Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(February 2010) Posts

Searching For Joannie Rochette Leads To Rogue AV

Posted: 26 Feb 2010 07:16 PM | WebsenseSecurityLabs |


Websense Security Labs™ ThreatSeeker™ Network has detected that the black hat Search Engine Optimization (SEO) techniques are abusing the name of an Olympic figure skater who is very popular in recent news. Joannie Rochette is a Canadian figure skater and the 2009 world silver medallist....

Read more > 

Filed under: ,

Top Secrets About Your Passwords

Posted: 24 Feb 2010 07:52 AM | Tamas Rudnai | no comments


Recent hacker activity highlights how insecure we are in the online world. Black hats keep focusing on collecting passwords in many different ways. Instead of breaking the computer security system or brute-forcing pass phrases, they use a variety of easier techniques to get our credentials. The ways...

Read more > 

Filed under: ,

Bloom Box Black SEO

Posted: 22 Feb 2010 12:22 PM | WebsenseSecurityLabs | no comments


Websense Security Labs™ ThreatSeeker™ Network has detected that search terms related to the Bloom Energy and its Bloombox Fuel Cell have become the latest target for Blackhat SEO poisoning attacks. Bloom Box is a breakthrough technology in the energy sector that could revolutionize the way...

Read more > 

Filed under: ,

The Wizard of Buzz

Posted: 16 Feb 2010 08:04 AM | Tamas Rudnai | no comments


Buzz is just a new wizard in the kingdom of Google. However, it is not hard to foresee through the crystal ball that Dorothy's journey along the yellow brick road will be full of constant attacks from the Witch of malware and her spamming monkeys. The biggest problem with Google Buzz is privacy....

Read more > 

Filed under:

Microsoft's Ninemsn Australia Web Site Compromised

Posted: 16 Feb 2010 04:30 AM | WebsenseSecurityLabs | no comments


Websense Security Labs™ ThreatSeeker™ Network has detected that the ninemsn support Web site (ninemsn.com.au) has been compromised and injected with malicious code. The malicious code was identified to be part of the Gumblar mass injections, and the injected code is hidden deep within the...

Read more > 

Filed under: ,

Zeus targeted attacks continue

Posted: 11 Feb 2010 04:33 AM | WebsenseSecurityLabs | no comments


Websense Security Labs™ ThreatSeeker™ Network has discovered a follow up attack on Zeus campaign targeting government departments. Its research shows that once again the campaign is targeting workers from government and military departments globally. Figure 1 - Zeus Campaign: The Websense...

Read more > 

Filed under: ,

Spammers already using Google Buzz

Posted: 11 Feb 2010 12:32 PM | WebsenseSecurityLabs | no comments


With all the buzz this week about Google Buzz, we were just waiting for malicious activity to show up on the newly launched service. We didn't quite expect it to happen this fast. Today we saw the first spam using Google Buzz to spread a message about smoking: The spammer is already following 237...

Read more > 

Filed under: ,

"Ex-Girlfriend" Facebook worm: Check!

Posted: 02 Feb 2010 11:11 AM | Defensio, the blog | no comments


Nick O'Neil of AllFacebook.com recently reported that his Facebook wall was compromised by a new worm: the "Ex-Girlfriend" worm. Using some CSS and IFrame wizardry, the worm can post on your own wall in your own name, without you knowing it. Here's an example of Nick's wall: You can protect your Facebook wall and pages from this worm by installing the Defensio Facebook application. Get started here...

Read more > 

Filed under: , , ,