Report

Backdoor.Rohimafo is a Trojan that has several back door functions. It not only opens a back door and performs the usual functions but it also can perform some decidedly unusual functions. It attempts to block users from connecting to remote servers; not only specific servers but also specific network segments by using PersistentRoutes in Windows. PersistentRoutes can be used to add a routing entry to a routing table persistently. The route.exe command can be used to add an entry like the following: ...

Niels Provos of the Google Security Team has blogged about the rise of malicious web sites carrying rogue security products, which the Google team calls “Fake AV.” Google has been engaged in a constant battle against the sites because the operators who peddle them have been refining their techniques for poisoning Google search engine results in order to victimize Google users by drawing them to malicious download sites. He wrote: “we conducted an in-depth analysis of the prevalence of Fake AV over the course of the last 13 months, and the research paper containing our findings, ‘The Nocebo Effect on the Web: An Analysis of Fake AV distribution’ is going to be presented at the Workshop on Large-Scale Exploits and Emergent Threats (LEET) in San Jose, CA on April 27th.” ...

UK security firm Context Information Security Ltd., is making available a browser-based tool that will demonstrate clickjacking techniques that were discussed at a Blackhat Europe 2010 presentation. On the Context site, they said “Clickjacking is a term first introduced by Jeremiah Grossman and Robert Hansen in 2008 to describe a technique whereby an attacker tricks a user into performing certain actions on a website by hiding clickable elements inside an invisible iframe. ...

This might not mean much if you’re not writing or editing a tech blog, but news that the AP – whose stylebook is still the standard for all things grammar and punctuation in the news world — is officially changing “Web site” to “website” was met with a warm reception in our newsroom (and likely quite a few others) this afternoon. We’d actually gone rogue on the issue ourselves several months ago, thinking that “Web site” was a rather antiquated way for describing “a computer connected to the internet that maintains a series of web pages on the World Wide Web.” ...

Business employees are visiting Facebook from the workplace more than any other internet site, including Google, Managed Security Services company Network Box discovered in a recent study. The company looked at 13 billion URLs used by businesses in the first quarter of 2010 and found that 6.8% of all business Internet traffic goes to Facebook, which is double the amount of business traffic that goes to Google and nearly triple the amount that Yahoo gets. ...

BusinessWeek and Fortune have both released their annual rankings — the 50 Most Innovative Companies and the Fortune 500, respectively — and Apple has strong showings in both publications. For the sixth consecutive year, Apple ranked number one in BusinessWeek’s 50 Most Innovative Companies report. When you consider that BusinessWeek only started this ranking system in 2005, that statistic becomes even more impressive. James Andrew, senior partner and head of global innovation at Boston Consulting Group (the company that provides the data to BusinessWeek) claims that every year Apple is the “hands down winner,” although Google remains a strong second. Furthermore, when those surveyed were asked what company would replace Apple as the most innovative over the next five years, the most common response was “no one.” ...

A study of web traffic from enterprises in the first quarter of this year has shown that YouTube videos used 10 percent of bandwidth – more than any other site. Facebook traffic used 4.5 percent, Windows update 3.3, Yahoo!’s image server Yimg 2.7 and Google searches 2.5 percent. The study, by the Hong Kong-based security firm Network Box, analyzed traffic to and from 13 billion URLs. The study also analyzed the number of hits: ...

The Telegraph, one of the biggest newspapers in the UK, hasn’t had a good time of it lately where their website is concerned. There were vulnerabilities found in relation to the site back in March involving database access, and it seems a hacking group has gone in and defaced two subdomains. These are the two subdomains in question: shortbreaks(dot)telegraph.co.uk wine-and-dine(dot)telegraph.co.uk/site/index.php They appear to have been compromised by “R.N.S. – Romanian National Security”. Here’s a screenshot, both defacements are identical: ...

“Faceparty is a UK based social networking site allowing users to create online profiles and interact with each other using forums and messaging facilities similar to email” – Wikipedia Faceparty does things a little differently to other social networking sites, however. Unlike most places where you register a username and password then start telling people how your farm is doing, to join Faceparty you need to send a text message to the tune of £25 / $38(!) and then enter your one time use password onto this page (warning: quite a few swearwords, because the site is indeed down with the kids). ...

In kicking off Twitter’s Chirp developer conference, the company finally revealed its long mysterious registered user number, and it’s surprisingly large (based on some prior outside estimates): 105 million, or to be exact, 105,779,710, according to a slide showing behind Co-founder Biz Stone during his opening remarks. The growth’s not over either — Twitter says its still adding 300,000 users per day. Moreover, as many have speculated, most of Twitter’s traffic — 75% of it in fact — comes from third-party clients and applications. ...