Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(February 2010) Posts

Blackhat SEO turns to PDF with Chile and Hawaii disasters

Posted: 28 Feb 2010 01:33 PM | Patrik Runald | no comments


Over 13% of all searches on Google looking for popular and trending topics will lead to malicious links and searching for the latest news on the earthquake in Chile and the tsunami hitting Hawaii are no exception. Both are now used to lure people into downloading fake antivirus products. Usually the...

Read more > 

Searching For Joannie Rochette Leads To Rogue AV

Posted: 26 Feb 2010 07:16 PM | WebsenseSecurityLabs |


Websense Security Labs™ ThreatSeeker™ Network has detected that the black hat Search Engine Optimization (SEO) techniques are abusing the name of an Olympic figure skater who is very popular in recent news. Joannie Rochette is a Canadian figure skater and the 2009 world silver medallist....

Read more > 

Top Secrets About Your Passwords

Posted: 24 Feb 2010 07:52 AM | Tamas Rudnai | no comments


Recent hacker activity highlights how insecure we are in the online world. Black hats keep focusing on collecting passwords in many different ways. Instead of breaking the computer security system or brute-forcing pass phrases, they use a variety of easier techniques to get our credentials. The ways...

Read more > 

Bloom Box Black SEO

Posted: 22 Feb 2010 12:22 PM | WebsenseSecurityLabs | no comments


Websense Security Labs™ ThreatSeeker™ Network has detected that search terms related to the Bloom Energy and its Bloombox Fuel Cell have become the latest target for Blackhat SEO poisoning attacks. Bloom Box is a breakthrough technology in the energy sector that could revolutionize the way...

Read more > 

The Wizard of Buzz

Posted: 16 Feb 2010 08:04 AM | Tamas Rudnai | no comments


Buzz is just a new wizard in the kingdom of Google. However, it is not hard to foresee through the crystal ball that Dorothy's journey along the yellow brick road will be full of constant attacks from the Witch of malware and her spamming monkeys. The biggest problem with Google Buzz is privacy....

Read more > 

Microsoft's Ninemsn Australia Web Site Compromised

Posted: 16 Feb 2010 04:30 AM | WebsenseSecurityLabs | no comments


Websense Security Labs™ ThreatSeeker™ Network has detected that the ninemsn support Web site (ninemsn.com.au) has been compromised and injected with malicious code. The malicious code was identified to be part of the Gumblar mass injections, and the injected code is hidden deep within the...

Read more > 

Zeus targeted attacks continue

Posted: 11 Feb 2010 04:33 AM | WebsenseSecurityLabs | no comments


Websense Security Labs™ ThreatSeeker™ Network has discovered a follow up attack on Zeus campaign targeting government departments. Its research shows that once again the campaign is targeting workers from government and military departments globally. Figure 1 - Zeus Campaign: The Websense...

Read more > 

Spammers already using Google Buzz

Posted: 11 Feb 2010 12:32 PM | WebsenseSecurityLabs | no comments


With all the buzz this week about Google Buzz, we were just waiting for malicious activity to show up on the newly launched service. We didn't quite expect it to happen this fast. Today we saw the first spam using Google Buzz to spread a message about smoking: The spammer is already following 237...

Read more > 

"Ex-Girlfriend" Facebook worm: Check!

Posted: 02 Feb 2010 11:11 AM | Defensio, the blog | no comments


Nick O'Neil of AllFacebook.com recently reported that his Facebook wall was compromised by a new worm: the "Ex-Girlfriend" worm. Using some CSS and IFrame wizardry, the worm can post on your own wall in your own name, without you knowing it. Here's an example of Nick's wall: You can protect your Facebook wall and pages from this worm by installing the Defensio Facebook application. Get started here...

Read more >