Feeds & Podcasts

Blogs

Archive

Tags

#SecChat $1 million guarantee 12 Scams of Christmas access to live fraud resolution agents Acquisition Alex Thurber Android antivirus Apple botnet Channel Partners cloud security Compliance Consumer counter identity theft credit card fraud and protection credit fraud alerts credit monitoring credit monitoring and resolution critical infrastructure Cyber Security Mom cyberbullying Cybercrime cybermom data breach data center data center security Data Protection Dave DeWalt DLP Email & Web Security embedded encryption Endpoint Protection enterprise facebook fake anti-virus software Family Safety global threat intelligence google government Hacktivism how to talk to kids how to talk to teens identity fraud identity fraud scams identity protection identity protection $1 million guarantee identity protection fraud identity protection surveillance identity surveillance identity theft identity theft expert identity theft fraud identity theft protection identity theft protection product Identity thieves and cybercriminals intel iphone kids online behavior lost wallet protection malware McAfee McAfee Channel McAfee Family Protection McAfee Identity Protection McAfee Initiative to Fight Cybercrime McAfee Labs McAfee security products Mid-Market Mobile mobile security monitor credit and personal information Network Security online personal data protection online safety Operation Aurora PCI personal identity theft fraud personal information loss personal information protection phishing privacy proactive identity protection proactive identity surveillance Public Sector restore credit and personal identity Risk and Compliance scam scams scareware security smartphones social media social networking social networks spam Stuxnet twitter vulnerability Web 2.0 work with victim restore identity

Yearly Archives: 2006

Do Exploit Writers Ever Go on Vacation?

Wednesday, December 27, 2006 at 8:13am by Karthik Raman
Karthik Raman

Apparently not! On December 20, a new zero-day exploit for Microsoft Windows operating systems was released. This exploit targets a weakness in the Client Server Run-Time Subsystem, and allows local privilege escalation or denial of service. Microsoft has acknowledged this vulnerability and admitted that its newest operating system, Windows Vista, is vulnerable. Keep reading for Read more…

I am not against virtual postcards, but…

Wednesday, December 27, 2006 at 7:54am by Pedro Bueno
Pedro Bueno

As we see every year, Christmas season is a great opportunity for a new virus to spread by email using “Christmas” as a reason to read the email. We just had a post here on Avert Labs blog about one a few days ago. If it was just the spammers, we could understand, since they Read more…

SPAM : Death by a thousand cuts!!

Wednesday, December 27, 2006 at 7:39am by Vinoo Thomas
Vinoo Thomas

In the “good old days” spammers aggressively scanned the Internet for open relay servers to send spam. Open relays are out of fashion these days. So much so that the Open Relay DataBase is shutting down due to changes in spammer tactics. Today’s spammers, in collusion with malware authors, infect thousands of machines on the Read more…

Christmas "fun" with malware

Tuesday, December 26, 2006 at 11:15am by Allysa Myers
Allysa Myers

As of late, a weekend is just not complete without a new W32/Stration variant spamming, and this weekend was no exception. Of course, this variant added a Christmas twist to the message body. To add to the Christmas “fun”, we also saw two other nasties taking advantage of people hoping for a little holiday cheer Read more…

Building The Security Mindset

Friday, December 22, 2006 at 12:11pm by Andrew Berkuta
Andrew Berkuta

I was quite intrigued, recently, by a question posed by the author of Securosis.com and his answer: “So how do you build the mindset? You immerse yourself in security, and I don’t mean the job. Don’t read books on cryptography, go read some quality spy novels and security tales with ultra-paranoid protagonists that consistently improvise Read more…

IMs, VoIP and Spam

Friday, December 22, 2006 at 6:16am by Navtej Singh
Navtej Singh

Technologies advance with time, and so is the case with Instant Messengers. Not long ago, people were happy sending text messages. Then VoIP came along and changed the scene. Soon after IM vendors embraced it. Many IM clients are now VoIP enabled. As soon as VoIP started going deeper into the mainstream, security researchers warned Read more…

PassWord Stealer for the virtual world

Friday, December 22, 2006 at 6:05am by Francois Paget
Francois Paget

Inside the Trojan family, password stealers (abbreviation : PWS) are dedicated to monitoring some of your keystrokes. They collect confidential information like Internet logins. Depending on the data collected, an attacker is then able to access your bank, e-commerce, game or social networking website account for the purpose of fraud or other criminal activities. McAfee Read more…

MS Word Zero-Day Trio

Thursday, December 14, 2006 at 2:53pm by Karthik Raman
Karthik Raman

In the week leading up to 12 December 2006, two new Microsoft Word zero-day vulnerabilities became public (Word I, Word II). Microsoft’s December Patch Tuesday fell on December 12, but this cocktail of Microsoft’s patches did not include fixes for the two new Word flaws. To make matters worse, on December 12, a third zero-day Read more…

Should IT Risk Management Be A Part Of IT?

Thursday, December 14, 2006 at 8:23am by Editor
Editor

Responding to a post on the Layer 8 IT security blog about how those setting IT security policies should be within the IT organization, Riskanalys.is has a post saying that IT risk management people belong outside of an IT group. The thinking is that IT isn’t well enough respected, to some degree. It’s not seen Read more…

So, how does one write mobile spyware?

Wednesday, December 13, 2006 at 2:48pm by Jimmy Shah
Jimmy Shah

Some helpful soul has decided there isn’t enough Symbian spyware in the world. A Russian malware author has released a prototype of SMS forwarding spyware, SymbOS/Htool-SMSSender.A.intd. He’s included the source code to aid in modification. The author, let’s call him Scripty, says that SymbOS/Htool-SMSSender.A.intd can: Hide from the user Load on startup Copy the text Read more…