Latest Internet and Web security News

International phishing crime ring dismantled in USA and Romania
posted on 21/05/2008

Authorities in the USA and Romania have charged a total of 38 people suspected of running an international crime ring that attempted to steal from thousands of consumers and targeted hundreds of financial institutions. According to media reports, the gang sought innocent parties' personal information through phishing emails and "smishing" (sending SMS text messages via mobile phone). Computer users who clicked on links contained in spam emails sent by the gang were taken to a fraudulent website, which posed as a legitimate online bank, where they were tricked into entering their passwords and banking details. According to the US Department of Justice, the gang sent more than 1.3 million spam emails in just one phishing attack. Information stolen by the phishers was passed via internet chat messages to US-based cashiers, who recorded the stolen data onto the magnetic strip on blank credit and debit cards. Other criminals were then sent to test the cards at ATMs by making balance r... [more]

Trend Micro helps keep kids safe online
posted on 13/05/2008

For 21st century youth, the Internet is an integral part of life. Social networking sites such as Facebook or MySpace have gained massive appeal – nearly 60 percent of 12-17 years olds claim to have profiles on these sites and about 14 percent of them have received unwanted online solicitations. While online predators generally receive a lot of media attention, the more likely risks young people face include online harassment or “cyberbullying” (experienced by 32 percent of online teens) and the posting of inappropriate user-generated material. As a two-way medium, the potential risks young people face on the Internet extend beyond what reaches them (whether they be people or digital threats such as viruses, worms or spyware), and includes the types of personal information they may be sharing online. A combination of awareness, common sense, critical thinking and sometimes technology can help young people avoid or reduce these risks. In response to these issues, Trend Micro has... [more]

BBC journalists show how easy it is to obtain stolen credit and debit card details on the internet
posted on 24/04/2008

The BBC has announced that UK credit and debit card fraud on the internet is much greater than previously estimated. An undercover investigation by BBC News revealed how easy it was to obtain stolen credit and debit card details on the internet. Posing as computer hackers, two journalists infiltrated a website selling thousands of stolen card details which had been stolen online from small internet retailers. Greg Day, Security Analyst for McAfee commented: "We hear a huge amount in the news about end-users who have been victims of cyber-crime. However the BBC’s investigation shows that small online companies are just as much at risk as they may have shipped goods that they will never receive any money for. One small online business owner said that he has shipped a huge amount of his stock to fraudulent addresses which he has to foot the bill for and this has now left him near-bankrupt." "McAfee carried out research last year which found that nearly half of the SMEs don’t consider... [more]

Malicious JavaScript injection evolves
posted on 24/04/2008

Websense® Security Labs has been tracking a recent development of the malicious JavaScript injection that compromised thousands of domains at the start of this month, just 2-3 weeks ago. The attackers have now switched over to a new domain as their hub for hosting the malicious payload in this attack. We have no doubt that the two attacks are related as our brief analysis in our blog will detail. In the last few hours we have seen the number of compromised sites increase by a factor of ten. This mass injection is remarkably similar to the attack we saw earlier this month. When a user browses to a compromised site, the injected JavaScript loads a file named 1.js. The JavaScript code then redirects the user to 1.htm (also hosted on the same server). Once loaded, the file attempts 8 different exploits (the attack last April utilised 12). The exploits target Microsoft applications, specifically browsers not patched against the VML exploit MS07-004 as well as other applications. Omino... [more]

MicroWorld announces new partner Spearhead Networks in Ghana
posted on 23/04/2008

MicroWorld Technologies Inc. has announced its new partner Spearhead Networks in Ghana as part of its expansion drive. MicroWorld’s Anti-Virus, Anti-Spam and Content Security products eScan and MailScan are powered by several unique technologies. eScan is powered by the MWL technology, with a quick updating Anti-Virus system and it uses advanced Intentional Analysis to detect previously unknown threats. Spearhead Networks specializes in wireless networks, antivirus, antispam, content security and network intrusion and prevention solutions. Spearhead Networks provides a range of services to meet specific customer needs in ensuring data security. “The world today is looking for security solutions that comprehensively and pro-actively protect computers and networks, without leaving any vulnerable areas for Worms and Viruses to sneak through or Spam to flood the inbox. The present and the future belongs to those solution providers who are well prepared to thwart even those threats tha... [more]

Other Security news and resources