Security Risks
https://forums.symantec.com/t5/Security-Risks/bg-p/security_risks
Security RisksTue, 06 Jan 2009 11:17:40 GMTsecurity_risks2009-01-06T11:17:40ZThe (File)Name Game!
https://forums.symantec.com/t5/Security-Risks/The-File-Name-Game/ba-p/354990
Digging into our honeypots and spam-trap systems to look for malicious attachments is always an interesting exercise. We can identify different spam campaigns and map together malicious binaries by correlating attachments and filenames. Nevertheless, it's also funny to see how the bad guys are still tryingFri, 03 Oct 2008 18:38:15 GMThttps://forums.symantec.com/t5/Security-Risks/The-File-Name-Game/ba-p/354990Elia Florio2008-10-03T18:38:15ZMisleading Application Targets Free Online Services
https://forums.symantec.com/t5/Security-Risks/Misleading-Application-Targets-Free-Online-Services/ba-p/347552
We have seen in recent times that malicious binaries are spreading through social engineering attack vectors like spam emails, phishing, and social networking sites. This time we have found that attackers have begun targeting free online service sites and our example is based on Google NotebookWed, 03 Sep 2008 16:44:16 GMThttps://forums.symantec.com/t5/Security-Risks/Misleading-Application-Targets-Free-Online-Services/ba-p/347552Umesh Wanve2008-09-03T16:44:16ZYet another Site Falls Prey to XP Antivirus
https://forums.symantec.com/t5/Security-Risks/Yet-another-Site-Falls-Prey-to-XP-Antivirus/ba-p/314798
A couple of weekends ago, I was doing exactly what most computer users do in their free time. I was sitting front of the computer, visiting sites that I have no business with. One siteTue, 25 Mar 2008 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Yet-another-Site-Falls-Prey-to-XP-Antivirus/ba-p/314798Vikram Thakur2008-03-25T07:00:00ZCloning Shop for Mac Users Now Open!
https://forums.symantec.com/t5/Security-Risks/Cloning-Shop-for-Mac-Users-Now-Open/ba-p/314804
This week, our friends at Trend blogged about a new misleading application for the Mac. We decided to take a look at it as well. The application, named iMunizator, is a variant of the wellFri, 21 Mar 2008 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Cloning-Shop-for-Mac-Users-Now-Open/ba-p/314804Alfredo Pesoli2008-03-21T07:00:00ZYour Friendly Password Archiver
https://forums.symantec.com/t5/Security-Risks/Your-Friendly-Password-Archiver/ba-p/310236
We all know that you should back up your data periodically if you don't want to lose it in the case of an incident. This is not as trivial as it used to be. YouThu, 13 Mar 2008 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Your-Friendly-Password-Archiver/ba-p/310236Candid Wueest2008-03-13T07:00:00ZKeylogging at the Habbo Hotel
https://forums.symantec.com/t5/Security-Risks/Keylogging-at-the-Habbo-Hotel/ba-p/306489
Social networking Web sites have become a popular pastime and are a means of staying in touch with friends for many people. Yesterday, Websense reported on a Trojan keylogger aimed at users of Habbo, aWed, 20 Feb 2008 08:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Keylogging-at-the-Habbo-Hotel/ba-p/306489Peter Coogan2008-02-20T08:00:00ZBan Bad Banner Ads
https://forums.symantec.com/t5/Security-Risks/Ban-Bad-Banner-Ads/ba-p/306488
Many people don’t like flashy advertisement banners on Web pages. But ads are a necessary thing for some pages to keep them free and help the owners pay their hosting fees. That might have beenThu, 31 Jan 2008 08:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Ban-Bad-Banner-Ads/ba-p/306488Candid Wueest2008-01-31T08:00:00ZAttack of the Clones II
https://forums.symantec.com/t5/Security-Risks/Attack-of-the-Clones-II/ba-p/306487
AVSystemCare, DriveCleaner, and MalwareAlarm (a clone of AntiSpywareShield) are known rogue antispyware/antivirus application "brands". They are part of a growing list of misleading applications that deceive users by displaying scary warnings about the computer beingThu, 17 Jan 2008 08:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Attack-of-the-Clones-II/ba-p/306487Mateusz Misiewicz2008-01-17T08:00:00ZI’ve Got a Crush on You.
https://forums.symantec.com/t5/Security-Risks/I-ve-Got-a-Crush-on-You/ba-p/306484
Social networking sites are currently the hottest spots to hang out on the Internet. Grandma has a MySpace page and your little sister is on Facebook. People in nightclubs no longer give out phone numbers,Thu, 03 Jan 2008 08:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/I-ve-Got-a-Crush-on-You/ba-p/306484Angela Thigpen2008-01-03T08:00:00ZHigh-Speed Collisions
https://forums.symantec.com/t5/Security-Risks/High-Speed-Collisions/ba-p/306480
Recently, a post to the full-disclosure mailing list described an update to the well known MD5 collision problem. The authors - Marc Stevens, Arjen K. Lenstra, and Benne de Weger - provided a method wherebyWed, 02 Jan 2008 08:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/High-Speed-Collisions/ba-p/306480Peter Ferrie2008-01-02T08:00:00ZRun Installer, Run!
https://forums.symantec.com/t5/Security-Risks/Run-Installer-Run/ba-p/306478
Given the choice when browsing, I would download and save an executable file rather than directly run it. Free will has always been a hot topic in philosophy and when it comes to Web browserThu, 06 Dec 2007 08:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Run-Installer-Run/ba-p/306478Andrea Lelli2007-12-06T08:00:00ZBot Roast II Completed
https://forums.symantec.com/t5/Security-Risks/Bot-Roast-II-Completed/ba-p/306477
On November 29 the FBI announced the results of its second Bot Roast (see the FBI release). This is the FBI operation responsible for hunting out and attempting to bring to justice cyber criminals involvedThu, 29 Nov 2007 08:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Bot-Roast-II-Completed/ba-p/306477Brian Ewell2007-11-29T08:00:00ZYet Another Way to Evade NIDS (and Spread Malware)
https://forums.symantec.com/t5/Security-Risks/Yet-Another-Way-to-Evade-NIDS-and-Spread-Malware/ba-p/306476
Anonymous proxy services are online applications that enable users to surf the Web with enhanced privacy. These applications act as an SSL proxy between the user and the Web site to be visited, thus maskingMon, 05 Nov 2007 08:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Yet-Another-Way-to-Evade-NIDS-and-Spread-Malware/ba-p/306476Andrea DelMiglio2007-11-05T08:00:00ZWe pwn Your Desktop!
https://forums.symantec.com/t5/Security-Risks/We-pwn-Your-Desktop/ba-p/306474
A couple of weeks ago in this blog entry, we learned how misleading applications advertise themselves on the Web. Now we'll take a closer look at the other side of things to see how misleadingFri, 26 Oct 2007 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/We-pwn-Your-Desktop/ba-p/306474Andrea Lelli2007-10-26T07:00:00ZSkype Hunting
https://forums.symantec.com/t5/Security-Risks/Skype-Hunting/ba-p/306473
I was recently reminded of a childhood game my friends and I used to play in the forests near where I grew up. I’d stand near the edge of the tree line, holding a burlapThu, 18 Oct 2007 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Skype-Hunting/ba-p/306473Ben Nahorney2007-10-18T07:00:00ZWe will, we will – mislead you.
https://forums.symantec.com/t5/Security-Risks/We-will-we-will-mislead-you/ba-p/306472
In the ever-expanding world of misleading applications, you might wonder how each new application can stand out from the crowd and get itself noticed. Browsing the Web sites of some of these applications shows thatWed, 10 Oct 2007 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/We-will-we-will-mislead-you/ba-p/306472Kevin Savage2007-10-10T07:00:00ZAnother WEP bytes the dust
https://forums.symantec.com/t5/Security-Risks/Another-WEP-bytes-the-dust/ba-p/306471
Recently, I came across a publication by Tews, Weinmann and Pyshkin that describes an attack, called aircrack-twp, which can recover a 104-bit WEP key in less than 60 seconds. WEP (Wired Equivalent Privacy) is aWed, 26 Sep 2007 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Another-WEP-bytes-the-dust/ba-p/306471M.K. Low2007-09-26T07:00:00ZPatch bulletin email?
https://forums.symantec.com/t5/Security-Risks/Patch-bulletin-email/ba-p/306469
If you've recently received an email with an attachment or link, asking you to install a patch or an update from Microsoft, please beware as this is in all probability a hoax and could transferFri, 21 Sep 2007 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Patch-bulletin-email/ba-p/306469Vikram Thakur2007-09-21T07:00:00ZAttack of the clones?
https://forums.symantec.com/t5/Security-Risks/Attack-of-the-clones/ba-p/306467
The world of misleading applications (aka "rogue antispyware") never ceases to amaze with clever social engineering and tricks to con and persuade users into parting with their hard-earned cash. We have recently noticed a sharpWed, 12 Sep 2007 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Attack-of-the-clones/ba-p/306467Kevin Savage2007-09-12T07:00:00ZMisleading Applications: faking left, running right
https://forums.symantec.com/t5/Security-Risks/Misleading-Applications-faking-left-running-right/ba-p/306466
About a year ago we wrote about misleading applications and the business models behind them. Misleading applications, also commonly known as “rogue antispyware” applications, claim to detect and remove threats from your computer. What theyFri, 31 Aug 2007 07:00:00 GMThttps://forums.symantec.com/t5/Security-Risks/Misleading-Applications-faking-left-running-right/ba-p/306466Ben Nahorney2007-08-31T07:00:00Z
