Perils of online banking: cyberrobbers escalate attacks on small businesses
December 31, 2009
By Byron Acohido, USA TODAY
A rising swarm of cyber-robberies targeting small firms, local governments, school districts, churches and non-profits has prompted an extraordinary warning. The American Bankers Association and the FBI are advising small and midsize businesses that conduct financial transactions over the Internet to dedicate a separate PC used exclusively for online banking.
See source version of this story here.
The reason: Cybergangs have inundated the Internet with …More
Facebook users unwittingly solve CATPCHAs, aid spread of Koobface
December 11, 2009
Christmas-themed social engineering for nefarious purposes come as no surprise this time of year. But the cybercriminals responsible for the latest variant of Koobface have come up with a new slant that demonstrates how clever the bad guys have become at blending and scaling up tried-and-true attack techniques.
This particular variant of the Koobface worm — dubbed Koobface.GK – initiates by posting malicious links on Facebook wall pages enticing …More
Google, Bing open new criminal opportunities by adding Twitter, Facebook feeds
December 10, 2009
The race between Google, Microsoft Bing and Yahoo Search to incorporate Facebook updates and Twitter microblog postings into search results — in near real-time — is likely to result in a bonanza for cybercriminals looking to take control of your PC.
Google this week announced that it, too, now has the capacity to inject up-to-the-minute Twitter feeds into search query results. Microsoft made a similar announcement …More
Yahoo, Go Daddy hosted websites targeted in two-stage phishing attack
December 8, 2009
If you control a blog or any small website, beware. Phishers are trying to lure owners of smaller websites who use hosting services from Yahoo, GoDaddy and MediaFire into divulging their administrator logons.
These criminals then will use your small corner of the Web to host faked online banking web pages used in subsequent broader phishing campaigns designed to hijack funds from online banking accounts, according to this …More
uTest discovers cross-site scripting vulnerability on major retailer’s site
December 4, 2009
U-Test has just completed a substantive, independent review of three major e-tailing sites — and found a gaping security hole in one of them.
U-Test retains a stable of 21,000 professional testers from 159 countries available to run any website through the paces. As part of its marketing efforts, U-Test has been running a once-a-quarter contest by which its testers can earn cash testing certain groupings of online services.
In this case, …More