Week in review: Facebook credentials for sale, Fake AV issues and rising security threats

Here’s an overview of some of last week’s most interesting news, reviews and podcasts:

OWASP releases list of top 10 web application risks
OWASP has released an updated report packed with examples and details that explain these risks to software developers, managers, and anyone interested in the future of web security.

Network Solutions customers targeted by new hack attack
A huge number of sites were hacked with a malware script that injects an iframe into the site that points to corpadsinc.com, where Adobe PDF exploits are delivered to victims.

Trojan disguised as Google Chrome extension
The announcement that Google Chrome is now the third most widely used browser wasn’t lost on cybercriminals.

Real-life consequences for choosing convenience over security
Despite being aware of security threats, the risky online behavior of young adults can negatively affect their future career prospects and financial standings, while leaving them vulnerable to identity theft and fraud.

Google attack objective: Source code for the single sign-on system?
A recent revelation made public the fact that the attackers who targeted Google have managed to lay their hands on the source code of the company’s Gaia program.

Fake AV doorway pages in the spotlight
A closer look at the different tactics employed on the so-called doorway pages to lead the victims to download the fake AV variants.

Online protection tips
To help individuals of all ages stay safe online and protect themselves against identity theft and the repercussions of risky online behavior, RSA shares safe online behavior advice.

Google shines a light on government requests
Among all the search engines and ISPs around the world, Google has taken the first step towards transparency when they revealed their Government Requests tool.

Mozy online backup service
Mozy (mozy.com) is an online/cloud backup service for consumers and small businesses.

Rising security threats in 2010
In this podcast, Roel Schouwenberg, Senior Anti-Virus Researcher for Kaspersky Lab, talks about rising security threats in 2010.

Facebook profound privacy concerns
Facebook founder Mark Zuckerberg may believe that “the age of privacy is over,” but users of world’s most popular social networking site are actively concerned with protecting their privacy — especially from their employers.

McAfee update cripples thousands of PCs
The misidentification of a legitimate Windows file as a virus and its subsequent deletion was what made Windows XP running computers all over the world enter in a continuous circle of rebooting on Wednesday.

So, you bought a fake AV. What happens next?
A Sunbelt researcher has had the “fortune” of having a relative fall for the scam, which gave him the opportunity to take a peak at the process following the acquisition of the rogue solution.

Spying the spy: How to turn Trojans against criminals
“Researchers do vulnerability research on so many various application, why not to do it on this one?” asked himself Andrzej Dereszowski, founder and director of Signal 11

Zbot acquires file infection feature
A Zbot Trojan variant that has the ability to infect other files has been discovered recently.

Survey: 71% of companies monitor employee social media use
Over seventy percent of corporations have visibility into employee use of social media, according to a recent survey from nCircle.

Russian hacker offers 1.5m Facebook credentials for sale
If the credentials are legitimate and the accounts exist, that means that 1 in every 300 accounts is compromised. What will Facebook do if the hacker’s claim proves to be true?

Don't miss