Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(August 2011) Posts

instantshift.com (Alexa ~5000) was briefly compromised

Posted: 31 Aug 2011 02:15 PM | Anonymous | no comments

The site Instantshift.com was compromised on August 28, 2011. It was then quickly fixed. InstantShift is a leading design resources community for Web designers and developers. It is worth noting that the compromise of a Web site like instantshift.com may lead to mass compromises, as many other Web site...


DigiNotar CA compromise

Posted: 30 Aug 2011 10:53 AM | Patrik Runald | 2 comment(s)

SSL certificates are used to validate the identity of a website to users. Over the weekend, it was found that DigiNotar, a Dutch Certificate Authority, had issued a rogue SSL certificate for *.google.com . Today, this was confirmed by DigiNotar in a press release . According to DigiNotar's own investigation...


Follow Me Not - Microblog SEO Study

Posted: 24 Aug 2011 08:41 AM | Anonymous | no comments

With the release of Social Web Control, Websense Security Labs ™ looks at the growing trend of how you can optimize your popularity ranking on social Web sites such as Twitter and Sina's Weibo. Marketeers are heavily tuning social Web sites for Search Engine Optimization (SEO) in a similar...


Video: Malware Hitching a Ride on WordPress

Posted: 22 Aug 2011 05:19 PM | Patrik Runald | no comments

In this week’s Websense Security Labs Video, Chris Astacio discusses a mass injection attack that is compromising a wide swath of WordPress sites through a vulnerability in TimThumb.php, a common module used in many WordPress themes. This widespread attack compromised tens of thousands of domains...


Bots resurrected - malicious spam on the rise.

Posted: 18 Aug 2011 12:24 PM | Anonymous | no comments

Websense ThreatSeeker® Network has been monitoring an increase in malicious spam activity over the last 28 days, and a recent spike which seems to be spreading quickly and in large amounts begs the suspicion that a spam bot or a bot network is awake. Some of the message subjects that we've seen...


Accelerated Contamination in Social Networks

Posted: 15 Aug 2011 05:00 PM | uwang | no comments

If you follow our blogs or you are an active user of Facebook, you must have noticed that Facebook scams are very popular. A shocking video appears on your friends' walls and a few curious clicks then trick you into filling in a fake survey and spreading the scam message unintentionally - we have...


Vulnerability in TimThumb WordPress Plugins - The Effects

Posted: 15 Aug 2011 07:45 AM | Carl Leonard | no comments

With the popularity of the WordPress blogging platform the security researchers here in Websense Security Labs are sure to sit up and take note of any reported zero day affecting the platform itself or the plugins used by blog masters.

Recently we saw a post by Mark Maunder of technology company Feedjit where he noticed a compromise occuring due to WordPress plugin - the danger though was this was a zero day issue affecting a popular image re-sizing tool often used within WordPress.  That was on the 1st August .



The Philippine Bureau of Immigration is Compromised

Posted: 09 Aug 2011 04:25 PM | Anonymous | no comments

Websense Security Labs and the Websense ThreatSeeker® Network have detected malicious emails disguised as HSBC Notifications.  A closer look at these emails, like the one you can see below, reveals that the link provided in the emails is a compromised URL belonging to the Philippine Bureau of Immigration.



Is Google+ safer than Facebook?

Posted: 02 Aug 2011 01:16 PM | Tamas Rudnai | 3 comment(s)

Google is synonymous with the Web - from the search engine through Web-based email to video sharing, they are arguably the market leader. However, this has not been the case with social networking. They were constantly searching for a new way to set up a service or an Internet portal to help people connect...

Read more >