McKenzie-Thorpe

February 18, 2008
Daniel Booth

Spam emails claiming to contain video reports on the US election as a lure to download malicious software are bombarding computers worldwide.

The malware onslaught has been spotted by security experts at McAfee, who detected a rise in US elections-themed spam since the Super Tuesday primaries, which took place on 15 February 2008.

The spam emails have the subject heading "Hillary Clinton Full Video !!!" and contain the message: "Hillary Clinton visited her campaign headquarters in Virginia and did satellite interviews, looking beyond Tuesday’s trio of contests and touting the importance of a March 4 vote in Ohio".

Clicking the link doesn’t take you to a video showing Clinton on the campaign trail, but redirects your browser to a malicious URL that infects your computer with malware.

The attack is suspected to originate from the notorious Russian Business Network, one of the world’s biggest cybercrime organisations and operators of the infamous Storm botnet.

www.mcafee.com

Tags: Internet Security by stevecas
No Comments »

February 13, 2008
Web User

Hoax Valentine’s messages that aim to infect your PC and turn it into a bot are circulating already.

Security firms are warning that cybercriminals are attempting to infect the PCs of innocent surfers by convincing them that they have a secret admirer.

Anyone who opens the email is putting themselves at risk of losing their own personal information, as well as allowing hackers to remotely control the PC for their own ends.

The emails have subject lines such as "Love Rose", "Rockin’ Valentine" and "Just You" and contain a file called valentine.exe.

Greg Day, security analyst at McAfee, said: "This virus will try to steal the personal information you keep on your PC, try to bring down your security defences and sign your machine up to an online army.

"This means that your PC can be used to blast out millions of junk emails and to carry out denial of service attacks – by flooding a computer, system or website with so much information that it brings it down," continued Day.

Another security firm warned that sometimes the attachment isn’t actually the infected file itself, but a piece of code that directs your PC to find the malware online.

"The advantage of this method is that since it’s a hosted file, they can change the malicious code as and when they want. This enables them to churn out variants at will without having to take the pains of resending the emails again," said Govind Rammurthy of MicroWorld Technologies.

This new attack is linked to the Storm Trojan, which first emerged more than a year ago and attempts to use events such as Christmas, the New Year and Easter to spread itself.

"Like other threats, the Storm Worm continues to use world events to successfully dupe users – from New Year Celebrations in December 2006 to the European floods in April last year and now this – so we all need to stay vigilant," said McAfee’s Day.

Another security firm, F-Secure, warned that the gang behind the Storm worm would carry on beyond Valentine’s Day.

"They’ll keep on doing it as long as people keep falling for it," said F-Secure’s Wing Fei Chia.

It’s not the first time Valentine-related malware has been spotted this year either. Similar emails were circulating almost a month before 14 February.

Tags: Internet Security by stevecas
No Comments »

Pharming concept becomes reality
January 23, 2008
Web User

The theory of wireless ‘pharming’ attacks, which was outlined by security firm Symantec, has been put into practice by cybercriminals.

What’s more, the attacks are more damaging than Symantec thought when it first stumbled on the concept last year.

The attack involves changing the DNS (domain name system) server settings on the victim’s home broadband router. If the DNS server is altered, cybercriminals can direct your browser to any web page they wish.

"We recently saw instances of actual attackers attempting a basic version of drive-by pharming," wrote Zulfikar Ramzan on the Symantec blog.

He said that a particular brand of router sold in Mexico was even more vulnerable to attack than first imagined.

"The first real-life instance of drive-by pharming that we witnessed was even more devastating than the original concept we envisioned a while back, because this particular brand of router has a more substantial vulnerability that makes the attack far more potent," he said.

Typically, routers are password-protected but few users actually know of this, let alone bother to change it. Since the default passwords are easy to find out by doing a simple web search, if a cybercriminal knows what type of router you have, they can find out the password and hack into it.

However, the Mexican routers in question are not even password-protected.

Ramzan recommended that everyone whose router password had not been changed since it was set up should make sure they do so now.

"Also, I’d recommend that you reset the router anyway before changing your password. This step ensures that if you have become a victim already, you can start with a clean slate as the DNS server settings are also restored to the default during a hard reset," Ramzan said.

www.symantec.com

Tags: Internet Security by stevecas
No Comments »

Natwest top target for phishers
January 22, 2008
Web User

Natwest is the bank that most phishing gangs impersonate when trying to get UK surfers to part with their banking details, according to research.

ClearMyMail, a company that specialises in anti-spam solutions, said that 41 per cent of phishing emails it intercepted in December 2007 were disguised as messages from Natwest.

Citibank, HSBC and Abbey also featured highly on the list, as well as PayPal, eBay’s payments arm. According to the company, the emails look very convincing.

Dan Field, managing director of ClearMyMail said: "The phishing emails used are very well constructed and often look exactly like a legitimate message from the bank."

Field also warned that the methods the phishing gangs used had become more sophisticated.

"People have to remain vigilant as it has almost got to the stage where cybercrooks are building up a portfolio of email databases containing contact information that is profiled to fit a certain bank or building society’s typical customer in order to improve the success rate of their fraudulent attacks," he said.

www.clearmymail.com/phishing

Tags: Internet Security by stevecas
No Comments »

Hackers start 2008 with a Storm
January 2, 2008
Web User

Security experts have advised emailers to make it their new year’s resolution to take computer security more seriously in 2008.

The warning comes as hackers spread new versions of the Dorf worm (also known as Storm) disguised as Happy New Year e-cards.

Rogue emails contain links to websites containing malware, and have used a wide variety of seasonal subject lines, including: A brand New Year 2008, Blasting New Year 2008, Dance to the New 2008 Year tune, Happy New Year 2008 to the one I love, New Year 2008 Wishes and The New Year has arrived.

Previously, the worm spread via emails linking to an apparent Santa Claus-themed striptease. Once the worm has infected a computer it lets others access the computer, downloads code from the internet and reduces a system’s security.

Graham Cluley, senior technology consultant at Sophos, said: “Many people will be returning to their desks this morning after a lengthy break for Christmas and New Year to a brimming bundle of unread emails.”

“The danger is that the holiday hangover will make them less careful about which messages they click on. Anyone clicking on a mystery weblink or an unsolicited email attachment is putting their computer at risk of being taken over by hackers for illegal ends. Everyone needs to make their New Year’s resolution to take computer security more seriously in 2008.”

Tags: Internet Security by stevecas
No Comments »

4 steps to protect your computer

Step 1. Keep your firewall turned on

What is a firewall?

A firewall helps protect your computer from hackers who might try to delete information, crash your computer, or even steal your passwords or credit card numbers. Make sure your firewall is always turned on.

How to turn on your firewall

How to choose a firewall

Learn more about firewalls for your operating system

Step 2. Keep your operating system up-to-date

What are operating system updates?

High priority updates are critical to the security and reliability of your computer. They offer the latest protection against malicious online activities. Microsoft provides new updates, as necessary, on the second Tuesday of the month.

How to update your operating system

Microsoft security updates: Frequently asked questions

Learn about using Microsoft Update

Go to Microsoft Update

Step 3. Use updated antivirus software

What is antivirus software?

Viruses and spyware are two kinds of usually malicious software that you need to protect your computer against. You need antivirus technology to help prevent viruses, and you need to keep it regularly updated.

How to get antivirus software

Get regular antivirus scanning with Windows Live OneCare

Get a free safety scan

Learn about viruses

Learn more about virus protection for your operating system

Step 4. Use updated antispyware technology

What is antispyware software?

Viruses and spyware are two kinds of usually malicious software that you need to protect your computer against. You need antispyware technology to help prevent spyware, and you need to keep it regularly updated.

Get antispyware technology

Use Windows Defender, free antispyware for Windows XP SP2

Learn about spyware

Learn more about spyware protection for your operating system

---

Firewall Security, Security Updates, Antivirus & Antispyware Software

Tags: Internet Security, IT Solutions, Information by stevecas
No Comments »

September 22, 2007
Ben Camm-Jones

The convenience of being able to organise mortgage repayments as well as transferring money into the grandchildren’s’ accounts for their birthdays, all from the comfort of our home is seemingly appealing to a greater number of people in the UK.
More of us are relying on the internet to do our banking, according to research from the Association of Payment and Clearing Services (APACS) and it is the older generation, not the whizz-kids, who are driving this trend.

Though the number of adults who do their banking online has shot up 174 per cent in the last five years, it is the over-55s who are really embracing the world of virtual money-management with a 350 per cent increase.

Sandra Quinn, director of communications at APACS, said: “The greatest proportion of new internet bankers are over 55s. As a group they have come to embrace the ease and efficiency that online banking offers.”

However, a poll of visitors to www.webuser.co.uk suggests that many still aren’t convinced by online banking, and it seems they may have good reason. Of 442 votes, nearly a quarter were cast by people who said that they did not bank online at all.
And one of the reasons that people may steer clear of online banks is that they don’t offer the same level of customer service, according to one company.

Transversal compared the service offered by several major internet banks with that offered by their telephone counterparts. The results suggest that even simple queries that take a few minutes to answer over the phone can take much longer when dealt with online.

One of the major problems for customers, said Davin Yap, chief executive of Transversal, was that the websites contained a lot of unnecessary information, which meant that it was hard to find what they were looking for.

“While previously online customers have had to cope with a lack of information we’re now seeing more content - but this makes finding the right answer as difficult as looking for a needle in a haystack.

When online goes offline
A major selling point of any online bank should be that it is incredibly convenient, but one of the major disadvantages of the online-only model, such as that operated by Egg, is that if there is any kind of problem with the internet connection, everything grinds to a halt.

On 23 August this year, Egg suffered a technical problem which meant the website was offline for several hours. Though an Egg spokeswoman was at pains to point out that customers could still get through on the telephone, the inconvenience of the experience could prove to be very off-putting to the customer, one analyst warned.

Martin Stern, head of market research firm Keynote UK said: “It is imperative that a company whose total business model is based on online presence manages to maintain consistent website performance.

“Given the much-lower operating costs of a branch-free model, their margins should be able to fund the building of a world-class online infrastructure,” he said.

More recently Northern Rock was subjected to some harsh criticism after a rush on both the bricks-and-mortar and online branch of the bank when news of financial troubles hit the headlines.

“Comprehensive testing is fundamental to ensuring that a website is capable of handling the strain of peaks in users. At best, website failure is tolerated by users, but even then it is likely the company will have damaged their brand,” said Deri Jones of web application provider SciVisum.

Security concerns
The question of security is integral to any online banking offering, and with a House of Lords Select Committee describing the web as the “wild west”, it is easy to see why people could be put off.

But a recent survey conducted by Lloyds TSB found many online bankers aren’t that concerned, with more than half of respondents saying that they weren’t bothered by internet banking fraud.

According to the House of Lords Science and Technology Committee, many people expect the banks to be the sole guardians of security, an idea reinforced by the government’s recommendation earlier this year that online fraud be reported to the banks rather than the police.

Lloyds TSB’s Ian Larkin cautioned customers who thought that security was not their responsibility.

“As a bank, we do everything in our power to keep fraudsters at bay by making sure our online security is second to none. But our customers also have a part to play in the fight against online crime,” he said.

Convenience and safety
Barclays is one bank aiming to lead the way in providing the most convenient and secure online banking facilities for its customers. As well as allowing its customers to check their balance using their mobile phones, it was the first to introduce a chip-and-pin device for customers to use at home to help them make totally secure online transactions.

Though other banks have since followed Barclays’ lead, it won praise from one security company for its innovative approach to keeping customers’ money secure.

“Consumer confidence in online transactions and online banking has been waning and better safeguards, such as biometrics or smartcards needs to be considered by other banks,” said Raimund Genes of Trend Micro.

Another bank that has embraced the latest technology in an attempt to offer maximum convenience to its customers is First Direct.

iPhone users will be able to “seamlessly” connect to the First Direct website, according to the company, and will benefit from the device’s touchscreen and fully-functional web browser.
Chris Pilling, chief executive of First Direct, said: “We currently have over 875,000 internet banking users, and by working with the iPhone we will be giving our customers the opportunity of doing their banking when, where and how they want to.”

Tags: Internet Security by stevecas
No Comments »

Click Fraud Index?

Derived using average threat level across all industries and keywords monitored by the Click Fraud Network?. Threat Level is identified as having a high attribute rating score as measured by the Click Forensics rating engine using data provided by members of the Click Fraud Network?

The Click Fraud Index? monitors and reports on data gathered from the Click Fraud Network?, which more than 4,000 online advertisers and their agencies have joined. The Network provides statistically significant pay-per-click data collected from online advertising campaigns for both large and small companies.

Key findings from data reported for Q2 2007 include:

• The overall industry average click fraud rate was 15.8 percent for Q2 2007. This is an increase from 14.1 percent for the same quarter in 2006 and 14.8 percent for Q1 2007.
• The average click fraud rate of PPC advertisements appearing on search engine content networks, including Google AdSense and the Yahoo Publisher Network, was 25.6 percent. That?s up from 21.9 percent for Q1 2007 and 19.2 percent for Q4 of 2006.
• Traffic from botnets doubled from Q1 to Q2 2007 and contributed significantly to the increase in click fraud rates.
• In Q2 2007, the greatest percentage of click fraud originating from countries outside North America came from France (5.1 percent), China (3.2 percent) and Australia (3 percent).

?We?re not surprised to see the industry average click fraud rate climb this quarter as a result of botnet activity,? said Robert Hansen, CEO of SecTheory and one of the industry?s leading experts in online security threats. ?Our clients are well aware that botnet activity is on the rise and that botnets are being used for a variety of online fraud activities, including click fraud.?

The FBI recently reported that botnets ? which are used to facilitate crimes, such as spam, identity theft, denial of service attacks, phishing, spyware distribution and now click fraud ? have infiltrated more than 1 million U.S. computers. Their sophistication and growing numbers are making it harder for search engines to identify click fraud originating from these sources ? especially when they lack the crucial data needed from the advertiser web sites.

?Click fraud has become the new spam and it?s clearly a problem that is getting worse, not better,? said Tom Cuthbert, president and CEO of Click Forensics, Inc. ?A significant percentage of today?s click fraud traffic can be attributed to two growing areas of concern for search advertisers ? traffic that comes from botnets and from parked domains or made-for-ad sites. Advertisers running campaigns on content networks are especially vulnerable as they are increasingly targets of this growing pool of savvy fraudsters.?

The Click Fraud Index publishes data collected from the Click Fraud Network, the industry?s first independent third-party click fraud detection service dedicated to helping companies more accurately monitor their online advertising campaigns for pay-per-click fraud. Click fraud data is tracked and published on a quarterly basis for specific search providers, industries and trends. The service is unique in that it monitors online campaigns for click fraud by correlating data collected from search provider campaigns and the advertisers? own web sites ? providing the industry?s most accurate view of click fraud to date.

Tags: Internet Security, Information by stevecas
No Comments »

After being available only a short time in major computer retail outlets, Spyware Doctor and Registry Mechanic, are flying off the shelves confirming their popularity among retail consumers and analysts around the world. Look out for them when you are next in store or for more information now about PC Tools’ multi award-winning consumer products, and a FREE SCAN, check out the Consumer Products page.

 

Tags: Internet Security by stevecas
No Comments »

Pronounced “fishing,” it is a scam to steal valuable information such as credit card and social security numbers, user IDs and passwords. Also known as “brand spoofing,” an official-looking e-mail is sent to potential victims pretending to be from their ISP, bank or retail establishment. E-mails can be sent to people on selected lists or on any list, expecting that some percentage of recipients will actually have an account with the real organization.

E-Mail Is the “Bait”

The e-mail states that due to internal accounting errors or some other pretext, certain information must be updated to continue your service. A link in the message directs the user to a Web page that asks for financial information. The page looks genuine, because it is easy to fake a valid Web site. Any HTML page on the Web can be copied and modified to suit the phishing scheme.

Anyone Can Phish

A “phishing kit” is a set of software tools that help the novice phisher imitate a target Web site and make mass mailings. It may even include lists of e-mail addresses. How thoughtful of people to create these kits.

Spear phishing is more targeted and personal. The e-mail supposedly comes from someone in the organization everyone knows such as the head of human resources. It could also come from someone not known by name, but with a title of authority such as a LAN administrator. Once one employee falls for the scheme and divulges sensitive information, it can be used to gain access to more of the company’s resources.

If you need help contact Steve Dunton at
duntonsr@mckenzie-thorpe.com

Tags: Internet Security by stevecas
No Comments »