Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(May 2011) Posts

Green Energy Black Hat SEO

Posted: 27 May 2011 10:00 AM | Anonymous | no comments

Websense Security Labs Threatseeker network has detected the Black Hat SEO attack on a domain that belongs to the United Nations Environment Programme (UNEP). The domain appears to be compromised by a number of medical spam-related URLs, most of which are compromised sites themselves. As you can see...


OMG CNN Confirmed Osama Is Alive - Scam spreads on Twitter

Posted: 23 May 2011 03:30 PM | Carl Leonard | no comments

You may be mislead into thinking that the US news organisation CNN has revealed that Osama Bin Laden is alive, if you are seeing Tweets right now from Twitter users.


Hundreds of Tweets per second are currently making statements such as:

    OMG CNN confirmed that they found Osama alive still !!!



An Apple a day promotes WikiPharmacy

Posted: 19 May 2011 07:06 PM | Anonymous | no comments

Fake Apple Store Order Notifications have been making rounds for months now.  The volume of this particular spam campaign is not as astonishing as other past campaigns.  It is actually the exact opposite of those massive outbreaks that distribute hundreds of thousands of spam emails for a few hours and suddenly stop the next day.  Websense customers are protected from this blended attack by ACE, our Advanced Classification Engine



This Month in the Threat Webscape - April 2011

Posted: 17 May 2011 05:03 PM | Anonymous | no comments

Major Hits Automattic, the company that maintains WordPress.com admitted a breach in which parts of their sensitive code could have been copied. Even though WordPress is an open source project, there are apparently bits which are not that open. We all presume that U.S. federal sites are protected the...


Spyware celebrates Google's 13th birthday!

Posted: 11 May 2011 11:53 AM | Ran Qiong | no comments

Websense Security Labs® ThreatSeeker® network has noticed a typosquatting activity targeting google.com. Typosquatting is a popular Internet behavior that generates domain names based upon misspelling famous brand names. It is often abused by scammers to host malware and phishing content on these misspelled domains. Apparently, the Anticybersquatting Consumer Protection Act(ACPA)  was enacted in 1999 to fight against any illegal intention of registering or using a domain confusingly similar to a trademark or famous name. As we know, it has been 13 years since Google was founded in1998. Scammers have taken this opportunity to spread spyware through typosquatting on google.com, claiming that you can win an iPad on Google's 13th birthday.



High court scams legal dept.

Posted: 11 May 2011 09:53 AM | Anonymous | no comments

Now this is what I call moving forward or at least being very bold: a targeted scam attack on Websense . Do not misunderstand my point though, as this is not to congratulate squatters - however, it definitely is a progression from simpler times when all one had to do to initiate a phishing attack was...


The Next Hotbed of Cybercrime Activity is... Canada?!?

Posted: 11 May 2011 04:25 AM | Patrik Runald | no comments

Cybercriminals are on the move again. And, this time, Canada is the prime target. IP addresses in China and Eastern Europe are highly scrutinized and undergoing intense evaluation. So hackers are on a quest to move their networks to countries, like Canada, that have better cyber reputations. It's...


Administrators and users beware - Fake Patch Tuesday Alert!

Posted: 09 May 2011 04:07 PM | Anonymous | no comments

Websense Security Labs ™ ThreatSeeker® network has noticed a low-volume threat circulating as a Microsoft update with a very low detection. This attack ties in almost perfectly with the release of patches on the upcoming " Patch Tuesday " from Microsoft. The attack lures the unsuspecting...


The "real" Osama Bin Laden dead pics

Posted: 04 May 2011 03:26 PM | Anonymous | no comments

Messages inviting users to see the "real photos" of Osama Bin Laden's remains made the rounds in the email realm today, in addition to the Facebook scams and malware recently spread via Twitter abusing the same topic. Our customers are protected from these types of blended attacks by ACE...

Read more >