Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

View all posts > 

Filtered by : Phishing

New Phishing Research: 5 Most Dangerous Email Subjects, Top 10 Hosting Countries

Posted: 11 Dec 2013 09:03 AM | Elisabeth Olsen


With cloud infrastructure easily scalable and rented botnets coming on the cheap, the cost of conducting massive phishing campaigns continues to decline for cybercriminals. Even if the return rate is small or the campaign is poorly executed, phishing can result in serious money for criminals. Phishing will never simply go away—meaning ongoing headaches for security professionals.

...

Read more > 

Filed under: , , ,

no comments

2013 Threat Report: More Than Scary Stats and Chilling Charts

Posted: 13 Feb 2013 08:30 AM | Carl Leonard


The 2013 Threat Report from the Websense® Security Labs™ is now available.

 

The report details mobile, social, email and web-based threats, and while it is full of ominous data points, it is a very interesting read. The report is designed to help security professionals keep current with threat trends and improve the effectiveness of existing security solutions. It can also be used to identify and prioritize security gaps that may require new approaches and more innovative strategies.

 

Creating the report began with the ThreatSeeker® Network, composed of big data clusters used by the WSL to collect and manage up to 5 billion inputs each day from 900 million global endpoints. Malware samples, mobile applications, email content, web links and other information were then passed through deep analysis processes including our Advanced Classification Engine (ACE), which applied over 10,000 different analytics.

 

...

Read more > 

Filed under: , , , , , , , , , , , , , ,

no comments

Battered Twitter, Phish but no Chips! [Updated]

Posted: 05 Feb 2013 04:47 PM | Carl Leonard


Hot on the heels of Friday’s announcement by Twitter that they ‘detected unusual access patterns that led to us identifying unauthorized access attempts to Twitter user data’ and subsequent confirmation that ‘attackers may have had access to limited user information’ for  ‘approximately 250,000 users’,  Websense® Security Labs™ are tracking a phishing campaign propagated via Twitter’s direct message functionality.

...

Read more > 

Filed under: , ,

no comments

Phishing for Apple IDs

Posted: 08 Oct 2012 03:27 PM | Gianluca Giuliani


The Websense® ThreatSeeker® Network has detected a phishing campaign whose potential victims are holders of an Apple ID account. An Apple ID allows you to buy new apps, make a customer workshop reservation at an Apple Retail Store, or buy music and multimedia content from the iTunes Store. You...

Read more > 

Filed under: ,

no comments

Who is already an Olympic Games 2012 winner?

Posted: 01 Mar 2012 03:05 AM | Gianluca Giuliani


As announced by our Security Predictions for 2012, the imminent start of the Olympic Games 2012 is a good worldwide event for phishing authors as well as malicious bots. They will most likely begin utilizing this vector to spread their attempts at masquerading as legitimate sites, organizations, or services to trick users into divulging information. Websense® Security LabsTM and the Websense ThreatSeeker® Network have detected and tracked a significant number of these kinds of Olympic phishing messages whose goal is to entice users to submit their personal information.

...

Read more > 

Filed under: ,

no comments

Typosquatting

Posted: 24 Oct 2011 08:42 PM | Devi


Do you often make mistakes when typing? Is the Backspace key your friend? Well, you are not alone! Most of us make typing errors once in a while, but what if those errors could cause data leakage? Typosquatting exploits common typing errors made when entering a Web address in a browser--typing “a”...

Read more > 

Filed under: , , ,

no comments

The Philippine Bureau of Immigration is Compromised

Posted: 09 Aug 2011 04:25 PM | Mary Grace Timcang


Websense Security Labs and the Websense ThreatSeeker® Network have detected malicious emails disguised as HSBC Notifications.  A closer look at these emails, like the one you can see below, reveals that the link provided in the emails is a compromised URL belonging to the Philippine Bureau of Immigration.

...

Read more > 

Filed under: , , , ,

no comments