(No Ratings Yet)
Loading ...Fortinet lists August’s most dangerous online threats
Two viruses disguised as security software AntiVirus XP 2008 and XP Security Center have topped Fortinet’s top 10 list of August’s most reported online threats.
The Sunnyvale, Calif.-based security vendor said Malware W32/Multidr.JD!tr was especially dangerous with its one-day attack in late August, while the HTML/Agent.HFZ!phish attack wreaked havoc in users’ in-boxes as a disguised UPS e-mail. The two viruses placed at the top of Fortinet’s threat list with nearly 20 per cent of the month’s reported activities.
“Cyber criminals are clearly trying to take advantage of users’ security concerns with an intense campaign for rogue security applications this past month,” Derek Manky, security researcher at Fortinet, said in a release. “This is a popular, emerging area that provides a new social engineering approach — black hats posing as white hats.”
Fortinet also said the Netsky family of malware ranked among the top malware families currently spreading throughout the Web with 9.5 per cent of reported viruses.
Top Ten Individual Threats
|
Rank |
Threat Name |
Threat Type |
% of Detections |
Top 100 Shift |
|
1 |
W32/Multidr.JD!tr |
Trojan |
10.02 |
new |
|
2 |
HTML/Agent.HFZ!phish |
Trojan |
8.15 |
new |
|
3 |
W32/Netsky!similar |
Mass mailer |
5.95 |
-2 |
|
4 |
JS/Agent.WMA!tr.dldr |
Trojan |
5.9 |
new |
|
5 |
W32/Virut.A |
Virus |
4.65 |
-3 |
|
6 |
JS/Iframe.DR |
Trojan |
4.19 |
+1 |
|
7 |
W32/Agent.KG!tr |
Trojan |
3.36 |
new |
|
8 |
HTML/Iframe.DN!tr.dldr |
Trojan |
2.59 |
-3 |
|
9 |
HTML/Iframe_CID!exploit |
Exploit |
2.12 |
+17 |
|
10 |
JW32/Agent.HKR!tr |
Trojan |
1.98 |
new |
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(No Ratings Yet) Loading ...SecTor 2008 – Security Education Conference - Unique Training Coming to Canada
Ok. You likely noticed that I blog mostly about the latest happenings in security. It fascinates me, and frankly I think it’s very important. Canada has a rather limited number of security events and most of the content we get here is based out of the United States. Guess what? Canada is different. We have a different culture and different laws, but we’re attached to the same Internet as the rest of the globe. That means what we really need is Canadian perspective on new and developing issues.
With this in mind, I’m involved in a group bringing what we feel is a uniquely Canadian yet world class security event to Toronto.
SecTor Training – This is brand new this year. We’ve brought the best of the best from literally around the world. Need depth training on wireless and Bluetooth security? We have Dino coming from Telespace in South Africa. Interested in penetration testing? You’ll need to learn Metasploit, and who better to learn it from than the guy that started it all? HD Moore will be teaching “PowerSploiting” a course no pentester should miss. You think you already know security? You’re probably too technical. Johnny Long, “godfather of google hacking” and the author of “No Tech Hacking” is teaching his course by the same name (he has really interested low-tech techniques). And finally, who better to teach the latest hacking techniques than the SANS Institute? They’re coming to do their “Cutting Edge Hacking Techniques” course.
I’m very excited about the training, perhaps even a little star struck with who’s teaching it.
SecTor Conference – What can I say; it’s going to be amazing. We’re currently buried in speaking proposals, many of which are truly bleeding edge. You’ll have to wait until September to see the final round of speakers. But that’s what makes this conference great – we accept submissions right up til very close to the event so attendees are presented with only the newest and freshest content.
Ps. We’re still accepting speaking submissions til August 31st. So if you know someone with new research, or something you think the Canadian security professional needs to hear about, please send them to the CFP link.
pps. If you want to attend, you’ll save $250 by registering by August 31.
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(2 votes, average: 6.5 out of 10) Loading ...BlackHat USA 2008 - Day 2 Review
Today was the second and final day of the BlackHat USA Briefings. A lot of great content was presented today. Much like yesterday we’ve included some highlevel comments on the various presentations that Tadd and I attended. We will be attending Defcon over the weekend and tying that into one final posting next week. What follows is our summary.
Read the rest of this entry »
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(2 votes, average: 10 out of 10) Loading ...BlackHat USA 2008 - Day 1 Review
Welcome to our first Security Insider posting from the BlackHat conference here in Las Vegas. My colleague Tadd Axon and I will be doing our best over the next few days to post some highlights of the conference. For those of you not familiar with the event, BlackHat takes a deep look at emerging threats and security research. If you want a good close look into the future, this is the place to be.
For the purpose of these posts in the next few days, we’ll post some high-level summaries of the talks we attend. This isn’t anything close to a full list of everything that’s going on here, just what we’ve personally attended. For a more complete wrap up of both the BlackHat and Defcon events, be sure to attend this month’s TASK event. At the TASK event, all the various TASK members here in Vegas this week will be sharing highlights in more detail. As always TASK is free, check it out. You will also be able to catch some of these speakers when they come to SecTor this year.
So today represents the first day of the conference, and therefore the day that it’s easiest to wake up early for. Tonight many vendors will host many parties making tomorrow a much more difficult day to focus. Here is what we attended.
Read the rest of this entry »
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(No Ratings Yet) Loading ...Hacking for Good
Is there such a thing as a good hacker? Isn’t “ethical hacking” an oxymoron? Let me challenge your beliefs and the prevailing media message. Hackers are not evil; in fact, they generally want things to be safer and better for all. At this point, you’re probably ready to either label me as a lunatic, or give me a lesson about “hacker” vs. “cracker”. Let’s skip the historic definitions. The facts are simple. Public perception is that a hacker is evil, but within the hacker community, it’s a badge worn with honour. Hackers don’t ask what something does; they ask, “How does it do it”? Seeing hackers in a negative light just for seeking that information is unfair. They may have the knowledge to be harmful, but the current reputation associated with a “hacker” is about the same as labeling all martial artists violent and evil. Sure they have combat training, but most martial artists aren’t criminals making stealthy kills for fun or profit.
Read the rest of this entry »
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(3 votes, average: 10 out of 10) Loading ...CanSecWest PWN to OWN 2008
So this is a rather interesting story, which beautifully lends itself to sensational press and great article titles like “MacBook Air hacked in two minutes” and “Vista falls, Linux holds strong”. This frankly, is exactly why TippingPoint and CanSecWest sponsor and host the contest. The very noble “we took another zero-day vulnerability off the streets” sounds like as good a reason as any to have some hacker fun. Hey, I’ll buy it.
Here’s the problem, few people bother to understand any detail of what happened. They just read the “Ubuntu wins” and figure it’s safe to assume that’s the most secure operating system choice, or that OSX fell first, so it must be the least secure.
Let’s look at what actually happened. Read the rest of this entry »
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(2 votes, average: 8.5 out of 10) Loading ...ShmooCon 4
Last weekend was the 4th annual Shmoocon. Tickets for the event sell out very quickly as they limit attendance. This year, 1200 self-proclaimed hackers came to the event that promised “less moose than ever”. Far from the formality of a regular conference, Shmoocon runs talks by researchers presenting new findings and new tools. Attendees are encouraged to throw “Shmoo-balls” (soft stress balls) at any speaker they disagree with, spawning spirited debate and keeping everyone honest. It’s all done in the best of humour, and results in a gathering of some of the smartest minds in the business working on very difficult problems. There is a true connection and sense of camaraderie among everyone I meet. Great event. Read the rest of this entry »
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(3 votes, average: 7 out of 10) Loading ...Payment card security standards are a joke
The user experience doesn’t get much better than credit or debit cards. You hand over the card, you swipe, you sign or punch in a PIN, and you go. Compared to a lot of other transactions we make through technology, that’s pretty fast. Most people outside the industry probably have no idea the snail’s crawl at which the industry behind those cards is moving to protect them.
Read the rest of this entry »
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(1 votes, average: 10 out of 10) Loading ...The Storm that never ends
We like to imagine that hackers are smart, but it is their collective incompetence that has allowed the IT industry to survive their attacks as long as they have.
Viruses may be unleashed, worms may spread, but usually the McAfees and Symantecs of the world are quick enough to help isolate and deal with such malware in a manner of weeks, if not days. This was the case with Sasser, Nimda, and even Code Red. Rare is the malware that acts with the consistent, determined approach of a stealth marketing campaign. This, however, has been the hallmark of Storm, a quietly professional example of online organized crime at its best. And scariest.
Read the rest of this entry »
Add to: del.icio.us | Digg IT | Furl | Google | magnolia | StumbleIT | Wink | Yahoo! Technorati
(2 votes, average: 10 out of 10) Loading ...Exposing users’ data: The tough love approach to security
So our colleagues at Compter Sweden are calling a “freelance security consultant” somehow finds user names and passwords for 100 government e-mail accounts from around the world. If you find this stuff online you can compromise those accounts.
Read the rest of this entry »
