Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(June 2011) Posts

XSS Attack on Sina MicroBlog

Posted: 29 Jun 2011 06:48 AM | uwang | no comments


If you have not heard of Sina Weibo in China, you are behind the times. Sina Weibo is the most popular microblog service in China, with more than 100 million registered customers. Just yesterday (28 June), Sina Weibo was attacked through an XSS exploit: more than 30,000 high profile customers were affected...

Read more > 

Malware campaign uses direct injection of Java exploit code

Posted: 20 Jun 2011 10:19 AM | Armin Buescher | no comments


Our ThreatSeeker® Network is constantly on the lookout to protect our customers from malicious attacks. Recently, it has detected a Rogue AV campaign that directly attacks the user's system instead of first redirecting to a dedicated attack server. Websense customers are protected from this attack...

Read more > 

Filed under: ,

Instant Exploits?

Posted: 14 Jun 2011 08:02 PM | Anonymous | no comments


Earlier today, Google announced a number of new technologies as part of their Google Inside Search Launch ( http://www.google.com/insidesearch/ ). One of the more interesting is their idea to speed up the W eb with something called "Instant Pages." The basic idea is that they are taking their...

Read more > 

Filed under: ,

Fake Facebook site threatening Thai population

Posted: 08 Jun 2011 01:37 PM | Tamas Rudnai | no comments


Do you want to be my friend? I will add you on FaceBook. This kind of conversation is quite common nowadays, and is reasonable safe in most cases -- not in Thailand!

 

Websense ThreatSeeker Network found a fake FaceBook site in Thailand. The web page looks much different than the popular social networking portal, so it is unlikely that the site owner would use usual social engineering tricks to steal credentials. However, as we will see the site does hosting some malicious applications to their unaware users.

...

Read more > 

Filed under: