SCAMs, SPAM ...
Scams, SPAM, and other evil deeds. All sorts of things that people have to wary of.

 
Home

Broadcast Flag

Privacy Digest

Children's Books

DVD & VHS Movies

Cool Electronics

Video Games

Lots Of Good Deals

Jewelry

Gourmet Foods

Beauty

Lots Of Good Books(Law)

Lots Of Good Books(Health)

Lots Of Good Books(Medicine)

Lots Of Good Books(Biography)

Lots Of Good Books(Law)


Subscribe to "SCAMs, SPAM ..." in Radio UserLand.

Click to see the XML version of this web page.

Click here to send an email to the editor of this weblog.

 
 

  Monday, February 5, 2007

FTC to release ID theft data.
FTC to release ID theft data. The Federal Trade Commission on Wednesday will release its latest "Consumer Sentinel" statistical analysis on identity theft, a precursor to a more comprehensive report later this year on ID fraud. [Computerworld Privacy News]
9:08:11 PM    

Super Bowl-Related Web Sites Hacked.
Super Bowl-Related Web Sites Hacked. A recent vist to some Super Bowl host sites could mean an infected PC. [PC World: Latest Technology News]
1:54:25 PM    

Super Bowl Site Trojan Aims to Nab Passwords.
Super Bowl Site Trojan Aims to Nab Passwords.

This story was updated at 3:02 p.m. Please read the entire post. -- The official Web site of Dolphin Stadium -- the location of this weekend's Super Bowl XLI game -- has been infected with a Trojan horse program. The virus seeks to download keystroke-logging software on Windows machines if users visit the site without the latest security updates from Microsoft, security experts warn.

Websense said the site still hosts the virus, and it advises people to steer clear of the site for now. The Trojan tries to use two different exploits to break into Windows PCs; one of them was fixed by a patch Microsoft issued just last month.. It is clear that the bad guys are counting on major traffic to the site this weekend. According to Websense, the site is receiving a large number of visitors, thanks in part to some Super Bowl search terms that prominently link to the site. According to Web traffic-monitoring firm Alexa, the stadium site receives about 784,000 hits per week.

If you haven't been diligent about applying Microsoft patches, please take a moment to do that now by visiting Microsoft Update.

Microsoft always advises consumers to better protect themselves by visiting only "trusted sites." However, this type of attack highlights that even popular consumer sites can harbor serious problems. High-profile Web sites like Dolphin Stadium's should do even a rudimentary security review to thwart this type of attack.

Update, 3:02 p.m. ET: Stadium spokesman George Torres now says the site has been cleaned up. I've confirmed his claims with a few outside experts. It also appears that the same virus may have been seeded into other sites. The main "podcasts" page on the Web site for the Center for Disease Control and Prevention appears to have been infected at some point (ah, the irony). It is unclear when that could have occurred, and it does not appear to be there now. The folks at CDC are checking on the situation. There obviously are multiple sites currently infected with this Trojan, so make sure you're up to date on Microsoft patches.

This attack depends on the user allowing Javascript computer code to run in the browser. I often plug the "noscript extension for Mozilla's Firefox browser, which helps block this attack even on machines that do not have the patch.

[Security Fix]
1:46:38 PM    

Super Bowl Virus Spreads.
Super Bowl Virus Spreads. The game's over and patches are available, but many sites are infected with malicious code. [PC World: Latest Technology News]
1:29:48 PM    

Click here to visit the Radio UserLand website. © Copyright 2007 Paul Hardwick.
Last update: 3/4/07; 10:38:16 AM.

February 2007
Sun Mon Tue Wed Thu Fri Sat
        1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28      
Jan   Mar