Spyware Hunter

A community project by OpenDNS called PhishTank recently claimed to have come across phishing threats, wherein PayPal and eBay are shown atop the list of top 10 targets for April 2007. PhishTank is a site that is touted to function as a community concentrated technique to cope with phishing attempts made by the online scammers.

The members of PhishTank submit supposed phishing attacks to the site, and submitted attacks later on are assessed and voted by the community. According to the same assessment and voting PhishTank came up with its April’s 77,709 submissions, that reveals that 40,549 out of the group were identified as phishing sites. Just 845 were confirmed as null and void by the community.

PayPal and eBay are inclined to turn up at the top of lists while there is a question of phishing attacks, and it’s not any different on PhishTank. In their top 10 lists of targets, PayPal and eBay were ranked at one and two. Together, they made up more than 7,500 applicable phishes, whereas eight banks followed the 2 in the listing.

Read

It is claimed by UK legal expert that attempts in the United States to fight off the rise of spyware are not likely to have an effect on European moves to embark upon the problem. Moves to imprison spyware architects in the United States are not likely to be copied by European authorities.

Observers believe that recently a US House of Representatives subcommittee said yes to a bill that urges almost 5 years imprisonment for guilty purveyors of nasty spyware. Prior versions of the Internet Spyware Prevention Act remained unsuccessful to go by a vote in the US Senate. None-theless, escalating militancy amongst US PC users down with useless software intrusion develop this most recent effort much more possible to pass into law.

Besides the bill’s backers also claim that at risk is the reliability of the internet itself, with domestic and business computer users growingly unconfident whom to confide in a world where the thievery of private data online is widespread.

Kiran Sandford, head of IT at law firm Mishcon de Reya, was quoted as saying,

There’s no similar legislation pending in the UK or anywhere in Europe that I’m aware of. But she questions whether any such legislation is likely to be effective. Spyware is very tricky to make laws against. What happens if someone does something outside your jurisdiction, in Timbuktu or Russia? It’s going to be rather hard to apply the long arm of the law and bring them to book.

Read

Email Systems recently reported that spammers, always one step ahead, are evading filters by making use of encrypted attachments, as a result attachment spam seems to have increased in the past few months. The method is based upon the fact that several Spam systems are not able to scan inside e-mails with encrypted or password-protected attachment, and work out that they are not legal. With no rule to put a stop to such attachments, the majority of systems will send the e-mail to recipients, providing spammers a significant success to get Spam through.

Email Systems, in recent weeks, claimed to have come across a sufficient number of such Spam originating from bot-compromised hosts, with a zipped-up version of the insidious ‘Storm’ bot-loading Trojan that infected Internet users in January.

Recipients could have been capable of unintentionally unzipping the Trojan with the use of an implanted password, after being allured by many attention-grabbing subject lines, such as ‘Worm Detected!’, ‘Virus Detected!’, ‘Spyware Alert!’ and ‘Warning!’

Though spammers have been using this technique for a few months, they seem to be accelerating their efforts to utilize it, stated by Greg Miller of Email Systems. The firm had removed infinitive numbers of copies of attachment spam, which has increased from levels a tenth this volume a few months back.

Read

A lone researcher recently claimed to have accumulated adequate vulnerabilities in a range of ActiveX controls to unleash a bug each day for the month of May. Dubbing the effort the Month of ActiveX Bugs (MoAxB), the attacker, identified himself as “shinnai” scripted, in broken English, that the attempt was an effort to teach people about the risks of ActiveX controls. Though the project has already been dismissed by some researchers as copycat, but others are forewarning its detections might jeopardize Windows users.

The researcher has also written that the majority of them are easy DoS (denial-of-service vulnerabilities), no need to be worried as there are also a few code execution — but that is for the reason that MoAxB has simply a sense: to let developers know regarding the risk of making use of ActiveX controls.

After the Month of Browser Bugs in July, the Month of Kernel Bugs in November, the Month of Apple Bugs in January and the Month of PHP Bugs in March, the initiative is said to be the 5th month of every day bugs, Two other introduced projects, the Month of MySpace Bugs and the Week of Vista Bugs, were nothing but the tricks, and a week devoted to Oracle bugs was foiled.

Microsoft’s ActiveX is utilized to enhance and customize Web pages to let them be very much interactive. This technology of Microsoft is utilized for a baffling range of chores, from kicking off Microsoft’s Windows Update to integrating streaming media to a Web site.

Read

The researchers at IBM’s Internet security systems division were recently reported to have stated that the targeted attacks that makes use of flaws in famous doc file formats and carry out using tough-to-detect shell code are getting growingly all the rage menace these days. For the last twelve months, there has been a speedy boost in the quantity andvariety of shell-code execution attacks leveled at their customers, maintained by experts working with the ISS X-Force group

Amongst the kinds of files at the most laid into in the assaults are the most widespread categories of docs spread to scores of organizations nowadays, such as Microsoft Word, Excel and PowerPoint formats, plus Adobe PDF files. Persistently, the bug-ridden docs are being disseminated inside particular organizations by hackers who pose the threats as legal files being distributed within an organization using e-mail. Not like hordes of Web-borne threats, the ostensibly inoffensive docs usually does not warn of their in fact having malware code.

Researchers at the Atlanta-based ISS division asserted that in view of the fact that the threats are repeatedly disseminated from masqueraded e-mail addresses, which seems to be reliable, and exist within docs that haven’t been checked with the similar security threats as Web-borne apps in current years, end users are being victimized by the attacks in throngs.

Read

The bug that started baffling loads of Google users last Thursday is even now creating trouble despite of being company’s Personalized Home Page renamed and upgraded. The creepy-crawly is said to be causing the free service, which claims to enable users to turn Google.com into a customized portal, to revert an undecided number of pages to their default settings or to months-old versions. The majority of users pass their considerable time and exertion modifying their Google.com page with syndicated content feeds, plus with “gadget” apps, to turn it into their center for Web content, online services and apps. They were irritated.

A source acquainted with the problem was reported to have maintained that the creepy-crawly impinged on “a single digit percentage” of users of this service, which is figured in “tens of millions,” as said by company sources, which means that the figure of infected users may well vary from a minimum of 200,000 to more than a few million. Discussion forums hit the roof previous Thursday morning with information from troubled users, and Google, subsequent to making a clean breast of the trouble, didn’t proclaim it fixed unless more or less 36 hours after.

Read

Sophos has warned PC users of unsolicited emails and protect their web gateways, after finding out a spam campaign, which is said to be masquerading as an electronic postcard, however in fact makes an attempt to allure the incautious into being bug-ridden by a web-based Trojan horse.
Sophos claims to have taken over hundreds of the spam messages being disseminated that are contained with the subject line: You have received a postcard!

Rest of the body text reads as follows:

‘Hello friend !
You have just received a postcard from someone who cares about you!

If you’d like to see the rest of the message click here to receive your animated postcard!

Computer users who are tempted to go after the web link are landed to a downloadable executable file (postcard.exe), which is made out proactively by Sophos products as Zapchas-A and is developed to let remote hackers access to the bug-ridden Windows PC.

Read

Marshal, an email and Internet content security supplier, recently launched a Service Provider Edition of its MailMarshal software, along with its security offerings of a ‘new generation’ security appliance founded on its MailMarshal SMTP software. MailMarshal Service Provider Edition is said to make available MSPs and ISPs with hosted email security services, which can be modified to their customers’ particular needs.

Services delivered are comprised with email filtering, policy control, archiving and reporting and the capability of granting differing levels of administration access rights to service suppliers’ customers’ own administrators. MailMarshal SPE presents service suppliers to modify their email security services - and give different levels of administration access rights - to go with the specific needs of each customer.

The MailMarshal eIOOOO is a hard-edged email-processing platform that gives support to load balancing out of the box plus is also pre-configured with an anti-virus scanner. It is claimed to make available content security plus a protection against malware, making it perfect for firms that choose the convenience of appliance hardware however have need of all-inclusive content protection at the gateway perimeter.

The Marshal security suite is also said to supply content assessment plus security against security risks such as: spam, phishing, viruses, spyware, fraud, porn, DHA, DOS, regulatory non-compliance and intellectual property theft, says the company.

Read

Agnitum recently rolled out Outpost Security Suite Pro (OSS), which is said to be battle-hardened security against the malicious Web-borne threats to home and small-business Windows users. A complete, proactive security, Outpost Security Suite Pro is included with a single product the company’s commended personal firewall, a groundbreaking complete anti-malware engine, intelligent spam filter, tools to put a stop to illegitimate program interactivity, and self-defense protocols that stops efforts made by malware to find a way around or close down the software.

Mikhail Penkovsky, global vice-president for Marketing and Sales, was quoted as saying;

OSS provides the robust security that users expect from Agnitum. This is not only another security suite. Our broad-based proactive protection, built around one of the world’s most advanced personal firewalls, delivers efficient, low-impact protection for all users, no matter what their level of experience.

The suite is based on Agnitum’s Outpost Firewall Pro, a high-quality personal firewall that claims to give protection of over a million users globally. For the last many years, Outpost Firewall Pro has integrated anti-spyware, ID theft security and leak prevention, plus the groundbreaking community-based ImproveNet service, which claims to embed users with hardened and ready-to-use configuration regulations that is a symbol of real-world application deployments.

Read

Anchiva Systems recently announced to have united with Anti-Spyware Coalition, ASC, the global organization, which is aimed at educating end-users as to the risk of spyware. Spyware is mostly coined to detail all forms of malware and ASC has issued a guideline, which is titled as “Best Practices: Guidelines to Consider in the Evaluation of Potentially Unwanted Technologies,” that evidently characterizes the underlining technology that brings about software malware.

Anchiva Systems makes available network-based gateway continent security suites that is able to put a stop to spyware from getting into a company. Gateway-based solutions are capable of blocking increasingly perilous files because of being made download from the Internet. A few internet-borne bugs do not even need users’ action to make download to their computers.

Ari Schwartz, deputy director of CDT and coordinator of the ASC, was quoted as saying,

Our greatest asset in the fight to combat spyware and give users back control of their own computers is the concerted efforts of leaders in the anti-spyware space. We are extremely pleased to welcome Anchiva Systems into the Anti-Spyware Coalition, and look forward to drawing on their extensive expertise in the area of network-based protection.

Samuel Chen, Chief Technology Officer, was quoted as saying,

We are pleased to belong to the ASC. The ASC has been instrumental in defining what spyware is and how anti-spyware vendors should classify whether a specific code should be classified as spyware. Each week Anchiva collects thousands of potential dangers programs from its worldwide network of honey pots. The ASC guidelines make our classifications decisions easier.

Read