That was probably the script the culprit had in mind …and who knows how many times it played out.

I received the following message in my email inbox earlier from a cousin on Facebook.

It was so obviously malicious. Never mind the spelling issues. That is a trick typically used to get by email filters. My first reaction was to log in to Facebook and verify that it was indeed the source. I was reminded of an article I read about a similar fake LinkedIN email attack. In this case, the message was right there with a slight difference. The link now was more obvious.

One of those shortened bit.ly links that could lead you anyway. Without clicking the link, I clicked “reply” asking ” Did you send this?” . I already knew the answer but hey!  I immediately got the following response from one of the sender’s friends.

The plot thickens…

I sent the cousin a message advising a change of Facebook credentials. The message was apparently sent to many other users.  I’ve read and blogged about compromised Facebook account being used to spread malware and/or lure users to malicious sites but this is my first such experience. I’m not the average Facebook user though, since I only use it to cross-post blog updates.  I didn’t have to time to investigate what’s on the other side of that bit.ly link but just thought I’d share the experience.

Beware fellow Facebook users!

Related posts:

1. Brevity is the soul of…..getting yourself infected with all kinds of nasties! Would you click on the link : http://www.click-here-to-give-me-access-to-all-your-computer-files.com? No? How...
2. Alert your connections if your Social Networking Account get compromised Social Network attacks are becoming more popular as daily we...
3. Fake virus alert spreads massively across Facebook Panda Security has released the following advisory: In the last...

A number of similar incidents to this one highlight the threats of online crime facing small and midsize businesses (SMBs), says Stan Stahl, president of Citadel Information Group and president of the Los Angeles chapter of the ISSA.

“Typically, they say, ‘We have firewalls in place and have AV on all the desktops, so I guess we are secure,’” Stahl says. “But today cybercrime is so sophisticated that is not enough anymore.”

Read full article at http://www.darkreading.com/smb-security/security/attacks/showArticle.jhtml?articleID=225702557&cid=RSSfeed

Related posts:

1. Thoughts on Skype security Michael Gough, an information security specialist and president of the...
2. Did Facebook CEO play fast and loose with user login data? Did you Facebook CEO play fast and loose with user...
3. IRS reminds you not to go Phishing this tax season It’s tax time again and IRS phishing scams are alive...

Every other day, we hear about the risks. Compromised Twitter accounts, phishing via LinkedIN,  malicious Facebook apps were only a sample of an every growing landscape. Most enterprises, appreciating the threats these pose to an environment, simply deny access to social networks from company systems and networks.

Even within such organizations, there are user who need to access social networks to perform their job functions. LinkedIN has become a great tool for recruiting prospective new hires. More companies are using Twitter, Facebook, Myspace and others to promote their business an connect with customers.

But outside of that, is there a value in allowing employees, whose job function do not require it, access to social networks on company systems?

I’m prompted to ask this because last week I was at a meeting of the Northern Virginia chapter of the  Information Systems Security Association (ISSA-NOVA) and the speaker was the deputy CISO of the IRS, Devon Bryan. He spoke about how the IRS was dealing with the security challenges posed by Web 2.0, particularly social networking, Their current stance is to block all access except for those employees who job function required it. Most security  professionals would agree this is probably wise. However, he also added that they are looking at technology that would allow users to “view” social networking sites, but not allow them to “update” them. As he explained, or tried to, read vs. write/execute.

As this was an audience full of security professionals, it was quickly pointed out that drive-by malware downloads only require the user to browse the infected web page or one that is linked to an infected web page. To view is to infect, so to speak. There was then talk of how to mitigate that using virtual machines or proxies.

I have no doubt the technical challenges can be overcome. The hackers who now treat social networks as the new frontier will probably change tact to react as well. Besides wanting to keep employees happy, what’s the policy rationale for allow users to follow their subscribed tweets or friends updates? Never mind, the adverse effect this with have on productivity. Really, why bother?

Related posts:

1. How to limit Twitter risks Twitter is now used by over 350 million people worldwide....
2. Staff Leak Military Secrets on Facebook and Twitter Are your employees ( or you ) leaking sensitive data...
3. Gartner predicts the Enterprise is going Social Gartner believes that social networking will be embraced, but perhaps...

Facebook claims they turned the information about the hacker to law enforcement authorities and that the hacker’s claims are grossly overstated. Even if this guy is caught, extradition to the US is unlikely. Russia’s stance on this sort of thing is ” show us the proof and we will prosecute him ourselves”.

Related posts:

1. Hacker Updates Woman Facebook Status Here’s an interesting story. Who didn’t see this coming? “Police...
2. Did Facebook CEO play fast and loose with user login data? Did you Facebook CEO play fast and loose with user...
3. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...

“Blippy, a social networking site that allows users to share their purchases and discuss shopping with others, will revamp its security plans and hire a Chief Security Officer after an embarrassing incident in which the site accidentally published a few of its members’ credit card numbers on Google.

Blippy Co-founder and CEO Ashvin Kumar said in a blog post this week that the slip-up occurred as a result of a technical oversight back in February that caused raw transaction data to appear within the HTML code on some Blippy pages for about half a day. ”

Who didn’t see this coming a mile away? Presenters at Shmoocon this year noted that penetration testers [and hackers] absolutely love this the Blippy platform because of the naked insight it offers into the spending habits of specific individuals. They also shared a favorite quote making its way around the infosec community: “I joined Blippy and all I got was jacked at the ATM.”"

Sigh

Related posts:

1. Blippy, the Next Evolution of Stupid At what point do we as a society realize this...
2. CISSP All In One Book FIFTH EDITION has been released The fifth edition of this best-selling comprehensive CISSP training resources...
3. ISSA-NOVA Chapter December Meeting The Northern Virginia Chapter of the Information System Security Association...

This follows a series of privacy related concerns and updates following the initial launch of the service. I mentioned some of the concerns here in a post: Google Acknowledges Privacy Issues With Buzz amid FTC complaint

The latest tweaks will also show every aspect of a user’s profile, from public settings to the websites users are connected to, and who they are following or being followed by.

“Shortly after launching Google Buzz, we quickly realised we didn’t get everything right and moved as fast as possible to improve the Buzz experience,” said Buzz product manager Todd Jackson in a blog post.

“Offering everyone who uses our products transparency and control is very important to us.”, he continues.

The blogosphere has reacted positively to the proposed changes.

“While we can say that this is what we wanted at launch, it is heartening to see it now,” said Alex Wilhelm, of TheNextWeb.

Ben Parr, associate editor at social media blog Mashable, said that while the changes could not fix the damage already done, they might “help get Congress off [Google's] back”.

“If it can appease critics on the privacy issues, then it can tackle the bigger challenge: making Google Buzz into a competitive threat to Twitter and Facebook.”

The Google Buzz team has promised more updates in the future.

Related posts:

1. Google Acknowledges Privacy Issues With Buzz amid FTC complaint Although Google has acknowledged some of the privacy concerns with...
2. Facebook, Twitter, ….Buzz? Update: Power to the people!! In response to the concerns...
3. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...

“Last night during Facebook’s regular code push, a bug caused hidden email addresses to be visible briefly,” said a Facebook spokesman yesterday.

This new calamity lasted for 30 minutes.

Read more: http://www.v3.co.uk/v3/news/2260541/facebook-bug-discloses-private

Related posts:

1. Hacker Updates Woman Facebook Status Here’s an interesting story. Who didn’t see this coming? “Police...
2. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...
3. 1000 hacked Facebook accounts for as low as 25 dollars Facebook claims to have identified the self-proclaimed Russian hacker calling...

When Google decided to unilaterally opt Gmail users into Buzz and share your contact information, it received bad press and an FTC filing. I can only hope the same and more happens here.

Under Facebook’s current rules you’re asked first if you want to share information (your name, photos and friends list) with third-party sites. The proposed policy, which Facebook hasn’t implemented yet, would bypass asking you for approval when visiting some sites and applications Facebook has business relationships with, sharing limited personal information automatically.

Tell Facebook how you feel about it here: http://blog.facebook.com/blog.php?post=376904492130

Related posts:

1. Beware of fake Facebook apps Facebook is warning users to avoid bogus apps that claim...
2. Did Facebook CEO play fast and loose with user login data? Did you Facebook CEO play fast and loose with user...
3. Facebook intros Revamped Home Page, Important New Privacy Setting On Friday, Facebook  rolled out a new home page and...

As soon as you install this malware, it will tag every single one of your friends in a photo in batches of about 20. It then posts that photo to your wall.

This is what the photo looks like:

If a Friend looking through the photos then clicks on the app’s  link, they’ll see this:

If you have a lot of friends, you might end up with a series of albums like this:

Apart from the wall spamming, another obvious indication that this is a virus itself, is the url:

http://apps.facebook.com/kxetyegpgkxdwfy/

A valid application is not going to have a url with a bunch of jumbled letters at the end.

If you have been tagged in  the photo by one of your friends (remember, they did not really do this – the app did automatically), you can remove the tag.

1. Open your photos
2. Click the offending picture
3. Look for your name in the list of people tagged
4. Click the ‘Remove Tag’ link that appears beside your name

The photo will then automatically be removed from your photo list.

Source:

http://www.f-secure.com/weblog/archives/00001920.html

http://thefacebookinsider.com/2010/03/warning-facebook-antivirus-will-virally-spam-your-friends/

Related posts:

1. Beware of fake Facebook apps Facebook is warning users to avoid bogus apps that claim...
2. Facebook intros Revamped Home Page, Important New Privacy Setting On Friday, Facebook  rolled out a new home page and...
3. Fake virus alert spreads massively across Facebook Panda Security has released the following advisory: In the last...

That’s a quote from a woman whose house was robbed by a Facebook “friend” after she updated her status indicating she was on her way to a concert. She appeared on the CBS Early Show this morning. The robber  had contacted her six month previously claiming to be long lost neighbor from 20 years ago. Fortunately for her, she had cameras installed at home and recorded  the culprit in the act.

I can’t stress enough the importance of limiting the information you put out there. With friends like these, ….

Source: CBS NEWS

Related posts:

1. 2010 CyberSecurity Watch Survey Cybercrime threats posed to targeted organizations are increasing faster than...
2. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...
3. SMB Cyber Security Alliance helps Small Businesses address Cyber Security Risks Across all industries, small businesses are increasingly facing new threats...

“Police say a hacking investigation in Fairfax County, Virginia started with a Facebook pregnancy announcement. But, it turns out the woman is not expecting a baby.

According to police, someone hacked into her Facebook account and posted the fake status update. The victim, who is from Springfield, also claims someone accessed her Hotmail account and sent out nasty emails.

All of the victim’s classes at Northern Virginia Community College were canceled by the hacker.

Police are investigating the Facebook and Hotmail hacking claims, but so far no charges have been filed.”

Source: http://www.myfoxdc.com/dpp/news/local/woman-says-facebook-account-was-hacked

Related posts:

1. 1000 hacked Facebook accounts for as low as 25 dollars Facebook claims to have identified the self-proclaimed Russian hacker calling...
2. Did Facebook CEO play fast and loose with user login data? Did you Facebook CEO play fast and loose with user...
3. ISSA-NOVA Chapter December Meeting The Northern Virginia Chapter of the Information System Security Association...

Check out FBI Going Rogue on Facebook on DarkReading.com

Related posts:

1. Facebook and Twitter I have never found much use for social networking sites...
2. Blippy, the Next Evolution of Stupid At what point do we as a society realize this...
3. Alert your connections if your Social Networking Account get compromised Social Network attacks are becoming more popular as daily we...

“Don’t believe any applications that claim they can show you who’s viewing your profile or photo. They can’t.”

Maybe it’s time Facebook reviewed it’s policy regarding vetting third-party applications.

Related posts:

1. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...
2. Facebook intros Revamped Home Page, Important New Privacy Setting On Friday, Facebook  rolled out a new home page and...
3. CISSP All In One Book FIFTH EDITION has been released The fifth edition of this best-selling comprehensive CISSP training resources...

Interesting paper: “A Practical Attack to De-Anonymize Social Network Users.”

Abstract. Social networking sites such as Facebook, LinkedIn, and Xing have been reporting exponential growth rates. These sites have millions of registered users, and they are interesting from a security and privacy point of view because they store large amounts of sensitive personal user data.

In this paper, we introduce a novel de-anonymization attack that exploits group membership information that is available on social networking sites. More precisely, we show that information about the group memberships of a user (i.e., the groups of a social network to which a user belongs) is often sufficient to uniquely identify this user, or, at least, to significantly reduce the set of possible candidates. To determine the group membership of a user, we leverage well-known web browser history stealing attacks. Thus, whenever a social network user visits a malicious website, this website can launch our de-anonymization attack and learn the identity of its visitors.

The implications of our attack are manifold, since it requires a low effort and has the potential to affect millions of social networking users. We perform both a theoretical analysis and empirical measurements to demonstrate the feasibility of our attack against Xing, a medium-sized social network with more than eight million members that is mainly used for business relationships. Our analysis suggests that about 42% of the users that use groups can be uniquely identified, while for 90%, we can reduce the candidate set to less than 2,912 persons. Furthermore, we explored other, larger social networks and performed experiments that suggest that users of Facebook and LinkedIn are equally vulnerable (although attacks would require more resources on the side of the attacker). An analysis of an additional five social networks indicates that they are also prone to our attack.

Related posts:

1. Gartner predicts the Enterprise is going Social Gartner believes that social networking will be embraced, but perhaps...
2. Did Facebook CEO play fast and loose with user login data? Did you Facebook CEO play fast and loose with user...
3. What is the values proposition for allowing users access to social networks? What is the values proposition for allowing employees access to...

Be it true or otherwise, this just highlights one of the many risks associated with social networking sites. Although, Facebook didn’t not have the “privacy” policy it has today at the time of the alleged misconduct, policy is all that stands between your information and some disgruntled or unscrupulous Facebook (or any other social networking site ) employee.

Most social networking sites use your email address as your user name. Are you using the same password for both accounts? You shouldn’t. However, since these sites record all failed log in attempts, if you at times have had to circle through the your series of usual account passwords then rest assured those passwords are captured as well.

Know your risks.

Related posts:

1. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...
2. How to limit Twitter risks Twitter is now used by over 350 million people worldwide....
3. Facebook error exposes users hidden email addresses for 30 minutes I swear I am not on an anti-Facebook crusade, but...

Related posts:

1. Beware of Haiti-Themed Scams and Attacks! Our thoughts and prayers go out to all those affected...
2. IRS reminds you not to go Phishing this tax season It’s tax time again and IRS phishing scams are alive...
3. "Show me the malware"- says Google A fews weeks ago, I had a discussion with a...

I’ve just happened across Blippy, a Twitter-like site, where users can sign up to publish all their online purchases. I mean, really?? We already know that retailers track your purchases and use it for marketing purposes. Why in the world would you publish all your credit card transactions to the world??

I have a Twitter account ( Follow me ) that I use for one purpose: publishing my blog posts and other security related articles I come across on the web. That’s it! I doubt anyone cares to know what I do with my every waking moment nor do I care to tell.

Good luck though. Sigh.

Related posts:

1. Twitter users hit hard by "LOL" phishing attack IT security and data protection firm Sophos is warning that...
2. How to limit Twitter risks Twitter is now used by over 350 million people worldwide....
3. Brevity is the soul of…..getting yourself infected with all kinds of nasties! Would you click on the link : http://www.click-here-to-give-me-access-to-all-your-computer-files.com? No? How...

The problem, as framed by the Electronic Frontier Foundation, “is that your e-mail and chat contacts are not necessarily people you want to advertise as friends via a public social network.”

Google could have saved itself all the trouble by making this an opt-in service. But alas, no.

Related posts:

1. Google rolls out privacy reset for Buzz Google will ask users of its social network Buzz to...
2. The Death of [the illusion of] Privacy on the Internet If this doesn’t scare you, it should. The Washington Post,...
3. Facebook, Twitter, ….Buzz? Update: Power to the people!! In response to the concerns...

Acknowledge the attack to anyone who might have been adversely impacted; Be detailed: Tell them what message they might have received as a result of the malware/phishing and what might have happened as a result; Caution your contacts: Use this as an opportunity to remind everyone that just because they think a message comes from someone they know, there really is no way of telling for sure. If they ever do click a link that then leads to a login page or to a video codec install, they should close the page immediately and contact their friend via some other method to inquire (and possibly alert them) about the seemingly malicious link.

When Twitter accounts are phished, the 140 character limitation makes it a bit harder to convey the message. Using as few words as possible, try to include enough details about the message sent so folks can identify it, ended with a brief “I’m sorry”. Don’t ever include a link in that apology; after all, it was clicking on a link that got folks in trouble in the first place.

Related posts:

1. Sweet!! Yourr bootyy look awseome on thiss ivdeo! Gee Thanks! I’ve been working out! …..oh wait a minute!...
2. Brevity is the soul of…..getting yourself infected with all kinds of nasties! Would you click on the link : http://www.click-here-to-give-me-access-to-all-your-computer-files.com? No? How...
3. Your guilty conscience could get you pwned From Trend Micro Countermeasures Blog: I just received an email...

I dare say any other company might have made this an opt-in feature thus allowing users who chose to have this functionality to enable is consciously. This is the right way to do it.

But wait, it gets worse: The “turn off buzz” switch provided doesn’t actually disable it. It just hides it within Gmail. All your connections still show up in your profile page and Buzz is still active. Accessing your account from a mobile device will show Buzz enabled.

CNET has posted an article on how to properly disable buzz, include screenshots. The steps include:

1. First, you delete your google profile. You don’t hide it or change the name. You have to delete it completely. This doesn’t destroy your overall google account, but it does limit some of your functions. Here’s how to delete your profile.
2. You have to go into buzz and manually delete your connections, including blocking everyone who is following you already.
3. Now it’s safe to go back to Gmail and click “turn off buzz.”

Related posts:

1. Google rolls out privacy reset for Buzz Google will ask users of its social network Buzz to...
2. Google Acknowledges Privacy Issues With Buzz amid FTC complaint Although Google has acknowledged some of the privacy concerns with...
3. Facebook, Twitter, ….Buzz? Update: Power to the people!! In response to the concerns...

http://gmailblog.blogspot.com/2010/02/millions-of-buzz-users-and-improvements.html

**

Not leaving any stone unturned, Google has joined the Social Networking foray.  Earlier this week, Google introduced Google Buzz which adds social networking features to Gmail. Will this be the one to replace them all? Or just another addition to the long list? Check it video below.

Here’s a great feature that should interest you. Buzz compiles a list of the Gmail contacts you most frequently email or chat with and automatically starts following these people. It also makes the list public, meaning strangers can see who Buzz users have been in contact with. Emailed an old girlfriend/boyfriend lately? How about a recruiter at a competitor company? Don’t get buzzed, folks!

Related posts:

1. Google rolls out privacy reset for Buzz Google will ask users of its social network Buzz to...
2. Google Acknowledges Privacy Issues With Buzz amid FTC complaint Although Google has acknowledged some of the privacy concerns with...
3. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...

And whenever Facebook adds new features, in this case the Applications and Games dashboards, there’s usually a new privacy setting as well.

This is what part of the new Applications dashboard looks like.

All Facebook has raised some privacy concerns regarding the dashboard’s output.

Do you really want all of your “friends” to know what applications you’ve been running?

You don’t?

Then you’ll want to take a look at the new control provided by Facebook.

Here’s the old Applications and Websites settings page.

Here are the new settings.

The new privacy option allows you to “Control who can see your activity in the Friends’ Recent Activity, Friends’ Applications and Friends’ Games sections of these pages.”

The control options should be familiar enough at this point. Sharing can be set to Only Friends, Friends of Friends and Everyone.

Of course, utilizing Friends Lists can limit access in a more refined manner.

Although, I applaud for taking these steps, your data is always just a software bug or system configuration error away from being exposed. If you don;t want it out there, don’t put it on social networks.

Source: http://www.f-secure.com/weblog/archives/00001875.html

Related posts:

1. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...
2. Don't plan Federal Crimes on Facebook! There have been numerous stories recently about the fact that...
3. Beware of fake Facebook apps Facebook is warning users to avoid bogus apps that claim...

They need to be aware of the consequences of sending out seemingly innocent tweets which could still get them into deep trouble. In December 2009, a Vodafone employee was fired after his post was deemed by the company to go against fair competition. Drastic? Maybe, but it showed that even a humorous post could backfire.

Some basic rules to limit the risks posed by Twitter and other social networking sites  include:

1. Think twice before posting. Employees need to think compliance, integrity, security… then post.

2. Access URLs in tweets with care. If there is no real need to check out the site, leave it.

3. Show employees what to look out for. How to notice when someone is stalking or attempting to social engineer information.

4. Avoid confrontation on Twitter. It is a great tool for customer feedback but a disaster in resolving issues.

5. Create a policy in a language that is understood by employees. Have them sign it. There should be no excuses that they did not know what they could or could not say.

Related posts:

1. Staff Leak Military Secrets on Facebook and Twitter Are your employees ( or you ) leaking sensitive data...
2. Twitter makes security enhancements to help users Twitter has added a new service that detects malicious URLs...
3. What is the values proposition for allowing users access to social networks? What is the values proposition for allowing employees access to...

Gartner’s five social software predictions for 2010 and beyond:

• By 2014, social-networking services will replace e-mail as the primary vehicle for interpersonal communications for 20 percent of business users.
• By 2012, over 50 percent of enterprises will use activity streams that include microblogging, but stand-alone enterprise microblogging will have less than 5 percent penetration.
• Through 2012, more than 70 percent of IT-dominated social media initiatives will fail.
• Within five years, 70 percent of collaboration and communications applications designed on PCs will be modeled after user experience lessons from smartphone collaboration applications.
• Through 2015, only 25 percent of enterprises will routinely utilize social network analysis to improve performance and productivity.

What I find most interesting is the prediction that most social networking projects will fail. Hmmmm

Related posts:

1. Paper details Attack to De-Anonymize Social Network Users Interesting paper: “A Practical Attack to De-Anonymize Social Network Users.”...
2. Did Facebook CEO play fast and loose with user login data? Did you Facebook CEO play fast and loose with user...
3. Facebook poses biggest security threat to businesses According to it’s  Security Threats 2010 report published today, security...

One Twitter account, with just over 320 followers, was reportedly offered at $1,000 in an underground hacker forum. The user’s name was a simple three letter combination that might make it more valuable to criminals. Social networks are really the new battlefield and the bad guys are winning.

Source: http://www.computerworld.com/s/article/9150001/Stolen_Twitter_accounts_can_fetch_1_000

Related posts:

1. United States Department of Defense Embraces Hacker Certification Mar 01, 2010 – The U.S. Department of Defense (DoD)...
2. More on Forensics… Follow what the NOVA Information Assurance Strike Team is up...
3. Staff Leak Military Secrets on Facebook and Twitter Are your employees ( or you ) leaking sensitive data...

Are your employees ( or you ) leaking sensitive data over the social networks? This report from the UK should give you pause.

The Ministry of Defence has admitted that staff leaked secret information 16 times on social networking sites such as Facebook and Twitter over an 18-month period.

The admission comes in response to a Freedom of Information request by Lewis PR, which handles public relations for security firm F-Secure.

Lewis said the Ministry of Defence had disciplined 10 personnel, although was unable to specify individual cases.

Are your employees leaking your sensitive data via social networks? This report from the UK should give anyone pause.

Ministry of Defence staff aren’t banned from using social networks, but Lewis pointed out that the department’s code tells employees: “Remember you are a member of HM Forces/MOD civil servant. Observe the same high standard of conduct and behaviour online as would be expected of you in your professional or personal life.”

However, F-Secure said the Ministry of Defence should do more to ensure the guidelines are adhered to.

“It’s worrying that employees in sensitive positions have been sharing confidential information via Twitter and other means,” said F-Secure’s security expert Mikko Hypponen

“They might think they are confiding in friends or family when they go on Facebook. However, the recent changes in Facebook’s privacy settings might make them disclose information to the world. This is a potential security risk.”

Source: http://www.csoonline.com/article/525613/MoD_Staff_Leak_Military_Secrets_on_Facebook_and_Twitter

Related posts:

1. How to limit Twitter risks Twitter is now used by over 350 million people worldwide....
2. What is the values proposition for allowing users access to social networks? What is the values proposition for allowing employees access to...
3. Facebook, Twitter, ….Buzz? Update: Power to the people!! In response to the concerns...

As more organizations consider moving into the cloud to benefit from the evident cost savings  and focus more on their core business functions, the bad guys are also looking for the benefits.

2009 has been a notable year for malware and malicious online activity for a number of reasons and several of them relate to what is known as botnets. A zombie, or a bot, is a PC infected by malware that brings it under the remote control of a criminal. Criminals run networks that can range from thousands to millions of infected machines and they use them to power most of the cybercrime we see today including spam, DDoS, scareware, phishing, and malicious or illegal website hosting. They have a finger in every cybercriminal pie.

In the first half of the year, the Conficker worm (also known as Downadup or Kido) stole all the headlines in the malware world. Eventually the Conficker botnet was seen to deliver standard cybercriminal payloads, such as spambots and Fake AV (or scareware), much to the disappointment of some of the more hysterical commentators. Just because the outbreak received so much coverage that died away just as rapidly, don’t be fooled into thinking this threat has gone away. The Conficker Working Group, an alliance of security vendors, researchers and other commercial organisations is currently showing around 6 million unique IP addresses as appearing to be infected with this malware.

An unrelated, but important trend in 2009 was the exponential increase in the abuse of social networking providers for malicious purposes. The enormous active user populations on sites like Facebook, Twitter and MySpace prove a very attractive lure to organised online crime and its attendant money-making, bot recruitment and Fake AV pushing scams. Facebook has been abused by rogue Apps, designed to fool users into clicking links that reward the creator through pay-per-click affiliate advertising networks. It has also been used to spread malware through many means; malicious links in wall posts and messages, malware designed specifically to hijack accounts and by external compromise of legitimate Facebook Apps. The Koobface family of malware (also a botnet) has evolved over the course of 2009; it was initially spread through malicious messages and wall posts with links to fake YouTube sites punting a supposed codec in order to view the video. The codec of course was nothing of the sort and led to infection and account hijacking. Koobface now though has evolved to the point where it is fully capable of creating its own fake Facebook profile pages, complete with confirmed Gmail address, photo and biographical data. These fake accounts then set about joining networks and sending friend requests again all in a completely automated fashion.

Read more at http://countermeasures.trendmicro.eu/2010-year-of-the-zombie-cloud/

Related posts:

1. Another fake security software alert I”ve previously warned of fake security software or scareware. Here’s...
2. Fake virus alert spreads massively across Facebook Panda Security has released the following advisory: In the last...
3. Sweet!! Yourr bootyy look awseome on thiss ivdeo! Gee Thanks! I’ve been working out! …..oh wait a minute!...

How about http://www.bit.ly/12345? Not so threatening, is it?

Yet, those two links could just as easily take you to the same end. The rise of social networking  services like Twitter which limits the number of characters a user can post to 140 has made link shortening services even more popular. Services like bit.ly and tinyurl.com allows one to mask a much longer url with a fairly short one.  The risks here is that users have now grown accustomed to clicking on links and having no idea what they are clicking on. Oh I’m not so naive as to think most users actually read the entirely url before clicking. I know better. The point here is that those who chose to were able to. With link shortening services today, Cyber-criminals and spammers no longer have to go through the trouble of purchasing a nice-sounding domain name and redirecting your request to to their malicious server. It takes seconds to sign up with one of the free link shortening services and on you go.

I’m certainly not advocating against the use of such services as I use them myself to promote my blog on Twitter, Facebook and LinkedIN. I would advice that before you click on a shortened link, consider the source. How much do you trust the source? Give a little more thought before clicking.

Related posts:

1. Alert your connections if your Social Networking Account get compromised Social Network attacks are becoming more popular as daily we...
2. New Facebook Clickjacking Attack Here is a post by Stan Schroader warning users of...
3. Sweet!! Yourr bootyy look awseome on thiss ivdeo! Gee Thanks! I’ve been working out! …..oh wait a minute!...

Related posts:

1. Brevity is the soul of…..getting yourself infected with all kinds of nasties! Would you click on the link : http://www.click-here-to-give-me-access-to-all-your-computer-files.com? No? How...
2. Facebook to share your information with other sites Facebook users are expressing strong disapproval of proposed privacy changes...
3. More on Forensics… Follow what the NOVA Information Assurance Strike Team is up...