Computer Security Updates Week 3 of Nov 2012

No new deadly threats recoded since last update (Computer Security Updates Week 2 of Nov 2012). Nothing really threatening, merely pain-in-the-asses.

Deadliest threats for 2012 remains as follows:
  • Koobface
  • OSX.FalshBack.K
  • Flamer
  • Android.Opfake
  • Gauss
  • MiniFlame
  • Malnet

Facebook Black Makes Social Networkers See Red

November 16, 2012 –A scam saying that Facebook users can change their profile pages to have a black, rather than the trademark blue background is spreading widely on the popular social network. This scam is being spread by images on newsfeeds and by event invitations that appear to be sent by users’ friends.

All these will lead one to online surveys - it turned out to be a scam for making illegal money from selling your information to surveyors.

More details.

Thanksgiving & Black Friday On Spammers Eye

Symantec Security Response recently observed spam messages about Thanksgiving and Black Friday encouraging users to take advantage of E-cards, Clearance of the cars & trucks, products bidding to get the best deals and replica watches. Clicking the URL automatically redirects the user to a fake offer website.

The domains used in the attack is registered for one year and its servers were located in United States of America.

More details.

Sophos Sets New Standard for Small Business Security

November 14, 2012 –In response to increasing market demand for small business security solutions, and as part of its compete security strategy, Sophos today announced the release of a comprehensive new unified threat management appliance and software package exclusively for small businesses. The Sophos UTM 100 appliance with BasicGuard sets a new standard for feature-rich small business security solutions—offering network, email, web and wireless protection together.

BasicGuard includes many of the capabilities typically reserved for enterprise solutions, such as:
  • Web Application Control features
  • Network Firewall & IPS
  • Remote Access and VPN
  • Wireless Protection
  • Web antivirus and URL filter
  • Email antivirus and anti-spam capabilities
More details.

23% of users are running old or outdated web browsers, creating huge gaps in online security

November 14, 2012 - Web browsers are the most widely used pieces of computer software, installed on nearly every computer. The majority of current cyber attacks come from the web, utilizing vulnerabilities in the web browser applications themselves, or outdated plug-ins within the browser. Therefore, it is extremely important for consumers to keep their choice of web browser up-to-date, with the latest security fixes and new protection features. Using anonymous data collected from the cloud-based Kaspersky Security Network, Kaspersky Lab analyzed web browser usage patterns of its millions of customers around the world, and made some alarming discoveries.

Main Findings:
  • 23% of users are running old or outdated web browsers, creating huge gaps in online security: 14.5% have the previous version, but 8.5% still use obsolete versions.
  • 77% of Kaspersky Lab’s customers use up-to-date browsers (the latest stable or beta versions).
  • When a new version of a browser is released, it takes more than a month for most users to make the upgrade. Cybercriminals can move to exploit known browser vulnerabilities within hours.

Kaspersky Lab offers an efficient solution which makes it possible to discover and allow updates of outdated or vulnerable software, in full compliance with security policies.

'Tis the season to be spammed?

Symantec Security Response recently observed spammers using a legitimate look and feel in their email headers and flash animations that include a message to open the "Christmas" attachment. After opening the attachment, the malicious code is downloaded on to the user's system. Symantec detects the attachment as W32/AutoRun.BBC!worm.

As expected, spammers are also promoting fake offers by targeting specific categories, including Products, Health, Internet, Finances and Replicas. Most of these spam messages encourage users to buy the products early to take advantage of the bogus offers. Clicking the URL directs the user to a fake product offer site, for example, a Web page selling replica watches, fake pharmaceuticals, or other products.

More details.

Facebook shuts down Albania Pirate Group, after stolen passwords shared

Albania Pirate Group is a Facebook page which 600+ fans and members of the Albania Pirate Group were sharing RDP (Windows Remote Desktop) logins, giving hackers unauthorised access to computer systems, and what appeared to be compromised banking details.

A gentleman who works at a Yorkshire-based security company, contacted Sophos last week to tell us about a particular Facebook page they had stumbled across belonging to the Albania Pirate Group.

Albania Pirate Group has a similar
logo to the Kosova Hacker's Group

Sophos contacted Facebook, and within the hour the social network's security team had closed down the page.

Said Graham Cluley, senior technology consultant at Sophos, “Remember that pages and groups on Facebook are not pre-vetted, and anyone can create a page with ease and use it for illegal purposes. If you stumble across a Facebook page that you believe is involved in law-breaking or breaches the terms and conditions of the site, you should report it to Facebook.

More details.


Anonymous said…

I am really loving the theme/design of your blog. Do you ever run into any internet browser compatibility issues? A handful of my blog readers have complained about my site not working correctly in Explorer but looks great in Chrome. Do you have any solutions to help fix this problem?
Brandon Teoh said…
Not that I know.

I am using the default theme from blogspot.

What is your URL ?