About This Blog   |   Archives   |   RSS Feeds RSS Feed   (What's RSS?)

Archive: September 2008

Software Lets Users Manipulate Passport Data

A security researcher has published a software tool that makes it easy to copy and modify identification data encoded onto the computer chips embedded in passports issued by the United States and dozens of other countries. Jeroen van Beek, a...

By Brian Krebs | September 30, 2008; 5:39 PM ET | Comments (55)

Microsoft, Washington State Sue Scareware Purveyors

Microsoft Corp. and the state of Washington this week filed lawsuits against a slew of "scareware" purveyors, scam artists who use fake security alerts to frighten consumers into paying for worthless computer security software. The case filed by the Washington...

By Brian Krebs | September 29, 2008; 3:02 PM ET | Comments (50)

Wigle.net: The 411 on Wireless Access Points

If you thought your wireless network was too remote or obscure to find, you might want to think again. There's a non-trivial chance that the name of your network and its precise geographic coordinates are already mapped out and searchable...

By Brian Krebs | September 26, 2008; 7:30 AM ET | Comments (8)

Apple, Mozilla Push Security Updates

Apple on Wednesday issued an update that plugs at least two dozen security holes in the version of Java that runs on Mac OS X systems. Mozilla also pushed out patches to correct a number of security and stability issues...

By Brian Krebs | September 25, 2008; 1:30 PM ET | Comments (6)

Fake Facebook 'Add Friends' E-Mail Adds Malware

Social networking sites like Facebook and MySpace give scam artists and virus writers new ways to package tried-but-true tricks. The latest example of this making the rounds is an e-mail that appears to be an invitation from Facebook to add...

By Brian Krebs | September 23, 2008; 1:55 PM ET | Comments (39)

Internet Shuns U.S. Based ISP Amid Fraud, Abuse Allegations

A California based commercial Internet service provider whose clients included a laundry list of spammers and scammers is now offline, after the last of the company's upstream Internet providers decided to the pull the plug. Atrivo, a.k.a "Intercage," of Northern...

By Brian Krebs | September 22, 2008; 1:12 PM ET | Comments (28)

Apple Pushes New Patches

Apple on Monday released a large bundle of security updates for computers powered by its OS X operating systems and other software. Included in the patch batch are fixes for roughly three dozen security vulnerabilities. A number of the flaws...

By Brian Krebs | September 16, 2008; 1:45 PM ET | Comments (4)

iPhone Update Plugs Eight Security Holes

Apple on Friday issued an update for the iPhone that includes a bundle of at least eight security fixes. The update is only available through iTunes, and will not appear in your computer's Software Update application, or in the Apple...

By Brian Krebs | September 13, 2008; 7:00 AM ET | Comments (8)

Virginia Anti-Spam Law Overturned, Spammer Walks

The Virginia Supreme Court today struck down a state anti-spam law, saying the statute violated the First Amendment right to free and anonymous speech. The decision also tossed out the conviction of a North Carolina man once described as one...

By Brian Krebs | September 12, 2008; 9:10 PM ET | Comments (61)

Web Fraud 2.0: Fake YouTube Page Maker Helps Spread Malware

A new Web Fraud 2.0 tool makes it a cakewalk for criminals to create fake YouTube pages in a bid to trick people into installing malicious software. The YTFakeCreator tool, pictured at right, is a point-and-click program that automates the...

By Brian Krebs | September 12, 2008; 12:50 PM ET | Comments (5)

Fake Antispyware Purveyor Doubles as Domain Registrar

A cyber gang known for aggressively spreading fake anti-spyware programs through hijacked and malicious Web sites has become an authorized reseller of domain names. Security Fix has learned that this gang is using its access as a registrar to ease...

By Brian Krebs | September 11, 2008; 11:52 AM ET | Comments (57)

Security Updates for iPod Touch, iTunes and QuickTime

Apple on Tuesday released software updates to fix at least 20 security holes in its various products, from the iPod Touch to OS X and Windows versions of iTunes and QuickTime. The iPod Touch update fixes seven flaws, and is...

By Brian Krebs | September 10, 2008; 12:30 PM ET | Comments (19)

Microsoft Patches Eight Security Holes

Microsoft today released four security updates to plug at least eight security holes in its Windows operating systems and other software. The updates all earned Microsoft's most dire "critical" rating, meaning attackers can exploit the vulnerabilities to break into Windows...

By Brian Krebs | September 9, 2008; 3:51 PM ET | Comments (15)

EstDomains: A Sordid History and a Storied CEO

In this second part to an ongoing investigation into the notorious Web site host and domain name registrar EstDomains Inc., Security Fix examines the company's history, the legacy of its current chief executive, and its future prospects. The "Est" in...

By Brian Krebs | September 8, 2008; 4:14 PM ET | Comments (16)

A Superlative Scam and Spam Site Registrar

Over the past week, a number of the Internet's largest data carriers have ceased providing online connectivity to Atrivo (a.k.a. "Intercage"), an ISP that security experts say is home to a huge number of scammers and spammers. This week, I'm...

By Brian Krebs | September 8, 2008; 1:07 PM ET | Comments (76)

Scammer-Heavy U.S. ISP Grows More Isolated

Last week, Security Fix published an analysis of Atrivo, a California based Internet service provider, also known as Intercage, that has proven to be a virtual magnet for cyber-criminal operations. Since that time, Atrivo's biggest network backbone provider decided it...

By Brian Krebs | September 5, 2008; 10:44 AM ET | Comments (6)

Number of Bot-Infected PCs Skyrockets

The number of PCs compromised with software that lets cyber criminals control the machines from afar has more than quadrupled over the last quarter, security experts warn. The estimates come from Shadowserver, a group of volunteers that monitor activity from...

By Brian Krebs | September 4, 2008; 8:58 AM ET | Comments (8)

Firefox Plug-in Offers Clarity on Web Site Security

A new security add-on for the latest version of Firefox is available to help users make better sense of a controversial new feature of Firefox 3 that blocks users from visiting a Web site when the browser detects a problem...

By Brian Krebs | September 2, 2008; 1:12 PM ET | Comments (34)

 

©  The Washington Post Company