Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(June 2011) Posts

Blackhat SEO poisoning leads to Blackhole Exploit Kit

Posted: 29 Jun 2011 06:19 PM | Anonymous | no comments

Instead of blogging about another case of Blackhat SEO poisoning (yes, Blackhat SEO poisoning does happen every day), I'm going to focus more on what happens after clicking on the poisoned search result. Although in the majority of cases unpatched users are exploited, I want to show how sometimes...


XSS Attack on Sina MicroBlog

Posted: 29 Jun 2011 06:48 AM | uwang | no comments

If you have not heard of Sina Weibo in China, you are behind the times. Sina Weibo is the most popular microblog service in China, with more than 100 million registered customers. Just yesterday (28 June), Sina Weibo was attacked through an XSS exploit: more than 30,000 high profile customers were affected...


Blackhat Google SEO Poisoning of keyword "patti labelle"

Posted: 28 Jun 2011 07:22 PM | Anonymous | 1 comment(s)

Blackhat SEO poisoning is something we have blogged about numerous times in the past [ 1 ] [ 2 ] [ 3 ]. If you aren't familiar with the topic here are the basics: Attackers that control botnets have the ability to poison search engine results to point to pages they own or that they have compromised...


Malware campaign uses direct injection of Java exploit code

Posted: 20 Jun 2011 10:19 AM | Anonymous | no comments

Our ThreatSeeker® Network is constantly on the lookout to protect our customers from malicious attacks. Recently, it has detected a Rogue AV campaign that directly attacks the user's system instead of first redirecting to a dedicated attack server. Websense customers are protected from this attack...


CVE-2011-2110 for Adobe Flash Player being exploited in the wild

Posted: 17 Jun 2011 08:30 PM | Patrik Runald | no comments

Earlier this week Adobe released security updates for several of their products and now the CVE-2011-2110 vulnerability in Flash Player is actively being used in drive-by and spear-phishing attacks. Websense customers are protected from this scam by ACE, our Advanced Classification Engine . The vulnerability...


Instant Exploits?

Posted: 14 Jun 2011 08:02 PM | Anonymous | no comments

Earlier today, Google announced a number of new technologies as part of their Google Inside Search Launch ( http://www.google.com/insidesearch/ ). One of the more interesting is their idea to speed up the W eb with something called "Instant Pages." The basic idea is that they are taking their...


Fake Facebook site threatening Thai population

Posted: 08 Jun 2011 01:37 PM | Tamas Rudnai | no comments

Do you want to be my friend? I will add you on FaceBook. This kind of conversation is quite common nowadays, and is reasonable safe in most cases -- not in Thailand!


Websense ThreatSeeker Network found a fake FaceBook site in Thailand. The web page looks much different than the popular social networking portal, so it is unlikely that the site owner would use usual social engineering tricks to steal credentials. However, as we will see the site does hosting some malicious applications to their unaware users.


Read more >