Latest Posts | Page 140


Video game development company Ubisoft posted an article earlier today on their support site that one of their systems were compromised and gamers usernames, email addresses and encrypted passwords were stolen. There's also a blog post with some FAQ's and more info here. Ubisoft is known for such popular video gaming franchises as the Assassin's Creed and Splinter Cell series. They claim that they do not store any transaction, credit card or other personal payment information in their systems, which as our favorite home, cooking and decorating... [Read More]
by RSS Richard Henderson  |  Jul 30, 2012  |  Filed in: Industry Trends
FortiGuard Labs is currently investigating and analyzing samples, but we can report that South Korea's Internet Security Agency has upgraded its "cyber alarm" level to 3 (3 means "caution") due to attacks on various government entities. Other groups may have been targeted as well including media organizations. We will report on this further when we have taken a look at some of the samples that have come in. [Read More]
by RSS Richard Henderson  |  Jul 30, 2012  |  Filed in: Industry Trends
Tags:
Many security and technology writers have had similar thoughts as this author has in regards to Yahoo's plan to recycle inactive email addresses (my previous post is here if you'd like to take a look). In response to Mat Honan's of Wired query to Yahoo for more comment, Yahoo made the following statement: "Our goal with reclaiming inactive Yahoo! IDs is to free-up desirable namespace for our users. We're committed and confident in our ability to do this in a way that's safe, secure and protects our users' data. It's important to note that the... [Read More]
by RSS Richard Henderson  |  Jul 30, 2012  |  Filed in: Industry Trends
Yahoo announced last week that they're going to release what may be hundreds of thousands of inactive or unused @yahoo.com email addresses starting next month. While on the surface this seems like a good idea, it's really not. Here's a personal story that shows what can happen when a company decides to recycle unused email addresses: I had a friend years ago who wanted to sell some things on eBay, but was absolutely flummoxed as to what to do. So I walked her through the whole process. When it came to accepting payments, she asked if she could... [Read More]
by RSS Richard Henderson  |  Jul 30, 2012  |  Filed in: Industry Trends
If you have an email account, it's pretty much guaranteed that you've seen a scam email... or worse, fallen prey to one. There is a big percentage of emails in cyberspace that belongs to the scam category. Emails that asks you to fill-out a survey form for a chance to win a vacation of a lifetime. Perhaps you've received an email that asks you about your financial information because they want to give you a big inheritance. Maybe it's an email that wants to let you in on an online deal that seems too good to be true. But scamming is not confined... [Read More]
by RSS Raul Alvarez  |  Jul 30, 2012  |  Filed in: Industry Trends
While an invaluable communication tool, email remains one of the most effective and reliable threat vectors around. The reason? It still works. It's no secret email is the gateway to sensitive customer information, crucial databases and other valuable data. Attacks that leverage email as the initial point of entry provide lucrative returns for their operators. The email security market has little room to be complacent. Email security continues to evolve to keep up with increasingly sophisticated, multi-faceted threats and counteract stealth malware... [Read More]
by RSS Stefanie Hoffman  |  Jul 30, 2012  |  Filed in: Industry Trends
Oracle published an announcement today that a large update to their Java platform this coming Tuesday. Forty vulnerabilities are set to be patched with Tuesday's patch, of which almost all of them can be exploited remotely without a username or password. Oracle said that "[d]ue to the threat posed by a successful attack, [we] strongly recommend that customers apply Critical Patch Update fixes as soon as possible." This patch affects: - JDK and JRE 7 Update 21 and earlier - JDK and JRE 6 Update 45 and earlier - JDK and JRE 5.0 Update 45 and earlier -... [Read More]
by RSS Richard Henderson  |  Jul 30, 2012  |  Filed in: Industry Trends
Tags: oracle java patch
Microsoft published their monthly advanced notification for critical and important patches today, and there are five patches: Rated Critical - affects Windows and Internet Explorer: Can allow remote code to be executed. Patch requires a reboot. Rated Important - affects Windows: May allow data to leave the vulnerable system. Patch requires a reboot. Rated Important - affects Windows: Exploit may create a Denial of Service (DoS). Patch requires a reboot. Rated Important - affects Windows: May allow privilege elevation. Patch requires a reboot. Rated... [Read More]
by RSS Richard Henderson  |  Jul 30, 2012  |  Filed in: Industry Trends
Last week I was getting caught up on the usual deluge of emails, and one caught my eye. I'll admit, at first glance, I almost clicked without thinking. Take a look: Sure looks like your typical Amazon receipt email. Everything looks legit at first glance. Of course, I certainly didn't recall purchasing a new TV, let alone shipping it to someone I don't know. Perhaps someone gained access to an Amazon account and tried to order something? Odd... I don't remember ever using my work email address to shop on Amazon? I was ready to click the Order... [Read More]
by RSS Richard Henderson  |  Jul 30, 2012  |  Filed in: Industry Trends
Tags:
Late last week, Microsoft's Digital Crimes Unit, working with the FBI and the U.S. courts, took a huge chunk out of the capabilities of the Citadel botnet. Citadel is a ZeuS variant that is responsible for infecting what is believed to be millions of computers across the globe in the hopes of stealing financial information through key logging and form grabbing and using that information to steal money from the bank accounts of infected victims. This latest takedown, known as Operation b54, disrupted the operation of over 1,400 different Citadel... [Read More]
by RSS Richard Henderson  |  Jul 30, 2012  |  Filed in: Industry Trends