Author Archives: mguthrie09

Welcome to the team, Dancho!

January 5, 2012 – 2:27 pm

Notice someone new on the Webroot Threat Blog? We’re thrilled to introduce Dancho Danchev – independent security consultant, cyber threat analyst and bad-guy chaser extraordinaire – as our new security blogger. Many of you may know Dancho from the security analysis he’s been providing for industry media and on his own blog and since 2007. [...]

Posted in Uncategorized | Leave a Comment

For your eyes only (please)

December 1, 2011 – 10:15 am

By the Webroot Threat Team Have you ever had the queasy experience of sending a message to someone that you’d rather not have anyone else see, and then hoping that it won’t get passed along? A new system developed by Internet law and security researchers aims to solve the problem, with a light-handed touch. The [...]

Posted in spam, Uncategorized | Comments (1)

Reflections on mobile security

November 21, 2011 – 10:00 am

By Armando Orozco Be wary the next time you enter your passcode into your iPhone on the bus – someone could be shoulder surfing. In fact, a team of researchers from the University of North Carolina has developed a system to watch you pecking out characters on your phone, analyse the video, and produce a [...]

Posted in Android, Keyloggers, malware, Mobile security, social engineering, Threat Research | Comments (4)

In space, no one can hear you hack

November 14, 2011 – 1:09 pm

By the Webroot Threat Team Two of NASA’s satellites were hacked during 2007 and 2008, according to a draft report to be officially released later this month. According to the United States-China Economic and Security Review Commission, the ‘birds’, which focused on Earth observation for tasks such as climate monitoring, were reportedly pwned by the [...]

Posted in Targets, Threat Research | Comments (4)

Will you take Facebook’s candy?

November 9, 2011 – 2:50 pm

By the Webroot Threat Team It’s a creepy treat, with a serious underlying message. The latest viral website uses a horror movie format to show you just how much the average Facebook application can find out about you. TakeThisLollipop, which has already received 1.7 million ‘Likes’ on Facebook, uses the social network’s application authentication scheme [...]

Posted in social engineering, Targets, Uncategorized | Comments (6)

Awake at all hours during Cyber Security Awareness Month

October 25, 2011 – 10:19 am

By Jacques Erasmus I’ve been having trouble sleeping lately, and last night I pinpointed why. October has presented me with a perfect storm of Internet security developments: I embarked on my first few weeks as chief information security officer for Webroot amidst the most significant consumer product launch the company has ever had. These activities [...]

Posted in Keyloggers, phishing, Phishing Trojans, social engineering, Trojans | Comments (1)

Morto Worm Annoyances Outstrip Functionality

August 31, 2011 – 1:22 pm

By Andrew Brandt The past couple of days have been very busy for a lot of people, following the announcement by Microsoft that they had discovered a new network worm called Morto. After reading the refreshingly thorough writeup about Morto from both Microsoft and our partner Sophos, we were surprised to find that a few [...]

Posted in Botnet activity, Deep Knowledge, social engineering, Stupid malware tricks, Threat Research | Comments (1)

Trojans Employ Misdirection Instead of Obfuscation

August 25, 2011 – 3:49 pm

By Andrew Brandt An unusual family of Trojans, apparently of Chinese origin, engages in rootkit-like behavior which seems designed not to hide the presence of the malware on an infected system, but to misdirect or confuse a technical person who might be using system analysis tools on an infected computer. The Trojans all originated from [...]

Posted in Backdoors, Botnet activity, Destructive behavior, Stupid malware tricks, Threat Research, Website owners | Leave a Comment

Black Hat Redux: Botnet Takedown Mistakes to Avoid

August 17, 2011 – 12:00 pm

By Andrew Brandt I’ve worked in the security industry for nearly five years, and it was apparent early on that the most successful people in this field bring to their work a passion and a commitment to protecting not only one’s customers, but to providing a certain level of information about security threats to the [...]

Posted in Stupid malware tricks, Threat Research, spam, Botnet activity, Advanced Malware Removal, Deep Knowledge | Comments (3)

Targeted Malware Infects Windows-based Cash Registers

August 9, 2011 – 5:01 am

By Andrew Brandt A serious, targeted threat from customized malware that steals credit card magnetic strip track data could literally bankrupt your business. That’s the message two security researchers from Trustwave gave at their talk during the Defcon computer security conference Saturday. The researchers, Jibran Ilyas and Nicholas Percoco of Trustwave Spider Labs, respond to [...]

Posted in Deep Knowledge, phishing, Phishing Trojans, Threat Research | Comments (2)
Follow

Get every new post delivered to your Inbox.

Join 546 other followers