Halloween storm

10.31.2007 - 6:34 PM
New Storm...nothing new in exploit landWhen a user is lured into visiting a storm website, what he or she will see is the following:As with most storm web pages, there is a "Click here" link used as a social engineering tactic to have the user download and install the storm binary manually.What people don't see are the multiple obfuscated javascript exploits on the page that will exploit the user if their machine hasn't been patched.<img sr...
Read more »

Hi I am an infected...Hi I am an infected MAC

10.31.2007 - 3:59 PM
Earlier reports from Intego Security http://www.intego.com/news/ism0705.asp are that several websites have been infected with some new malicious website links that attempt to lure users into running malicious code. The sites are hosting code...
Read more »

Beware of Phresh Credit Union Vish

10.29.2007 - 10:08 AM
Caught this one today in one of our traps.... As you can tell not exactly high end equipement on the other end of this: <font face="Arial, Hel...
Read more »

Southern California Wildfire Scams

10.25.2007 - 11:04 AM
As I am sure most of you have heard by now San Diego and some surrounding Los Angeles areas are suffering from devastating fires. Since our head quarters is in San Diego we have certainly been affected by the fires and several employees were evacuated and some have lost homes. One very amazing thing has been the outpouring of support both locally within the communities, sta...
Read more »

Sending Out An SOS (Spam Over Skype)

10.16.2007 - 8:49 AM
Today we've decided to share with you an interesting message that we received on one of our Skype honeypots. The message from the user "Scan Alert" warns us that our system has been infected with malware. It goes into a decent amount of detail intended to social engineer the victim into clicking on a link contained in the message. <img src="/securitylabs/images/a...
Read more »

MOTW: PE Lurker Analysis: File Infection through a Kernel Driver

10.15.2007 - 4:00 PM
Although file infectors aren't as prevalent as they used to be, we still get to see a few every now and then. Sometimes, we have interesting examples to look at. PE Lurker is such an example.
Read more »

Website Redirection Analysis

10.02.2007 - 11:02 AM
When Websense Security Labs analyzes websites, we find it's very popular to use redirection in the source code. Redirection specifies one site in a link, but actually points to another site, which misdirects the visitor and also may allow some sites to escape from webpage scanners
Read more »