Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(July 2011) Posts

Websense Researchers at Black Hat USA 2011

Posted: 29 Jul 2011 09:36 AM | Anonymous | no comments

This week, some of the members of the Websense Security Labs™ will be attending Black Hat USA 2011 in Las Vegas, Nevada. Blackhat is arguably the largest and most important Internet security conference in the world. Armin Beuscher and I (Stephan Chenette) will be in the Black Hat Arsenal demo area...


Hands-on Training with the Security Labs

Posted: 28 Jul 2011 08:00 AM | Anonymous | no comments

Websense Security Labs™ just completed a two-day training event with some of our TRITON™ advisory board customers. We showed attendees some of the internal and external tools we use to analyze various Web threats, including PDF, JAR, and SWF exploits. We also showed attendees how to deobfuscate...


Has my credit card really been blocked?

Posted: 28 Jul 2011 02:18 PM | Anonymous | no comments

Websense ThreatSeeker® Network has been monitoring and tracking a recent wave of email attacks being spread and aimed at credit card users and holders. The attack comes in the form of a short email with fairly detailed text alerting the recipient that their credit card has been blocked, and that...


Sophisticated injection abuses the Twitter trend service

Posted: 27 Jul 2011 08:41 AM | uwang | no comments

About three years ago code injection was very simple, where most of them were just an iFrame tag. Hackers then started to insert a piece of script code to obfuscate the malicious code, yet the goal still remains the same – to insert an iFrame tag or script tag to redirect vistors to another site...


Online shops and robots.txt help to leak personal data

Posted: 26 Jul 2011 01:38 PM | Anonymous | no comments

Two major data leaks occurred in Russia over the past several days. Short Message Service (SMS) text messages and personal Information about people who ordered goods from Russian and Ukranian online shops (including sex shops) have been available for public viewing. Last week approximately 8000 private...


David Beckham's Web site hacked

Posted: 11 Jul 2011 05:50 AM | Anonymous | no comments

David Beckham's family had a baby girl this weekend, the fourth child in their family. CONGRATULATIONS! Being a very famous football player, Beckham's Web site has been visited by lots of fans and has a relatively high Alexa rank, especially after this weekend: There are bad fans as well: as...


Does Mac OS X Need Protection?

Posted: 07 Jul 2011 03:00 PM | Anonymous | 3 comment(s)

Over the last couple of months, the concern of whether Mac OS X has become a greater target for attackers has grown, and rightfully so. The Mac OS X market share has steadily increased, and is currently well above 10 percent . From the attackers standpoint, what it always comes down to is dollars. At...


Jailbreakme.com 3 and security implications

Posted: 07 Jul 2011 10:29 AM | Patrik Runald | no comments

Jailbreakme.com version 3 went public yesterday and offers, again, a simple way to jailbreak an iOS device. And it's very, very simple. In fact, in our testing the jailbreak doesn't take more than 20 seconds from start to finish and works flawlessly. It doesn't crash your browser, and it...

Read more >