Blog
Blogs
The Websense Security Labs Blog delivers the most current information about breaking security research topics and today's advanced Internet threats. Websense Security Labs investigates and publishes information about outbreaks, new threats and other relevant Web security topics to protect organizations from converging risks to their data from Web, email and user based attacks.
Go to the new Security Labs Blog
Malicious Facebook App Propagates via Users
02.26.2010 - 5:00 PM
The latest scam targeted at Facebook users hit the public today. The rogue app, which comes in many variants of "Who is checking your profile?", has improved its technique beyond the previous attacks we've seen. Rather than spreading a single app that Facebook can easily block, it tricks users into propagating the exploit by creating a brand new Facebook application that hands over the controls to the bad guys.
Read more »
02.26.2010 - 11:00 AM
Since the popularization of the Internet, spam has become a non-detachable part of our daily life. There is probably no user on the whole network without experience of spam. Every day, criminals invent new ways of delivering unsolicited information to end users. The rules of this game have been changing almost daily. As a result of strong technology developments and progressive approaches in companies like Websense, cyber criminals have been looking for more sophisticated ways to promote products and services for their well-paying customers.
Read more »
Web proxy sites using obfuscation
02.25.2010 - 5:27 PM
As some of you may know, Web proxy sites are a common tool used for anonymously surfing the Web or bypassing Web security filters. These sites are easy to find, set up, and share. However, not all Web proxies are the same.
Read more »
What do a philologist and a lollipop have in common?
02.24.2010 - 12:00 PM
Question: What do a philologist and a lollipop have in common?
Answer: LOL (if you don't get it, you will LOL when you see it below)
Read more »
Top Secrets About Your Passwords
02.24.2010 - 8:00 AM
Recent hacker activity highlights how insecure we are in the online world. Black hats keep focusing on collecting passwords in many different ways. Instead of breaking the computer security system or brute-forcing pass phrases, they use a variety of easier techniques to get our credentials.
Read more »
02.23.2010 - 4:55 PM
Our CTO, Dan Hubbard, will be speaking at RSA on today’s top threats within Cloud Computing, as part of the Cloud Security Alliance Summit this upcoming Monday (http://www.cloudsecurityalliance.org/rsa2010.html).
Read more »
02.16.2010 - 7:00 AM
Buzz is just a new wizard in the kingdom of Google. However, it is not hard to foresee through the crystal ball that Dorothy's journey along the yellow brick road will be full of constant attacks from the Witch of malware and her spamming monkeys.
The biggest problem with Google Buzz is privacy. You can read lots of blogs and articles on this already, and this blog does not intend to examine this subject. It's enough to know that with Buzz, it is too easy to follow and read other people's messages. What we intend to explain is how Buzz connects different social networks together, creating a super-network.
Read more »
This Month in the Threat Webscape
02.10.2010 - 11:48 AM
The major drive-by attack that compromised global technology behemoth Google raised further awareness that one can get infected by merely surfing Web. Blackhat SEO campaigns were a record high this month, with scammers capitalizing on hot topics like Haiti's earthquake, the release of Avatar, and the release of the Apple iPad. We know for sure that on the Web, where the eyeballs go, a malicious trail will sure to follow.
An In-Depth Exploit Analysis on Multilayer Obfuscations
02.05.2010 - 12:00 PM
Websense® Security Labs™ ThreatSeeker™ Network discovered a kind of obfuscated injection code within the homepage of a Web site with an Alexa ranking within the top 10,000. The malicious code is appended to the end of the source code with deep obfuscated functions. The complexity of this attack is assessed below.
Read more »
Previous Posts
February 2010
| 02.26.2010 | Malicious Facebook App Propagates via Users » |
| 02.26.2010 | Pharma comments for my blog » |
| 02.25.2010 | Web proxy sites using obfuscation » |
| 02.24.2010 | What do a philologist and a lollipop have in common? » |
| 02.24.2010 | Top Secrets About Your Passwords » |
| 02.23.2010 | Cloud Security Threats Survey » |
| 02.16.2010 | The Wizard of Buzz » |
| 02.10.2010 | This Month in the Threat Webscape » |
| 02.05.2010 | An In-Depth Exploit Analysis on Multilayer Obfuscations » |
Archives
+ January 2010+ December 2009
+ November 2009
+ October 2009
+ September 2009