ZTE confirms security hole in U.S. phone

This is a piece I wrote with my colleague Lee Chyen Yee on the ZTE vulnerability.  ZTE Corp, the world’s No.4 handset vendor and one of two Chinese companies under U.S. scrutiny over security concerns, said one of its mobile phone models sold in the United States contains a vulnerability that researchers say could allow …

Continue reading ‘ZTE confirms security hole in U.S. phone’ »

The Danger Of The Mistyped URL

F-Secure Computer Virus Information Pages: Googkle: F-Secure staff has found a malicious website that utilizes a spelling error when typing the name of the popular search engine – ‘Google.com’. If a user opens a malicious website, his/her computer gets hijacked – a lot of different malware gets automatically downloaded and installed: trojan droppers, trojan downloaders, …

Continue reading ‘The Danger Of The Mistyped URL’ »

Pocket PC’s Backdoor

Symantec say they’ve found the first Windows CE (PocketPC) backdoor Trojan, which they’re calling Backdoor.Bardor.A: “Once installed, the backdoor allows full control of the handheld system when it is restarted. When the infected handheld is connected to the Internet, the backdoor sends the attacker the IP address of the handheld device. It then opens port …

Continue reading ‘Pocket PC’s Backdoor’ »

Korgo Clarified

More on Korgo; I wish I could say it was the last. But the good news is that it does not seem to be the all-in-one ‘phishing worm’ F-Secure said it was. F-Secure has clarified the situation over the Internet worm Korgo, which seems to answer some of the questions in my earlier posting. Korgo …

Continue reading ‘Korgo Clarified’ »

The Bagle Worm

I’m getting quite a few warnings about a new worm called Bagle, so I thought I’d pass them along. MessageLabs, an email security company, says it’s currently spreading at an alarming rate. The first copy of the worm was intercepted from Germany, and at the moment the majority of copies are being captured as they …

Continue reading ‘The Bagle Worm’ »

Update: Sobig’s 9/11

 Here’s some more evidence that the Sobig worms may be part of something more sinister: Central Command, a provider of PC anti-virus software and services, says its latest incarnation, Sobig.F, “is estimated to have infected millions of systems worldwide and may draw on them to be part of a cyber army focusing a digital assault …

Continue reading ‘Update: Sobig’s 9/11’ »

News: Beware The Trojan

 I got my first password stealing trojan yesterday. My, they’re good. I’ve never shopped at Citibank (sorry, Ditta) but for a moment I thought that maybe I had . This was what the email looked like:   Dear sir,   Thank you for your online application for a Citibank Home Equity Loan. In order to be …

Continue reading ‘News: Beware The Trojan’ »