Category Archives: phishing

The act of building and operating a Web site that closely resembles the login page for some other legitimate business, such as a bank or email service. The lookalike page provides the credentials to a criminal. (See: Social engineering)

Thre@t Reply: “Online Shopping” | Part 2 of 2

May 9, 2011 – 9:06 am

In the second of a two-part series with Threat Research Analyst Grayson Milbourne, we answer a question about how to stay safe when shopping online. In the previous video, Grayson discussed how to identify a phishing page. In this episode, he continues his discussion by explaining how to tell whether the site you’re trying to purchase [...]

By Lisa Bongiovanni | Also posted in Online shopping threats, Threat Research, Uncategorized | Comments (1)

Thre@t Reply: “Online Shopping” | Part 1 of 2

May 2, 2011 – 1:33 pm

In the latest Thre@t Reply video, Threat Research Analyst Grayson Milbourne answers a reader’s question about how to avoid being phished. The first step is to be able to identify whether you’re on the legitimate Web site you think you are, and if you’re not, what are the telltale signs that indicate you may be [...]

By Lisa Bongiovanni | Also posted in Online shopping threats, spam, Stupid malware tricks, Threat Research | Comments (3)

Webroot Answers Your Security Questions

April 5, 2011 – 9:05 am

By Andrew Brandt I’m very pleased to present today the first in a series of videos we’ve produced. The videos have the lofty goal of addressing the most pressing questions relating to malware, cybercrime, and online fraud. We’ll take you behind the scenes at Webroot and introduce you to some of our Threat Research team [...]

By Lisa Bongiovanni | Also posted in Destructive behavior, Passwords, social engineering, spam, Stupid malware tricks, Threat Research | Comments (2)

Pinball Corp’s Appbundler Employs Malware-like Techniques

March 29, 2011 – 12:44 pm

By Andrew Brandt For a couple of weeks now, I’ve been noticing a curious (and increasingly prevalent) phenomenon: Some of the free Web hosts popular among those who engage in phishing are popping new types of multimedia ads over the tops of the pages they host. Not only does the victim, in this case, risk [...]

By Lisa Bongiovanni | Also posted in adware, Downloaders, Passwords, social engineering, social networks, Stupid malware tricks, Threat Research | Comments (2)

New Bank Phisher Brings Added Functionality, Problems

February 23, 2011 – 4:23 pm

By Andrew Brandt I didn’t want to let too much time pass before I wrote about a new Zbot-like bank phishing Trojan variant that came across my desk last week. The keylogger started arriving the first week of February as an attachment to a spam email designed to look like it came from United Parcel [...]

By Lisa Bongiovanni | Also posted in Botnet activity, Downloaders, Keyloggers, Phishing Trojans, social engineering, spam, Stupid malware tricks, Threat Research | Comments (3)

Fishing for Phishers is a Full-Time Job

February 23, 2011 – 12:30 pm

By Ian Moyse, EMEA Channel Director We seem to take phishing attacks for granted these days, in much the same way that we’ve accepted spam as a natural, and inevitable, by-product of email. Some experts believe that one of the best solutions to thwart phishing attacks is end-user training, but I doubt training alone can [...]

By Lisa Bongiovanni | Also posted in Gaming threats, Online shopping threats, Passwords, social engineering, spam | Comments (1)

Malicious PHP Scripts on the Rise

February 22, 2011 – 4:34 pm

By Andrew Brandt Last week, I gave a talk at the RSA Security Conference about malicious PHP scripts. For those who can’t attend the conference, I wanted to give you a glimpse into this world to which, until last year, I hadn’t paid much attention. My normal week begins with a quick scan of malware [...]

By Lisa Bongiovanni | Also posted in Destructive behavior, Enterprises, social engineering, spam, Stupid malware tricks, Threat Research, Uncategorized, Website owners | Comments (3)

With Great Power Comes Great Responsibility

February 15, 2011 – 9:22 am

By Ian Moyse, EMEA Channel Director The cloud delivery model gives vendors a great amount of power. It is easier to create, deploy, maintain and enhance a service than it has been at any other point in computing history. Just look at Facebook, which grew to 500 million members in a very short period of [...]

By Lisa Bongiovanni | Also posted in Destructive behavior, Enterprises, Mobile security, Search engines | Comments (2)

Tips to Avoid Tax Season Scams

January 28, 2011 – 7:01 am

By Jeff Horne, Director, Threat Research As tax season rolls around again in the US and UK, it seems like a good time to revisit the perils taxpayers face seemingly every year at around this time. Phishing attacks against taxpayers are already in full swing — not that they haven’t been going continuously since last [...]

By Lisa Bongiovanni | Also posted in hijack search results, Internet Explorer, Passwords, Phishing Trojans, social engineering, Threat Research | Comments (1)

10 Threats from 2010 We’d Prefer Remain History

January 1, 2011 – 3:32 pm

By Andrew Brandt With 2010 finally behind us, and an unknown number of cyberattacks likely to come in the new year, I thought I’d run down a brief list of the malicious campaigns criminals pulled off last year that I’d really dread to see anyone repeat. Now that they’re in the past, they should stay [...]

By Lisa Bongiovanni | Also posted in Backdoors, Blackhat SEO, Botnet activity, Destructive behavior, Enterprises, Firefox, Gaming threats, Internet Explorer, Keyloggers, Online shopping threats, Passwords, Phishing Trojans, Rogue Security Products, social engineering, social networks, spam, Stupid malware tricks, Threat Research, Trojans, Website owners | Comments (1)
Follow

Get every new post delivered to your Inbox.

Join 609 other followers