Who needs a botnet when you can Yahoo?
Yahoo is being used to spam out a huge volume of malware pretending to be Amazon.co.uk order confirmations. Yahoo, as usual, is pretty relaxed about it.
View Articlejpmoryan.com malware spam
Since about 2pm(GMT) today FJL has been intercepting a nice new zero-day spammed malware from the domain jpmoyran.com. It would pass through the default spamassassin criteria, although no SPF was added...
View ArticleMalware sent in .ace format
Malware being distributed in good OLD .ace format. Eh? What's that?
View ArticleNew botnet spammed malware – Peals.F!plock
A message titled COS007202 is being spammed very effectively right now, testing positive for malware known as Peals.F!plock, which many scanners reckon isn't a threat.
View ArticleThe spammed malware attack continues, but Microsoft SE has been getting it wrong
Kudos to Microsoft Security Essentials for picking up the nasty attachment being pumped out like crazy by the clean-skin botnet recently, while most of the other scanners failed to detect it. However,...
View ArticleGovernments’ hacking fantasies
George Osborne warns of an army of Islamic hackers about to wreak Armageddon while a US security commission is recommending that we just hack the Chinese in return and steal their data back. What...
View ArticleMicrosoft Security Essentials hangs during a full scan
Sometimes, especially in the last year or so, I've found Security Essentials will stall when its doing a background scan. I've looked for solutions to this, as well as searching the web for an answer....
View ArticleLincolnshire Council in £1M ransomware plot
Reports are that Lincolnshire Council has been shut down for four days because it's been targetted by ransomware that has encrypted all its files. That they've been a victim of such a scam doesn't...
View ArticleSpam from the Government Secure Internet
Criminals apparently from Bangalore have been distributing loads of malware spams, with a fake .gsi.gov.uk address. These are evading spam filters, partly because the government hasn't got its act...
View ArticleAndroid Stagefright bug gets serious
The security flaw found in the Stagefright library in pretty much every Android device was considered significant, but hard to exploit. Now researchers have worked out how to do it, meaning that most...
View ArticleFlash Crash (Adobe version)
When looking at multifarious Adobe Flash vulnerabilities in the NIST database I'm always amused to note that it appears to be written in Coldfusion. For the last ten years that's been Adobe Coldfusion....
View ArticleNew mystery “Appear in Court” malware
New JavaScript malware is being spammed from clean addresses using the "Appear in Court" ruse normally associated with Microsoft documents. It only partly activated when I tried samples, so what is it...
View ArticleAm I being phished?
I received what might be my first spear-phishing attempt today. But I'm not sure. Should I open the attachment?
View ArticleFive year old “new” malware discovered “by Kaspersky”
Yesterday Russian security company Kaspersky has released an analysis of what it claims is previously undiscovered malware, although it's existence has been known about for a week. Kaspersky's analysis...
View ArticleSophos UTM sets ambitions goals; and fails to score
Paranoid settings on web content filters used in education and local authorities are destroying the world wide web's reason for existence. Vendors need to do a lot more work on ways of classifying web...
View Article
