Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(May 2011) Posts

Green Energy Black Hat SEO

Posted: 27 May 2011 10:00 AM | Anonymous | no comments


Websense Security Labs Threatseeker network has detected the Black Hat SEO attack on a domain that belongs to the United Nations Environment Programme (UNEP). The domain appears to be compromised by a number of medical spam-related URLs, most of which are compromised sites themselves. As you can see...

Read more > 

Filed under:

An Apple a day promotes WikiPharmacy

Posted: 19 May 2011 07:06 PM | Mary Grace Timcang | no comments


Fake Apple Store Order Notifications have been making rounds for months now.  The volume of this particular spam campaign is not as astonishing as other past campaigns.  It is actually the exact opposite of those massive outbreaks that distribute hundreds of thousands of spam emails for a few hours and suddenly stop the next day.  Websense customers are protected from this blended attack by ACE, our Advanced Classification Engine

...

Read more > 

Filed under: ,

This Month in the Threat Webscape - April 2011

Posted: 17 May 2011 05:03 PM | Ivan Sabo | no comments


Major Hits Automattic, the company that maintains WordPress.com admitted a breach in which parts of their sensitive code could have been copied. Even though WordPress is an open source project, there are apparently bits which are not that open. We all presume that U.S. federal sites are protected the...

Read more > 

Filed under:

Spyware celebrates Google's 13th birthday!

Posted: 11 May 2011 11:53 AM | Ran Qiong | no comments


Websense Security Labs® ThreatSeeker® network has noticed a typosquatting activity targeting google.com. Typosquatting is a popular Internet behavior that generates domain names based upon misspelling famous brand names. It is often abused by scammers to host malware and phishing content on these misspelled domains. Apparently, the Anticybersquatting Consumer Protection Act(ACPA)  was enacted in 1999 to fight against any illegal intention of registering or using a domain confusingly similar to a trademark or famous name. As we know, it has been 13 years since Google was founded in1998. Scammers have taken this opportunity to spread spyware through typosquatting on google.com, claiming that you can win an iPad on Google's 13th birthday.

...

Read more > 

Filed under: ,

High court scams legal dept.

Posted: 11 May 2011 09:53 AM | Anonymous | no comments


Now this is what I call moving forward or at least being very bold: a targeted scam attack on Websense . Do not misunderstand my point though, as this is not to congratulate squatters - however, it definitely is a progression from simpler times when all one had to do to initiate a phishing attack was...

Read more > 

Filed under: ,

The Next Hotbed of Cybercrime Activity is... Canada?!?

Posted: 11 May 2011 04:25 AM | Patrik Runald | no comments


Cybercriminals are on the move again. And, this time, Canada is the prime target. IP addresses in China and Eastern Europe are highly scrutinized and undergoing intense evaluation. So hackers are on a quest to move their networks to countries, like Canada, that have better cyber reputations. It's...

Read more > 

Filed under: ,

The "real" Osama Bin Laden dead pics

Posted: 04 May 2011 03:26 PM | Mary Grace Timcang | no comments


Messages inviting users to see the "real photos" of Osama Bin Laden's remains made the rounds in the email realm today, in addition to the Facebook scams and malware recently spread via Twitter abusing the same topic. Our customers are protected from these types of blended attacks by ACE...

Read more > 

Filed under: ,