Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Latest Blog Posts

View all posts > 

(July 2012) Posts

You may be Surprise too receive this letterfrom me. . .

Posted: 18 Jul 2012 06:22 PM | RM | no comments


You've almost certainly received an email similar to the one below.

 

Despite being well-known and transparent, the Nigerian email scam (also known as the 419 scam, a reference to the article of the Nigerian Criminal Code that such activities violate) retains its place on the list of top ten internet/email scams for 2012, and still results in millions of dollars of financial loss--and sometimes worse--for its victims. We've already blogged about a particularly amusing example caught in one of our honeypots, and a variant that adds phishing to the risks.

...

Read more > 

Filed under:

Braaaaaaaaaaaiiiiiiiiiiiiiins!

Posted: 16 Jul 2012 06:23 PM | RM | 1 comment(s)


Here in Websense's own backyard, the 2012 San Diego Comic-Con has just folded up its superhero cape after four days of workshops, film screenings, panel discussions, and collectible exhibits. Beginning in 1970 with a one-day event and 145 attendees, Comic-Con now caps attendance at about 130,000...

Read more > 

Filed under:

New spear of Black Hole exploit kit targets Java Vulnerability CVE-2012-1723

Posted: 15 Jul 2012 01:00 PM | uwang | no comments


In early July, an update has been issued to the Blackhole exploit kit targeting Java vulnerability CVE-2012-1723 . The vulnerability could evade the JRE ( Java Runtime Environment ) sandbox and load additional Java classes in order to perform malicious actions. Details about the vulnerability are here...

Read more > 

Filed under: , ,

Raising DNSchanger Malware Awareness

Posted: 05 Jul 2012 08:42 PM | Mary Grace Timcang | no comments


The cyber trenches are awash today with news of DNSchanger malware. This is to elevate previous efforts to alert the public about the possibility that they could lose their internet services this coming Monday, July 9. DNSchanger malware takes control of a user's DNS, which cyber criminals use to...

Read more > 

Filed under: , ,

The official website of GoPro is compromised to serve malicious code

Posted: 04 Jul 2012 05:24 PM | Elad Sharf | 2 comment(s)


The Websense® ThreatSeeker® Network has detected that the official website of GoPro (at gopro.com), the popular brand for "wearable" cameras, has been compromised and injected with malicious code.  We have contacted GoPro and let them know about the compromise but to date, we have not heard back from them.


Websense customers are protected from this threat with ACE our Advanced Classification Engine.


Websense customers are protected from this threat with ACE our Advanced Classification Engine.

...

Read more > 

Filed under: , ,