http://www.securelist.com/en/ 11 Feb 2012 06:51:05 +0400 http://www.securelist.com/en/rss/klogo.gif http://www.securelist.com/en/ webmaster@securelist.com (kipzter) and what's even worse than that is if u look into the thread there is a malicious worm that actually eats into your system and sends messages through your facebook account to other users indicating that your ip address has been posted in a public library. this is just such an infringement of the whole ethos of facebook! http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild?replyto=15283#comments http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild?replyto=15283#comments 09 Feb 2012 04:28:39 +0400 webmaster@securelist.com (janis) very nice article about the botnet what's the name of the software with the blue background. it's not ida right? http://www.securelist.com/en/blog/655/Kelihos_Hlux_botnet_returns_with_new_techniques?replyto=15282#comments http://www.securelist.com/en/blog/655/Kelihos_Hlux_botnet_returns_with_new_techniques?replyto=15282#comments 08 Feb 2012 02:26:40 +0400 webmaster@securelist.com (Kurt Baumgartner) Right on, Mike. So far so good on my x64 W7 systems with FF 10. http://www.securelist.com/en/blog/208193380/Adobe_Incubates_Flash_Runtime_for_Firefox?replyto=15281#comments http://www.securelist.com/en/blog/208193380/Adobe_Incubates_Flash_Runtime_for_Firefox?replyto=15281#comments 08 Feb 2012 01:52:33 +0400 webmaster@securelist.com (MIke) Installed it on my x64s and x32 all running W8-DP with Firefox 11 Beta. So far so good and web page loading seems faster than with the previous beta release of the un-sandboxed version of Flash. http://www.securelist.com/en/blog/208193380/Adobe_Incubates_Flash_Runtime_for_Firefox?replyto=15280#comments http://www.securelist.com/en/blog/208193380/Adobe_Incubates_Flash_Runtime_for_Firefox?replyto=15280#comments 08 Feb 2012 00:32:23 +0400 webmaster@securelist.com (RachelQuensen) Last February Citibank gave away thousands of frequent flyer miles as part of an offer. Now, customers who took part in the promotion are receiving 1099 forms, announcing that those miles are taxable income. Source for this article: Citibank says frequent flyer miles are taxable http://www.securelist.com/en/blog/208193050/Flying_phishers_cybercriminals_targeting_frequent_flyer_miles?replyto=15279#comments http://www.securelist.com/en/blog/208193050/Flying_phishers_cybercriminals_targeting_frequent_flyer_miles?replyto=15279#comments 06 Feb 2012 10:38:55 +0400 webmaster@securelist.com (sambathcs) Thank you very much.......... http://www.securelist.com/en/analysis/204792215/Congratulations_youve_won_The_reality_behind_online_lotteries?replyto=15278#comments http://www.securelist.com/en/analysis/204792215/Congratulations_youve_won_The_reality_behind_online_lotteries?replyto=15278#comments 02 Feb 2012 19:21:36 +0400 webmaster@securelist.com (Mikael) Hi, I was working from home in Sweden today and just received such a phonecall on my home number. I am a curious person and fascinated by the mechanics in scams and frauds like this. So i just played along when he called and said i was so glad that he called. Just after he introduced himself with one of those corny names like "Mikael Smith", i said "my computer is full of viruses, thanks for the service of calling me" He got a bit shocked and said "hold on for a second" and went back and their was discussions in the background. Then he asked if i was close to my computer and advised me to press "start and R" buttons to open the run-window. There he told me to write something that i cant remember at the moment. I obviously didnt type anything but i constantly pretended not to hear the letters he told me. Thought somehow i could make his phonebill increase at least.. ;=) After a couple of more discussions on what letters i should type and just before pressing "enter" i asked him if i need an internet connection to solve the issues. I said I canceled my subscription for internet a couple of days ago because of to many viruses on my computer. Then he said " be right back" and went for another lively discussion in the background. When he came back he said there was nothing he could do if i dont have internet. And i thanked him immensely for helping me out and assisting me. Before i hung up i asked him if he wanted to buy something from me. I asked if he needed cheap Viagra. And that i could give him a very good price. Then he actually started laughing and we wished each other a nice weekend before hanging up. http://www.securelist.com/en/blog/208193324/Windows_Security_Phone_Scam_Now_Targeting_Sweden?replyto=15277#comments http://www.securelist.com/en/blog/208193324/Windows_Security_Phone_Scam_Now_Targeting_Sweden?replyto=15277#comments 02 Feb 2012 18:55:36 +0400 webmaster@securelist.com (praveen) often there some sites which asks to click links through emails here i would like to know whether to click the link or just ignore it.even for account verification some site use the hyperlins through emails plz tell whether to click or not. http://www.securelist.com/en/blog/208193131/Gaming_the_security_Beware_of_fake_Diablo_III_beta_invitations?replyto=15276#comments http://www.securelist.com/en/blog/208193131/Gaming_the_security_Beware_of_fake_Diablo_III_beta_invitations?replyto=15276#comments 29 Jan 2012 06:15:16 +0400 webmaster@securelist.com (praveen) ya everytime my spam will be fully filled with these types of fraud mails and i also think the same and i used to discuss withmy friends as a joke. http://www.securelist.com/en/analysis/204792215/Congratulations_youve_won_The_reality_behind_online_lotteries?replyto=15275#comments http://www.securelist.com/en/analysis/204792215/Congratulations_youve_won_The_reality_behind_online_lotteries?replyto=15275#comments 29 Jan 2012 06:10:34 +0400 webmaster@securelist.com (Kevin) http://www.cert.org/homeusers/HomeComputerSecurity/home_computer_security.pdf http://www.cert.org/homeusers/HomeComputerSecurity/#intro http://www.securelist.com/en/blog/208193297/Thousands_of_European_cards_blocked_following_payment_processor_breach?replyto=15274#comments http://www.securelist.com/en/blog/208193297/Thousands_of_European_cards_blocked_following_payment_processor_breach?replyto=15274#comments 29 Jan 2012 01:49:47 +0400 webmaster@securelist.com (Kevin) https://www.paypal.com/za/cgi-bin/webscr?cmd=xpt/Marketing/securitycenter/general/UnderstandIdTheft-outside https://www.paypal.com/za/cgi-bin/webscr?cmd=xpt/Marketing/securitycenter/general/UnderstandPhishing-outside https://www.paypal.com/za/cgi-bin/webscr?cmd=xpt/Marketing/securitycenter/buy/Prevention-outside NEW! Email Authentication: ------------------------- With this new technology, you can be more confident knowing that emails from PayPal are actually from PayPal. Find out more in the Email Authentication Overview. Equifax Credit Alerts™ for PayPal users: --------------------------------------- We’ve partnered with Equifax to provide you with an early warning detection system for potential identity theft. It’s free for U.S. PayPal users. Find out more with the Equifax Credit Alerts Guide. Virtual Debit Card: ------------------ A digital credit card for PayPal users that generates a temporary number every time you use it and warns you of potentially fraudulent websites. These convenient features will help keep you safe and secure when you shop online. Find out more at Virtual Debit Card. http://www.securelist.com/en/blog/208193297/Thousands_of_European_cards_blocked_following_payment_processor_breach?replyto=15273#comments http://www.securelist.com/en/blog/208193297/Thousands_of_European_cards_blocked_following_payment_processor_breach?replyto=15273#comments 29 Jan 2012 01:40:57 +0400 webmaster@securelist.com (Kevin) Whether you go online to check your bank balance, pay a bill, give money, shop, or sell something, these six rules can help you keep the risks to a minimum. 1. Defend your computer against Internet threats Help protect your online transactions by using firewall, antivirus, and antispyware software. Encrypt your wireless connection at home. Keep all software (including your web browser) current with automatic updates. For more information, see How to boost your malware defense and protect your PC. 2. Create strong passwords Strong passwords are easy for you to remember but difficult for others to guess. They are at least 14 characters long (the longer the password, the better) and include numbers, symbols, and upper and lower case letters. For more information, see Learn how to create strong passwords. If you already have a password in mind, check your password strength.) Keep passwords and PINs (personal identification numbers) secret. Do not share them in email, instant messages, or over the phone. Use unique passwords for bank accounts and other important financial information. Avoid using the same password everywhere. If someone steals that password, all the information that the password protects is at risk. 3. Find the web address yourself Links in email messages, text messages, instant messages, or pop-up ads can take you to websites that look legitimate but are not. To visit websites, type the address yourself or use your own bookmark or favorite. 4. Look for signs that your information is safe Before you enter sensitive data on a web page, ensure that: The site uses encryption, a security measure that helps protect your data as it traverses the Internet. Signs of encryption include a web address with https ("s" stands for secure) and a closed padlock beside it. (The lock might also be in the lower right corner of the window.) You are at the correct website—for example, at your bank's site, not a fake one. If you are using Internet Explorer, one sign of trustworthiness is a green address bar like the one above. 5. Save financial transactions for your home computer Never pay bills, bank, shop, or do other financial business on a public or shared computer or on devices such as laptops or mobile phones that are on public wireless networks. The security is unreliable. 6. Use common sense To protect yourself against fraud, watch out for scams. For example, be wary of deals that sound too good to be true, alerts from your "bank" that your account will be closed unless you take some immediate action, notices that you have won a lottery, or a refusal to meet in person for a local transaction. Typically this kind of message, whether sent by computer or phone, is designed to entice you to visit a phony website where criminals collect your financial data. (If you doubt the message's authenticity, call the company.) Learn to spot phishing scams and defend against them. What to do if there are problems: -------------------------------- Online shopping problem? First, ask the seller to make things right. If that doesn't work, contact the web service for help. Report scams, fraud, identity theft, or other abuse: To the web service, local police, and the bank, credit card company, or other financial institution. For identity theft in the United States, to the U.S. Federal Trade Commission (FTC) at ftc.gov/idtheft or call toll free: (877) 438-4338. For scams or fraud in the United States, to the FTC at ftc.gov/bcp/consumer.shtm or call toll free: (877) 382-4357. ------------------------- How to use third-party payment services You can use third-party payment services to make payments online and avoid giving your credit card number directly to merchants. What is a third-party payment service? When you use a third-party payment service, you transfer money into an online account and make payments from that account. That way, you never expose your real credit card or bank account information. You can use these third-party payment services to buy things from online auction websites or from other online businesses and to donate money. The most popular of these services in the United States is called PayPal, but there are others, such as Amazon.com Payments. How to choose a secure payment service Use the same guidelines for choosing a third-party payment service as you would for choosing an online retailer. To test the legitimacy of a service: Find out what others say about the service: Check consumer review websites such as Epinions.com or BizRate. Look at the payment service's website for seals of approval from TRUSTe or Better Business Bureau Online (BBBOnline). Before you submit sensitive data to the payment service, ensure that the service website uses encryption. (Encryption is a security measure that helps protect your data as it traverses the Internet.) Signs that a website uses encryption include a web address with https ("s" stands for secure) and a closed padlock beside it. (The lock might also be in the lower right corner of the window.) Use payment services more safely Never respond to email messages from third-party payment services asking you to confirm account details, such as passwords or other personally identifiable information. These email messages could potentially be identity theft scams, such as phishing. Create a strong password for your account. Strong passwords are easy for you to remember but difficult for others to guess. They are at least 14 characters long and include upper and lower case letters, numbers, and symbols. Learn how to create strong passwords. Do not use payment services (or make any financial transactions, for that matter) on public or shared computers or on devices such as laptops or cell phones while you are using public wireless networks. The security is unreliable. Find out whether the seller is a verified member of the payment service, and for how long. Some services allow you to check a seller's rating—although these ratings cannot be guaranteed, they can be helpful. http://www.securelist.com/en/blog/208193297/Thousands_of_European_cards_blocked_following_payment_processor_breach?replyto=15272#comments http://www.securelist.com/en/blog/208193297/Thousands_of_European_cards_blocked_following_payment_processor_breach?replyto=15272#comments 29 Jan 2012 01:28:36 +0400 webmaster@securelist.com (theorigin) yes as a matter of fact I did get a call like that, me too at first I started asking some simple question and that prompted them to hang up. According to this new report by Australian TV: http://www.whycall.me/info/techsupportscam.php according to Microsoft's official warning about this an average consumer loses 850$! This is almost hard to believe considering that a brand new computer often costs less http://www.securelist.com/en/blog/208193324/Windows_Security_Phone_Scam_Now_Targeting_Sweden?replyto=15271#comments http://www.securelist.com/en/blog/208193324/Windows_Security_Phone_Scam_Now_Targeting_Sweden?replyto=15271#comments 28 Jan 2012 03:54:16 +0400 webmaster@securelist.com (guest) So is there any link to filter these mails automatically??? And these kind of mails are not coming only on Valentine's day but also on all the festivals. This is also true people get attracted with these cheap shopping offers and genuine sellers have to face the problem. http://www.securelist.com/en/blog/379/Valentines_spam_on_the_increase?replyto=15268#comments http://www.securelist.com/en/blog/379/Valentines_spam_on_the_increase?replyto=15268#comments 22 Jan 2012 18:53:18 +0400 webmaster@securelist.com (praveen) These are the wall papers that have wealthy information with awesome design. I like the way that you have designed the wallpapers for all types of screen resolution. Please continue the work for every year and it soon reaches to everyone's home. http://www.securelist.com/en/blog/208193354/Malware_wallpaper_calendars_for_2012?replyto=15267#comments http://www.securelist.com/en/blog/208193354/Malware_wallpaper_calendars_for_2012?replyto=15267#comments 22 Jan 2012 06:49:18 +0400 webmaster@securelist.com (Hacker) Friend, I do not understand your topic talking about cyber crime. All there is Parents USA for example there is fraud law and everything else and suffer more attacks we have in Brazil. This site you copied the photos are mine, my courses do not teach the crime but as hackers work and how they can do to defend themselves, I believe you did not watch any videos of my lectures on the subject. I also want to make clear that the laws here in Brazil no longer apply apply in your country so I'm giving time for these images be removed These exclusive rights are Being violated by material available upon your Following at the site URL (s) : = http://www.forum-hacker.com.br/forum/showthread.php?26352-Tutorial-Como-Gra Conversations TelefB3ria-var-Staff-the-Performance I have a Good Faith Belief That the use of this material in such a fashion is not authorized by the copyright holder, the copyright holder's agent, or the law; Under penalty of perjury in a United States court of law, I state That the information contained in this notification is accurate, and That I Am Authorized to act on the behalf of the exclusive rights holder for the material in question; I May Be contacted by The Following methods: 305 W Moana Ln Reno Suite B-3 Hackerbrasilll@msn.com NV 89509 USA That I hereby request you to remove or disable access to this material it appears on your service in the expedient fashion to the possible. Thank you. http://www.securelist.com/en/blog/208193337/A_School_for_Cybercrime_How_to_Become_a_Black_Hat?replyto=15266#comments http://www.securelist.com/en/blog/208193337/A_School_for_Cybercrime_How_to_Become_a_Black_Hat?replyto=15266#comments 18 Jan 2012 02:17:47 +0400 webmaster@securelist.com (Piet558) ever tried Wuala? It is (and has been) doing exactly that, right from the start. see: www.wuala.com http://www.securelist.com/en/blog/653/Lab_Matters_Cloudy_with_a_chance_of_stolen_data?replyto=15265#comments http://www.securelist.com/en/blog/653/Lab_Matters_Cloudy_with_a_chance_of_stolen_data?replyto=15265#comments 17 Jan 2012 00:39:45 +0400 webmaster@securelist.com (Martijn Grooten) Yes http://answers.yahoo.com/question/index?qid=20111219062529AA4wyUz http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild?replyto=15264#comments http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild?replyto=15264#comments 16 Jan 2012 19:00:55 +0400 webmaster@securelist.com (David Jacoby) really? http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild?replyto=15263#comments http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild?replyto=15263#comments 16 Jan 2012 16:37:42 +0400 webmaster@securelist.com (Martijn Grooten) s/scams/scam http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild?replyto=15262#comments http://www.securelist.com/en/blog/208193325/Facebook_Security_Phishing_Attack_In_The_Wild?replyto=15262#comments 14 Jan 2012 18:31:58 +0400