ESET Threat Blog

In addition to recently getting a Droid 2, I purchased a Motorola H17txt Bluetooth headset. When used with a Blackberry or an Android based phone you can download and install an application called MotoSpeak that will read text messages and emails through the H17TXT. Before you go looking for such a headset be warned, there … Read More…

You have to be a real cool cat to get into the Cambridge Who’s Who registry. A few months ago I received a spam message from whoswhopublication@gmail.com.  A legitimate Who’s Who organization is very unlikely to be using a Gmail address and they wouldn’t have sent the email to AskESET. Here’s the email:
You were … Read More…

I'm distressed to note that Facebook is suing a teacher's community startup over its intention to use the name Teachbook, having already persuaded a site calling itself Placebook to switch to the name TraceTrip.
The issue has arisen over alleged "trademark infringement, trademark dilution and unfair competition." So I guess Mark Zuckerberg, the sensitive soul who owns … Read More…

You may have received an email message that looks something like this. (ESET was just asked about it – thanks to Chris Dale for passing it on.)
Please note: this is, if not an out-and-out hoax, a very misleading message. Don't act upon it until you've read the rest of this article.
REMEMBER: Cell Phone Numbers Go … Read More…

In my ever-widening circle of anti-cybercrime methodology this particular approach to attribution of the criminals looting the free world makes me particularly gleeful and I can’t wait to spread the good news:

Security company HBGary today released an open source tool to digitally fingerprint malicious code and help identify the source of the malware. The … Read More…

Time and time again security experts warn you not to share your password with anyone, yet sites like Facebook are always encouraging you to give them the password of an account that is not a Facebook account… your email account.
You’ve probably seen the screen shot below on your Facebook friends page. It is asking you … Read More…

[Here's a somewhat free translation of a blog by my colleague Josep Albors on the recently announced issue with .DLL (Dynamic Link Library). You can find the original here. ]

Scarcely had we got our breath back mainly after Microsoft  addressed a serious vulnerability in handling .LNK (shortcut) files, before researcher HD Moore made public a serious … Read More…

The next meeting of AMTSO (the Anti-Malware Testing Standards Organization) will be held in Munich on the 21st and 22nd October. Details of the venue, registration and so on are available on the AMTSO web page.
The preliminary Munich Meeting Agenda has also been published, That may look like the sort of dry heads-down- and-generate-some-useful-documents work that … Read More…

When I first got my Droid I went to set up my security. The first thing I do with a new mobile phone is set it up to require a password to unlock the device. I also set a timeout so that after a few minutes of inactivity the phone will automatically lock itself. If … Read More…

Adobe has just released an update for 20 vulnerabilities in Shockwave Player, most of which could allow an attacker to execute malicious code. The bulletin APSB10-20 – Security update available for Shockwave Player – refers.
According to Jeremy Kirk's Macworld report and the Adobe advisory, the vulnerabilities affect both Windows and OS X versions up to version … Read More…