Zeljka Zorz
Ambitious malware variant signed with fake digital signature
New Zeus variants and spam campaigns that try to spread them far and wide are almost a daily occurrence, but once in a while some get more attention by security researchers …
A lesson to learn from the HBGary breach
As you might have already read, the HBGary and rootkit.com breach by Anonymous was not executed by using obscure techniques or unknown vulnerabilities – quite the …
Facebook users targeted by unimaginative phishing campaign
A phishing campaign targeting Facebook users is currently under way and lures users with messages coming from compromised accounts seemingly containing links to various …
Canadian government networks breached by Chinese hackers?
When it comes to covert cyber attacks on government networks, it somehow seems that they can always be traced back to servers in China. It is always acknowledged that that …
Moderately critical MS Windows vulnerability revealed
Information about a critical Microsoft Windows SMB browser election request parsing vulnerability turned up two days ago on the Full Disclosure mailing list and further …
A Trojan-Clicker for Android spotted
A new Android Trojan – dubbed HongTouTou or ADRD – has been spotted targeting Chinese-speaking users. Repackaged with popular Android applications and games, it is …
Sun Java by far the most vulnerable plug-in
Wondering how secure your browser is? Today at the RSA Conference in San Francisco, Qualys CTO Wolfgang Kandek presented their research which clearly shows that browser …
Fake tax payment rejection notice delivers Zeus variant
The latest IRS-themed spam campaign carries a deadly attachment – a variant of the infamous Zeus Trojan, warns Appriver. The e-mail, purportedly coming from the Internal …
Company wants to bundle spying app in legitimate Android game
How can one deliver spyware to a large number of unsuspecting users? The right answer to that question is – unfortunately – not a unique one, but among the methods …
HBGary e-mails are a treasure trove for social engineers
The recent publication of the second batch of corporate e-mails exchanged between HBGary and HBGary Federal executives and various contacts in US intelligence, military and …
Two BBC sites serving malware via injected iFrame
A piece of malware detected by only 21 percent of the anti-virus solutions used by VirusTotal is currently being pushed onto unsuspecting visitors of the BBC 6 Music and BBC …
“Reporter had a stroke on live TV” Facebook scam
A Facebook survey scam currently targeting the social network’s users tries to lure them in by promising to deliver a video of a CBS newsreader that has supposedly …
Featured news
Resources
Don't miss
- Attackers exploited old flaws to breach SonicWall SMA appliances (CVE-2024-38475, CVE-2023-44221)
- New Microsoft accounts will be “passwordless by default”
- Why SMEs can no longer afford to ignore cyber risk
- Preparing for the next wave of machine identity growth
- Hottest cybersecurity open-source tools of the month: April 2025