Jack Rogers
Recent articles by Jack Rogers
ICANN recommendations on fast-flux hosting not tough enough: experts
Security experts have expressed skepticism that recent recommendations from ICANN for combatting fast-flux hosting will do much to stop the practice, which is utilised by criminal bot herders to mask their activities.
Mar 13 2008 9:45AM
Security
Screensaver spam is new malware from old gang: Sunbelt
A new wave of "3D screensaver" spam is directing recipients to a malware site from a notorious malware gang that had ceased activity in January after their site was attack by a rival group of cybercriminals, researchers at Sunbelt reported.
Mar 11 2008 9:57AM
Security
Civil liberties laywers hail US federal judge's reversal on Wikileaks.org
A Federal judge's decision last week to reverse his own ruling and lift what he had declared was a "permanent" injunction shutting the Wikileaks.org site for posting bank documents has been hailed by civil liberties lawyers as an important benchmark in applying First Amendment protections to such sites.
Mar 5 2008 10:02AM
Security
Phishing lures draw recipients to fake video of "dead" Castro
A phishing email is in circulation attempting to lure recipients to fake news video purporting to come from a major Hispanic TV network and showing former Cuban President Fidel Castro lying in a coffin with Venezuelan leader Hugo Chavez in tears at his side, Websense has warned.
Mar 4 2008 9:31AM
Security
"Goolag" search-scan tool unlikely to spawn wave of attacks
A new tool that uses the Google search engine to scan websites for vulnerabilities -- released last week by the flamboyant Texas-based hacking consortium known as Cult of the Dead Cow (cDc) -- is not likely to enable a wave of new attacks from hackers, experts say.
Feb 26 2008 10:16AM
Security
Spam lures to eclipse "videos" laced with malware appear
Websense has warned that spam emails have emerged which attempt to dupe recipients into downloading videos of Wednesday's total lunar eclipse in the US but instead deliver an information-stealing trojan to the user's PC.
Feb 22 2008 10:05AM
Security
Federal judge shuts down site that leaks confidential information
A federal judge in San Francisco has ordered the disabling of a website that discloses confidential information, a precedent-setting ruling that may raise a legal challenge to the growing online black market in purloined data while testing First Amendment rights.
Feb 21 2008 9:52AM
Security
Harvard University grad school site hacked, files distributed
The website of Harvard University's Graduate School of Arts and Sciences (GSAS) apparently was hacked on Monday, with some of its database files made available on a peer-to-peer file sharing network by someone who said they wanted to "demonstrate" the lack of security on the university's server.
Feb 20 2008 10:03AM
Security
Spam offers bogus Hillary Clinton interview video
Spammers capitalising on nationwide interest in the Democratic presidential nomination battle are sending out messages offering a link to a "Hillary Clinton video interview" that instead launches a trojan downloader on the victim's PC.
Feb 15 2008 2:29PM
Security
Researcher releases exploit codes for Linux kernel 2.6 flaws
A researcher has released exploit codes for newly discovered Linux kernel 2.6 flaws which could permit attackers to gain root-system privileges they can use to steal data or mount denials of service on Linux-based systems.
Feb 13 2008 11:39AM
Security
ActiveX control flaws found in Yahoo! Music Jukebox: FrSIRT
Critical ActiveX control flaws have been detected in the Yahoo! Music Jukebox, which like vulnerabilities reported last week in MySpace and Facebook image uploaders, may permit attackers to take control of users' PCs.
Feb 5 2008 4:55PM
Security
Critical ActiveX control flaw found in image uploader sent to users by Facebook, MySpace
Symantec has warned that a critical flaw in the ActiveX control of image uploaders that have been widely distributed to users of popular social networking sites Facebook and MySpace can be exploited by hackers to install malicious code on user's computers.
Feb 4 2008 10:23AM
Security
Storm makes house calls: New messages lead to bogus medical sites, evade filters
The notorious Storm worm botnet, which has mounted phishing attacks on major banks and spawned several waves of holiday-themed messages in recent weeks, is generating spam that directs recipients to bogus medical sites, Websense has warned.
Jan 31 2008 10:47AM
Security
Viruses now posing on digital picture frames
At least two brands of digital picture frames, a popular gift during the recent holiday season, have been contaminated by malware and one of the models - Insignia's 10.4-inch frame - has been recalled by the manufacturer and pulled from the shelves of Best Buy.
Jan 30 2008 10:05AM
Security
French bank could have a thwarted US$7 billion insider fraud with better password
Societe Generale might have been able to prevent a year-long binge of fraudulent transactions by one of its mid-level traders simply by instituting stricter password controls and applying available software that tracks transactions to individual workstations, according to analysts.
Jan 29 2008 10:53AM
Security
