Help Net Security newsletters: Daily and weekly news, cybersecurity jobs, open source – subscribe here!

Please turn on your JavaScript for this page to function normally.
Bogus “Your eBay funds are cleared” email leads to exploits

Following the email supposedly sent by an unsatisfied customer, eBay sellers are targeted by scammers once again. While the first email threatened with negative feedback, this …

Bogus wire rejection notices lead to exploit kit

Fake notices about a rejected wire transfer have been hitting inboxes around the world, trying to trick recipients to download the attached malicious file, Sophos warns. The …

Fake Facebook photo tag notification leads to malware

Beware of fake Facebook emails telling you that you’ve been tagged in a photo, as you could easily end up infected with malware. The emails do visually resemble messages …

The use of exploit kits changed spam runs

Spammers used to depend on email recipients to tie the noose around their own necks by inputing their personal and financial information in credible spoofs of legitimate …

Microsoft revokes 28 of its code-signing certificates

The long awaited patch for the CVE-2012-1889 vulnerability that has been heavily exploited in the wild and the exploit for which has even been included in the Blackhole …

Fake Amex warning leads to exploit kit

A fake American Express email trying to lure users into following a malicious link by making them think that someone has reset their password for their online account has …

Blackhole exploit kit got upgraded

Phoenix and Blackhole are the most popular and widely used exploit kits because their creators are always tinkering with them and pushing out update and improved attack …

Researchers break RSA SecurID 800 token in 13 minutes

An international team of scientists that goes by the name of “Team Prosecco” claims to have devised attacks that manage to extract the secret cryptographic key …

Bogus BancorpSouth emails lead to exploit kit

Fake security related notices ostensibly coming from BancorpSouth, a bank holding company operating mainly in the South of the United States, have been hitting users’ …

Compromised website serving “state-sponsored” 0-day exploit

The still unpatched Microsoft XML Core Services vulnerability (CVE-2012-1889) that allows attackers to gain the same user rights as the logged on user and execute malicious …

Fake Craigslist notifications lead to exploit kit

Emails purportedly sent by Craigslist have been hitting users’ inboxes and trying to get them to follow the offered link to a website hosting the Blackhole exploit kit, …

Olympic-themed spam emails carries malicious PDF

As the 2012 Olympic Games are speedily approaching, users should be aware of the fact that unsolicited Olympic-themed emails are rarely good news. The latest one of that kind …

Don't miss

Cybersecurity news