4 posts categorized "china"

About This Blog

The Content Security Research Team's Mission: Deliver security research and intelligence that educates, supports and strengthens the security community, and drives innovation in our eSafe solutions.

Learn More

Follow Us on Twitter

11/18/2010

Weekly Security News – November 18, 2010

1. McAfee CEO: Get ready for tidal wave of mobile attacks
Read More



2. Drive-By Downloads Still Running Wild
Read More

3. Malware pushers lure victims with leaked Harry Potter movie screener
Read More

4. Scareware SEO attack exploits engagement of Prince William and Kate Middleton
Read More

5. Well crafted PayPal phishing e-mail doing rounds
Read More

6. Debt collectors utilize Facebook to embarrass those who owe
Read More

7. Chinese ISP hijacked US military, gov web traffic
Read More

8. Rogue e-mail makes Swiss bank lose millions?
Read More

9. LinkedIn attack comprised over 31% of all spam
Read More

10. 10 security tips for retailers
Read More

11. One Hundred Naked Citizens: One Hundred Leaked Body Scans
Read More

12. The 12 most dangerous online scams
Read More

13. 10 holiday ID theft prevention tips
Read More

14. Joshua Simon Ashby gets 4 months in jail for posting naked photo of ex-girlfriend on Facebook
Read More

15. Web users deceived into downloading malicious anti-virus software
Read More

16. Top 10 Security Threats for 2011
Read More

17. Holiday spam e-mail runs start off
Read More

18. 40% of all rogueware was created in 2010
Read More

19. Palin hacker sentenced to one year in custody
Read More

20. Half of SMBs block employee access to Facebook
Read More

08/05/2010

Weekly Security News – August 5, 2010

1.   U.K. government nixes 'kill IE6' campaign
    Read Article

2.   Facebook's 500 millionth member highlights risks
  Read Article

3.   Summer holiday security checklist
  Read More

4.   63% consider international cyber-espionage acceptable
  Read More

5.   Hong Kong e-payment firm admits selling customer data
  Read More

6.   Seven myths about zero day vulnerabilities debunked
  Read More

7.   US Still Number One Malware Producer
  Read More

8.   Microsoft patches the critical Windows LNK vulnerability
  Read More

9.   Cyber War is not the Cold War
  Read More

10. China Called a Hacker's Marketplace
   Read More

11. Brothers admit spam campaign against college students
   Read More

12. DeepWater Horizon (BP oil spill) appears to be a control system cyber incident
   Read More

13. US at High Risk for Computer Attack
  Read More

14. Android wallpaper app stealing user data and sending it to China
   Read More

15. Turkish pranksters load Facebook Translate with swears
  Read More

01/25/2010

Top 10 Chinese cyber attacks

The malicious activity that comes from Chinese servers is known for a long time. In many cases we are seeing the use of Chinese servers by bots that being spread over the web. Most of these bots are being propagated in order to steal identity, information, backdoor etc’. But there is also other activity, unlike these bots that are being operated by hackers there is also a cyber-war. We know that countries are using hacking techniques in order to espionage against other countries, security organizations employing hackers in order to penetrate to other countries servers, and from the Google incident in China we actually know something that was clear to everybody – the bigbrother is watching you. The “Foreign Policy” web site (http://www.foreignpolicy.com/)published a very interesting article that reviews the top 10 Chinese cyber attacks (that we know of) against US government sites: http://thecable.foreignpolicy.com/posts/2010/01/22/the_top_10_chinese_cyber _attacks_that_we_know_of

01/18/2010

Google vs. China - Round 1

The Google-China relationship has been the subject of many recent articles and debates in the media. Across the globe, thousands have protested against Google, claiming that the renowned web browser is lending a hand to the trampling of human rights in China by allowing the Chinese government to filter search results. Last Tuesday Google announced that it was considering exiting the Chinese market as the result of a sophisticated online attack targeted at Google systems – especially Gmail – in order to penetrate the accounts of pro-democracy activists in China. In the beginning, the assumption was that the hackers(reported by some as being funded by the Chinese government), used a zero-day Adobe Acrobat Reader vulnerability. However, according to McAfee, there is evidence that they used a new IE zero-day vulnerability instead. More information about the IE zero-day vulnerability can be found here: http://www.microsoft.com/technet/security/advisory/979352.mspx Link to the Adobe blog post referring the attack: http://blogs.adobe.com/conversations/2010/01/adobe_investigates_corporate_n.html It will be interesting to see if Google will carry out its threat to leave the Chinese market. My bet is that it won’t. In the meantime, it is important to note that eSafe customers are protected against both exploits – the Adobe Acrobat exploit and the new IE zero-day exploit.