Report

The good news is that overseas hackers apparently did not change the grades of more then 100 thousand University of North Florida students when they broke into the computer system in September. The bad news is that personal information like names and social security numbers for those students may now be in the hands of those hackers. The FBI is investigating the attack, which was discovered by the university in a routine check of the server. According to University officials, the hacker had access to the system between September 24th and September 29th, but the University did not say when the breach was discovered. The Florida Times-Union newspaper said the university learned of the attack in September but did not notify potential victims because they were still investigating ...

If you needed more proof that texting is on the rise, here’s a stat for you: the average teenager sends over 3,000 texts per month. That’s more than six texts per waking hour. According to a new study from Nielsen, our society has gone mad with texting, data usage and app downloads. Nielsen analyzed the mobile data habits of over 60,000 mobile subscribers and surveyed over 3,000 teens during April, May and June of this year. The numbers they came up with are astounding. ...

Some people didn’t like his comments about downloading… Two of Gene Simmons’ official sites were shut down after hacker attacks by a group called Anonymous, associated with the 4chan.org forum. The attacks were in response to comments by Simmons about how the music industry should have been tougher with illegal downloaders. Both SimmonsRecords.com and GeneSimmons.com were taken offline briefly due to the attacks. Simmons had made the comment, “The music industry was asleep at the wheel, and didn’t have the balls to sue every fresh-faced, freckle-faced college kid who downloaded material. And so now we’re left with hundreds of thousands of people without jobs. There’s no industry.” ...

Variants of the infamous ZeuS cybercrime toolkit have begun using the tactics of the infamous Conficker worm in a bid to get ahead of security defences. The so-called Licat worm, which is “strongly linked” to ZeuS, represents a likely attempt to reinforce botnets following recent arrests of suspected bank fraud money mules, as well as hackers tied to ZeuS in the UK, US and Ukraine over the last month or so. ...

Some domain names make you cringe, some make you smile… Such was the case this morning, with redpoo.com a domain name whose registrar is the Center of Ukrainian Internet Names, and registered to: Igor Nikenin ul. B. Pertrovskaya, dom 12, kv 74 Rostov na Donu, 344000 RUSSIAN FEDERATION The servers’ IP, 121.156.57.184, is located in the Republic of Korea. Other than the poor joke, the site serves various exploits which you can view in this Wepawet report. ...

Hmmm. That’s not what the source code says We started out the day fat fingering the spelling of “youtube.com” and ended up at the typo squatting site behind the URL “youube.com.” youube.com redirects you to http://youtube.com-prizes.com – obviously a URL intended to make you think it’s really YouTube. Like so many of these “survey” scam web sites, the offer was available “today only: Thursday, October 7, 2010.” Obviously, this is to add a little bit of sales pressure to make a visitor go for the prize ASAP, or at least before midnight. ...

How does one say in French: “We’re gonna make an example out of you, boy” The Toronto Sun is reporting that convicted spammer Adam Guerbuez of Montreal has been ordered to pay $1 billion to Facebook by Quebec Superior Court. The court was upholding a U.S. Federal court fine that resulted from a wave of four million spam ads sent to Facebook users in 2008. Guerbuez did not contest the Sept. 28 Quebec Superior Court ruling. ...

Adobe just released Reader and Acrobat version 9.4. The new release fixes some critical vulnerabilities which allow attackers to infect PCs – for example, just by browsing the net. Overall the update lists 23(!) entries in the CVE database as being solved with version 9.4. The new version is available for Windows, Mac OS X and Unix systems. For those who still use the version 8, Reader and Acrobat 8.2.5 for Windows and Mac fix the security vulnerabilities. Windows and Mac users can download the updated version at Adobes download center, while Unix users need to download the new release from Adobe’s ftp server. ...

Stuxnet continues to be a hot topic. Here are answers to some of the questions we’ve received. Q: What is Stuxnet? A: It’s a Windows worm, spreading via USB sticks. Once inside an organization, it can also spread by copying itself to network shares if they have weak passwords. Q: Can it spread via other USB devices? A: Sure, it can spread anything that you can mount as a drive. Like a USB hard drive, mobile phone, picture frame and so on. ...

Twitterers are still clogging the micro-blogging service with little messages about the cross-site-scripting problem earlier today. Twitter has announced that the problem has been fixed. A cross-site scripting vulnerability using “onmouseover” was being widely exploited to spread worms and redirect viewers to malicious sites. Story here from The Register.