phil Villarreal on January 12, 2010 10:30 AM

In an interview with an unnamed Facebook employee, the Rumpus revealed some disconcerting revelations about the privacy, or lack thereof, in the social network. The most eye-popping of these is that Facebook keeps track of the profiles you click on the most.

Summarized in a post on The Cleveland Leader, here are some of the top pieces of info from the story:
http://consumerist.com/2010/01/anonymous-facebook-employe-says-network-keeps-track-of-whom-you-stalk-most.html

Encryption busted on NIST-certified Kingston, SanDisk and Verbatim USB flash drives

Beacon (Eric Vogel) — Thu, 07 Jan 2010 23:39:30 +0000

Posted by Adrian Kingsley-Hughes @ 10:04 am

A word of warning to those of you who rely on hardware-based encrypted USB flash drives. Security firm SySS has reportedly cracked the AES 256-bit hardware-based encryption used on flash drives manufactured by Kingston, SanDisk and Verbatim.

http://blogs.zdnet.com/hardware/?p=6655&tag=nl.e589

10 email scams to watch out for

Beacon (Eric Vogel) — Wed, 23 Dec 2009 21:13:07 +0000

Date: December 19th, 2009
Author: Debra Littlejohn Shinder

If it seems like you’re getting hit with more email scams than ever, you’re right. Deb Shinder explains what you and your users should watch out for to avoid being duped.
http://blogs.techrepublic.com.com/10things/?p=1227&tag=nl.e101