- Password management for non-obvious accounts: A continuation on: Time to check your DNS settings?
After 7 March … http://t.co/23JAjLhJ # - White House Pushes for New Privacy Codes of Conduct: Business participation in the privacy codes will be volunta… http://t.co/VN34sTTD #
- Over 75 Million Unique Malware Samples Identified in Q4 2011: Security solutions provider McAfee released its Fo… http://t.co/0cnvGYN2 #
- Virtualized security routers for cloud security: Halon Security announced a next-generation firewall and securit… http://t.co/FzzrJr65 #
- Unpatched Adobe Reader Flaws Exploited by PDF Malware Creators: A remote code execution vulnerability that exist… http://t.co/Ref5UiwT #
- IMP or CCDP? Who cares, it's still storing your data: The Communications Capabilities Development Programme is t… http://t.co/KUS6tKpb #
- Juniper Networks acquires Mykonos Software: Juniper Networks has acquired Mykonos Software, a provider of Intrus… http://t.co/timirlIt #
- Crooks May Use GPS Spoofers for Financial Gain: Most Internet users are aware of the terms spoofing, especially … http://t.co/ungAWxMh #
- New Zeus/SpyEye botnet does away with command-and-control servers: Increasing use of UDP to avoid communication … http://t.co/BD52QNON #
- Juniper buys Mykonos to beat off web app attacks: The art of deception Juniper has bought web application securi… http://t.co/hlrUHAUb #
- Beware of "Click Speed" Tests on Facebook: It seems that scammers are not content with the fact that each Facebo… http://t.co/gfL5BEg7 #
- China Closes 8,000 Sites in Anti-Black Market Campaign: The Chinese Ministry of Public Security revealed that au… http://t.co/mPknjWo4 #
- Facebook scams racing against the clock: Facebook scammers have lately initiated a number of scams that use an u… http://t.co/NTF6EznI #
- Official Stephenie Meyer Site was Serving Malware: Twilight fans who normally frequent the official website of S… http://t.co/9DCUdGca #
- International Monetary Fund and Military Site Defaced by Anonymous: Anonymous Romania continues its campaign aga… http://t.co/UfBjfZws #
- Pastry lovers served with ransomware via exploit kit: French cake and pastry lovers have been targeted by cyber … http://t.co/cTumVDgC #
- Twilight Author's Site Serves Zombies Instead of Vampires: The official website of Stephenie Meyer (stepheniemey… http://t.co/6q4Az5Jn #
- White House Lays Out Privacy Agenda: The Obama administration today unveiled a new consumer-privacy plan designe… http://t.co/h8BDxOKP #
- Build your own malware monster: Like lego? Here's a challenge for you. http://t.co/RDr7VhSf #
- YouPorn users exposed through configuration flaw: A directory of log files that was accessible without authorisa… http://t.co/dERd55I2 #
- Yellow Pages Site Hacked by Mad HackerZ (Exclusive): A group of Lebanese hackers called Mad HackerZ Team breache… http://t.co/VK4jXRoO #
- Adversary ROI: A Practical Session that Will Change Your Org’s Security Spending: Friends David Etue and Joshua … http://t.co/iJhQfOpP #
- Wall Street Journal’s Facebook Page Spammed by Anonymous: After The Wall Street Journal published an article in … http://t.co/3O4ncSPN #
- Malware: 'Scan from a HP OfficeJet' attack spammed out widely: A malware attack cloaks its true intentions by po… http://t.co/aGvm3UrM #
- Data Breach Trends in the Financial Sector: Financial institutions are, it seems, doing a better job at protecti… http://t.co/M6oVj0sO #
- DNSChanger Malware: In November 2011, U.S. Federal prosecutors announced Operation Ghost Click, an investigation… http://t.co/OwRS8WGB #
- Old-School Attack Nabs Joint UK-French Drone Plans: Forget about data stealing trojans. Unidentified thieves got… http://t.co/6LmsrKtb #
- Feds apply for DNSChanger safety net extension: Apply for extension before millions of infected PCs are disconne… http://t.co/4EqDwfqA #
Archive for February 23rd, 2012
Twitter report: Daily Updates for 2012-02-28
Thursday, February 23rd, 2012DNSChanger Malware
Thursday, February 23rd, 2012UPDATE: On March 5, 2012, a federal judge agreed to allow more time for organizations and individuals to clean systems of the DNSChanger malware and extended the deadline for shutting off servers that had been keeping infected computers connected to the internet.
Although the new deadline is July 9, 2012, US-CERT strongly recommends that organizations and individuals who have not verified that their systems are free of the DNSChanger malware do so as soon as possible. Please refer to the previous entry below for background information and resources on detection and removal of the malware.
-----------------------------
In November 2011, U.S. Federal prosecutors announced Operation Ghost Click, an investigation that resulted in the arrests of a ring of seven people who allegedly infected millions of computers with DNSChanger malware.
The malware may prevent users' anti-virus software from functioning properly and hijack the domain name system (DNS) on infected systems. Systems affected by DNS hijacking may send Internet requests to a rogue DNS server rather than a legitimate one.
To prevent millions of Internet users infected with the DNSChanger malware from losing Internet connectivity when the members of the ring where arrested, the FBI replaced rogue DNS servers with clean servers.
However, the court order allowing the FBI to provide the clean servers is set to expire on March 8, 2012. Computers that are infected with the DNSChanger malware may lose Internet connectivity when these FBI servers are taken offline.
US-CERT encourages users and administrators to utilize the FBI's rogue DNS detection tool to ensure their systems are not infected with the DNSChanger malware. Computers testing positive for infection of the DNSChanger malware will need to be cleaned of the malware to ensure continued Internet connectivity.
Users and administrators are encouraged to implement the following preventative measures to protect themselves from malware campaigns:
- Maintain up-to-date antivirus software.
- Do not follow unsolicited web links in email messages.
- Configure your web browser as described in the Securing Your Web Browser document.
- Use caution when opening email attachments. Refer to the Using Caution with Email Attachments Cyber Security Tip for more information on safely handling email attachments.
- Implement best security practices as described in the Ten Ways to Improve the Security of a New Computer (pdf) document.
This product is provided subject to the Notification as indicated here: http://www.us-cert.gov/legal.html#notify
DNSChanger Malware
Thursday, February 23rd, 2012
UPDATE: On March 5, 2012, a federal judge agreed to allow more time for organizations and individuals to clean systems of the DNSChanger malware and extended the deadline for shutting off servers that had been keeping infected computers connected to the internet.
Although the new deadline is July 9, 2012, US-CERT strongly recommends that organizations and individuals who have not verified that their systems are free of the DNSChanger malware do so as soon as possible. Please refer to the previous entry below for background information and resources on detection and removal of the malware.
-----------------------------
In November 2011, U.S. Federal prosecutors announced Operation Ghost Click, an investigation that resulted in the arrests of a ring of seven people who allegedly infected millions of computers with DNSChanger malware.
The malware may prevent users' anti-virus software from functioning properly and hijack the domain name system (DNS) on infected systems. Systems affected by DNS hijacking may send Internet requests to a rogue DNS server rather than a legitimate one.
To prevent millions of Internet users infected with the DNSChanger malware from losing Internet connectivity when the members of the ring where arrested, the FBI replaced rogue DNS servers with clean servers.
However, the court order allowing the FBI to provide the clean servers is set to expire on March 8, 2012. Computers that are infected with the DNSChanger malware may lose Internet connectivity when these FBI servers are taken offline.
US-CERT encourages users and administrators to utilize the FBI's rogue DNS detection tool to ensure their systems are not infected with the DNSChanger malware. Computers testing positive for infection of the DNSChanger malware will need to be cleaned of the malware to ensure continued Internet connectivity.
Users and administrators are encouraged to implement the following preventative measures to protect themselves from malware campaigns:
Although the new deadline is July 9, 2012, US-CERT strongly recommends that organizations and individuals who have not verified that their systems are free of the DNSChanger malware do so as soon as possible. Please refer to the previous entry below for background information and resources on detection and removal of the malware.
-----------------------------
In November 2011, U.S. Federal prosecutors announced Operation Ghost Click, an investigation that resulted in the arrests of a ring of seven people who allegedly infected millions of computers with DNSChanger malware.
The malware may prevent users' anti-virus software from functioning properly and hijack the domain name system (DNS) on infected systems. Systems affected by DNS hijacking may send Internet requests to a rogue DNS server rather than a legitimate one.
To prevent millions of Internet users infected with the DNSChanger malware from losing Internet connectivity when the members of the ring where arrested, the FBI replaced rogue DNS servers with clean servers.
However, the court order allowing the FBI to provide the clean servers is set to expire on March 8, 2012. Computers that are infected with the DNSChanger malware may lose Internet connectivity when these FBI servers are taken offline.
US-CERT encourages users and administrators to utilize the FBI's rogue DNS detection tool to ensure their systems are not infected with the DNSChanger malware. Computers testing positive for infection of the DNSChanger malware will need to be cleaned of the malware to ensure continued Internet connectivity.
Users and administrators are encouraged to implement the following preventative measures to protect themselves from malware campaigns:
- Maintain up-to-date antivirus software.
- Do not follow unsolicited web links in email messages.
- Configure your web browser as described in the Securing Your Web Browser document.
- Use caution when opening email attachments. Refer to the Using Caution with Email Attachments Cyber Security Tip for more information on safely handling email attachments.
- Implement best security practices as described in the Ten Ways to Improve the Security of a New Computer (pdf) document.
Malware: ‘Scan from a HP OfficeJet’ attack spammed out widely
Thursday, February 23rd, 2012
A malware attack cloaks its true intentions by posing as a emailed scan from a printer.
Would your users click on the attachment without thinking twice?
Data Breach Trends in the Financial Sector
Thursday, February 23rd, 2012
Adversary ROI: A Practical Session that Will Change Your Org’s Security Spending
Thursday, February 23rd, 2012
Wall Street Journal’s Facebook Page Spammed by Anonymous
Thursday, February 23rd, 2012
After The Wall Street Journal published an article in which the National Security Agency (NSA) expressed its concerns regarding the potential threat posed by Anonymous to the United States’ national power grid, the hackers and their supporters started spamming the media company’s official Facebook page with protest messages.YouPorn users exposed through configuration flaw
Thursday, February 23rd, 2012
A directory of log files that was accessible without authorisation has exposed YouPorn chat users. The directory contained the email addresses and plain text passwords of thousands of site members
 |  |
Yellow Pages Site Hacked by Mad HackerZ (Exclusive)
Thursday, February 23rd, 2012
A group of Lebanese hackers called Mad HackerZ Team breached the country’s official Yellow Pages website (yellowpages.com.lb), leaking tons of information they found on its servers. We’ve contacted the hackers to find out about their reasons for hacking this and other sites.The hackers published usernames, password... (read more)
