VB Migration

Tag: social engineering

  • Storm mails bring spoof World War 3 news

    US-Iran war story used as hook for malware barrage. The Storm botnet has been spamming in force again in the past week, with its expected run targeting 4th of July celebrations in the US swiftly followed by a second campaign carrying news of a fictitious invasion of Iran by US forces. The mails have hyperbolic…

  • Malware going local

    Report sees trend toward greater localisation of threats. McAfee ‘s latest Sage report focuses on increased localisation in malware, with spam, phishing and malcode all showing great improvements in their use of local languages and targeting of regional resources and computing methods. The report carries stories from various regions around the globe, detailing the popularity…

  • Vish implanted in phishing warning

    Doctored bank alert includes phony phone number. A spammed-out email has been spotted posing as a phishing warning from US credit union Kessler Federal , with some very sensible advice for customers including genuine contact details for reporting phishing attempts and assertions that no requests for login details will ever be sent by email. In…

  • Storm Valentines run under way

    Seasonal spam and malware barrage gets going. The expected run of ‘Storm’ spams, pushing links to their latest line of malware disguised as Valentine’s messages, has begun, with many reports of spams appearing all over the world. The Storm botnet controllers have got their timing back on track, after a previous batch of Valentine messages…

  • Complex attack targets Better Business Bureau

    Sophisticated scam uses personalised mails, real site redirects. A highly sophisticated email phishing scam is using a redirection flaw in the website of the Better Business Bureau (BBB) to lead victims to install spyware. The emails making contact with potential victims are highly targeted, with personalised information and links to the genuine BBB site to…

  • Google links scam Avira users

    Suspect firm advertising via Google found to be specialising in hijacking security brands. Google searches for Avira and the company’s anti-malware product Antivir , a free version of which is available for personal use in the German home market and elsewhere, are producing sponsored links to a subscription-based software download site specialising in providing ‘free’…

  • Rogue anti-malware targets Mac users

    Scam expands horizons to draw in new market of victims. The rogue anti-malware scam, in which fake anti-spyware and anti-virus products are inveigled into victims’ machines, reporting spurious infections and demanding licensing fees to remove them, has branched out to target users of Apple Macintosh systems. According to a report from F-Secure , the latest…

  • Usual fare for holiday season

    Storm ecards and social site spyware mark unsurprising year end. With large portions of the globe celebrating various festivals over the past few weeks, an expected upsurge in malware attacks has been seen, including the now inevitable wave of emails from the ‘Storm’ worm attack (which targeted most important festivals in the past year), supplemented…

  • Phished Salesforce.com data used for phishing attacks

    Password leak leads to major CRM customer data haul. A security breach at customer relationship management (CRM) firm Salesforce.com has led to a large-scale leak of confidential user data, which has been put to use for targeted phishing attack posing as Salesforce invoices. Salesforce offer a software-as-service platform for CRM, covering sales and marketing information…

  • LinkedIn providing open redirect

    Lax website setup could be used to trick the unwary. Popular professional networking system LinkedIn has been allowing free redirects from its website, providing spammers and phishers with a way of providing links which appear to lead to the contact system but instead take victims to malicious or deceptive sites. The practice of using genuine…