Archive for September, 2010

From sci-fi to Stuxnet: exploding gas pipelines and the Farewell Dossier

In researching today’s SC Magazine Cybercrime Corner article “From sci-fi to Stuxnet: Exploding gas pipelines and the Farewell Dossier”, I came across this ‘Damn Interesting’ article which showcases the successful cyberwarfare compromise of a SCADA / pipeline control system nearly thirty years ago, an event which I had heard stories about in Navy circles but … Read More.

(No Ratings Yet)

 Loading ...

Who Wants a Cyberwar?

The short answer is the media wants a cyberwar. Cyberwar is a dark, sexy, mysterious headline that sells and so each time something nefarious happens on the internet that potentially involves two or more countries, security experts are besieged with the question “Is this cyberwar”?
Let’s look back to the 1989 book by Clifford Stoll called … Read More.

(No Ratings Yet)

 Loading ...

U.S. Arrests Zeus-Operating Cybercriminals

It looks like some of the recent success in taking down Zeus-using cybercriminals is coming to the United States. The FBI has recently announced that it has charged as many as 60 people and has arrested 10 as part of a global cyberfraud scam. Summaries of the incident can be found here, here, and here.
Zeus [...]

(No Ratings Yet)

 Loading ...

Images are not always what they seem

[Josep Albors of ESET Ontinet.com tells us about a file attachment that was neither as boring nor as harmless as it seemed. Errors in interpretation or translation from the original blog are down to DH]
When we speak of files that can infect our system, most of us still think only in terms of executable files. Unfortunately, sometimes … Read More.

(No Ratings Yet)

 Loading ...

An Interesting Bypass

I was analyzing a piece of malware the other day and came across a unique method to place malware locally on a host without using the network to transfer it. This is something that is so simple in design, and yet so effective in its delivery. Let’s take a closer look.
To get the malicious file, [...]

(No Ratings Yet)

 Loading ...

What’s the Difference Between Facebook Security and Bigfoot?

The difference is that there have been reported sightings of Bigfoot.
The keynote address at the Virus Bulletin conference today was given by Nick Bilogorskiy, a member of the security team at Facebook. To start with, I have known Nick for several years and I can tell you that he is very intelligent and a terrific … Read More.

(No Ratings Yet)

 Loading ...

Application-Based Control: the Future of Botnets?

During the last six years, botnets have become one of the biggest threats to security professionals, businesses, and consumers. We at McAfee Labs have just released more information about how cybercriminals can use common social networks and common web applications, such as Twitter and XMPP-enabled applications like Google Talk, to take over a user’s computer.
As [...]

(No Ratings Yet)

 Loading ...

Yet more Stuxnet

Just in case you haven’t heard enough from me on the topic of Stuxnet, the Security Week article I mentioned in a previous blog is now up at http://www.securityweek.com/stuxnet-sux-or-stuxnet-success-story.

David Harley CITP FBCS CISSP
ESET Senior Research Fellow

(No Ratings Yet)

 Loading ...

New Report: ‘Reputation: The Foundation of Effective Threat Protection’

On April 30 www.multimedia***.com, a newly registered website that allowed users to post, search, and view amateur videos, came online. The site was part of a group of 160 new domain registrations, and was identified by the network of sensors and data feeds that contribute to McAfee Global Threat Intelligence. Seemingly legitimate, many of these [...]

(No Ratings Yet)

 Loading ...

Global Web 2.0 Report Released

Today, McAfee released a report based on a survey of more than 1,000 decision-makers about the use of Web 2.0 technology for business. The report reveals some interesting results (for example, who would have thought the United States is among the countries with the lowest adoption rate, and Germany is the country with the most companies [...]

(No Ratings Yet)

 Loading ...