ESET Threat Blog

Did you know that what you post on Facebook can be used as evidence in a court of law? At least that is the case in the US. Ironically I found the story on an Australian web site The story at http://www.itnews.com.au/News/246329,facebook-posts-mined-for-court-case-evidence.aspx is well worth reading. It is not only your public messages … Read More…

There is a new vulnerability that affects all supported versions of Windows and some unsupported versions. For you techies the “Vulnerability in MHTML Could Allow Information Disclosure” advisory is at https://www.microsoft.com/technet/security/advisory/2501696.mspx. If you are not a techie you might want to take a look and see how much you can understand. By reading the security … Read More…

Facebook actually does have some exceptionally talented security professionals. They have almost no depth in privacy, but they have real security talent. A part of the problem is that the Facebook culture is anti-security and that is a very tough obstacle for their security professionals.
Facebook security is by marketing design. Take a look at www.facebook.com. … Read More…

Phishing attacks have grown steadily in recent years, becoming a highly profitable attack for cyber criminals. In ESET Latin America’s Laboratory, we are used to finding and informing about phishing attack outbreaks in our region. A few days ago, we found a new case of phishing, for which we investigated the effectiveness of the attack.
In … Read More…

The next AMTSO members meeting is getting pretty close…
It's being held in San Mateo on the 10th and 11th February. More information, including the preliminary agenda, on the AMTSO meetings page.
David Harley CITP FBCS CISSP
ESET Senior Research Fellow
jQuery(document).ready(function($) { window.setTimeout(‘loadLinkedin_5955()’,1000);window.setTimeout(‘loadFBLike_5955()’,1000);window.setTimeout(‘loadGoogle1_5955()’,1000);window.setTimeout(‘loadGBuzz_5955()’,1000);window.setTimeout(‘loadTwitter_5955()’,1000); }); function loadLinkedin_5955(){ jQuery(document).ready(function($) { $(‘.dd-linkedin-5955′).remove();$.getScript(‘http://platform.linkedin.com/in.js’); }); } function loadFBLike_5955(){ jQuery(document).ready(function($) { $(‘.dd-fblike-5955′).remove();$(‘.DD_FBLIKE_AJAX_5955′).attr(‘width’,’92′);$(‘.DD_FBLIKE_AJAX_5955′).attr(‘height’,’20′);$(‘.DD_FBLIKE_AJAX_5955′).attr(‘src’,'http://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fblog.eset.com%2F2011%2F01%2F23%2Famtso-members-meeting&locale=en_US&layout=button_count&action=like&width=92&height=20&colorscheme=light’); }); … Read More…

This is the 3rd volume of an ongoing Stuxnet resources blog article, supplementing our paper "Stuxnet Under the Microscope". Volume 1 is at http://blog.eset.com/?p=5731, and volume 2 is at http://blog.eset.com/?p=5913.  
Added 30th March 2011
Nice article by Mark Russinovich on Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 1. Though I don't think Stuxnet is universally … Read More…

A recent article at http://www.thinq.co.uk/2011/1/20/android-trojan-captures-credit-card-details/#ixzz1Bb8RGsWS describes how an attack against Android based phones might be able to capture your credit card information even when you speak it into the phone. The interesting thing about this proof of concept is not that the application can capture voice details, but rather that it uses a second application … Read More…

No, this is not about porn, but rather about Adobe. The newest version of Adobe’s PDF reader is called Adobe X. If you are like me, your copy of Adobe Reader (or Adobe Acrobat) did not automatically upgrade to the newest version.
Adobe X incorporates a sandboxing technology to try to help mitigate the numerous and … Read More…

During my regular reading on the main feeds on information security this week, I found a small and particular news that, I consider, invites us to think about it. It turns out that according to a post by Mickey Boodaei, CEO of Trusteer, mobile phones users are three times more likely to become victims of … Read More…

Here's a somewhat novel social engineering attack, flagged by John Leyden in The Register: a voicemail phishing scam (vishing, if you must) that threatens victims with heavy fines and even imprisonment as a result of their visiting the Wikileaks site. The attacker leaves a message including a number victims are supposed to ring to sort … Read More…