Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(August 2011) Posts

DigiNotar CA compromise

Posted: 30 Aug 2011 10:53 AM | Patrik Runald | 2 comment(s)


SSL certificates are used to validate the identity of a website to users. Over the weekend, it was found that DigiNotar, a Dutch Certificate Authority, had issued a rogue SSL certificate for *.google.com . Today, this was confirmed by DigiNotar in a press release . According to DigiNotar's own investigation...

Read more > 

Filed under:

Transocean oil/gas rig contractor compromised (deepwater.com) - UPDATE: NOW FIXED

Posted: 25 Aug 2011 04:20 AM | Elad Sharf | no comments


Transocean , one of the world's biggest offshore drilling contractors, is currently compromised: its main Web site at deepwater.com is hosting malicious exploit code. Recently, Transocean has been implicated in the Deepwater Horizon oil spill resulting from the explosion of one of its oil rigs in...

Read more > 

Filed under: , ,

Follow Me Not - Microblog SEO Study

Posted: 24 Aug 2011 08:41 AM | Elson Lai | no comments


With the release of Social Web Control, Websense Security Labs ™ looks at the growing trend of how you can optimize your popularity ranking on social Web sites such as Twitter and Sina's Weibo. Marketeers are heavily tuning social Web sites for Search Engine Optimization (SEO) in a similar...

Read more > 

Video: Malware Hitching a Ride on WordPress

Posted: 22 Aug 2011 05:19 PM | Patrik Runald | no comments


In this week’s Websense Security Labs Video, Chris Astacio discusses a mass injection attack that is compromising a wide swath of WordPress sites through a vulnerability in TimThumb.php, a common module used in many WordPress themes. This widespread attack compromised tens of thousands of domains...

Read more > 

Filed under:

Bots resurrected - malicious spam on the rise.

Posted: 18 Aug 2011 12:24 PM | Anonymous | no comments


Websense ThreatSeeker® Network has been monitoring an increase in malicious spam activity over the last 28 days, and a recent spike which seems to be spreading quickly and in large amounts begs the suspicion that a spam bot or a bot network is awake. Some of the message subjects that we've seen...

Read more > 

Filed under: ,

Accelerated Contamination in Social Networks

Posted: 15 Aug 2011 05:00 PM | uwang | no comments


If you follow our blogs or you are an active user of Facebook, you must have noticed that Facebook scams are very popular. A shocking video appears on your friends' walls and a few curious clicks then trick you into filling in a fake survey and spreading the scam message unintentionally - we have...

Read more > 

Vulnerability in TimThumb WordPress Plugins - The Effects

Posted: 15 Aug 2011 07:45 AM | Carl Leonard | no comments


With the popularity of the WordPress blogging platform the security researchers here in Websense Security Labs are sure to sit up and take note of any reported zero day affecting the platform itself or the plugins used by blog masters.

Recently we saw a post by Mark Maunder of technology company Feedjit where he noticed a compromise occuring due to WordPress plugin - the danger though was this was a zero day issue affecting a popular image re-sizing tool often used within WordPress.  That was on the 1st August .

...

Read more > 

Filed under: ,

The Philippine Bureau of Immigration is Compromised

Posted: 09 Aug 2011 04:25 PM | Mary Grace Timcang | no comments


Websense Security Labs and the Websense ThreatSeeker® Network have detected malicious emails disguised as HSBC Notifications.  A closer look at these emails, like the one you can see below, reveals that the link provided in the emails is a compromised URL belonging to the Philippine Bureau of Immigration.

...

Read more > 

Filed under: , , , ,

Is Google+ safer than Facebook?

Posted: 02 Aug 2011 01:16 PM | Tamas Rudnai | 3 comment(s)


Google is synonymous with the Web - from the search engine through Web-based email to video sharing, they are arguably the market leader. However, this has not been the case with social networking. They were constantly searching for a new way to set up a service or an Internet portal to help people connect...

Read more > 

Filed under: , ,