-
I received this classic phishing attack email today and it managed to slip through my anti-spam system. It’s an ill wind that blows no-one no good, so I thought I’d showcase it here in the hope of helping you recognise and avoid such attacks. Click on any of the images to see them full size. The innocuous...
-
Actually this is not a vulnerability in the product itself, but if you use Asterisk or one of its derivatives such as TrixBox, you should review your SIP and IAX secrets to make sure they are not the same as your extension numbers. As reported by Kerry Garrison on his blog: There are some new scripts...
-
A possible glimpse of things to come from Amy Babinchak on her Small Business Tech Notes blog highlights a new type of attack using x.509 certificate s that is on the increase in the USA. Amy speculates that the bad guys are beginning to escalate the security arms race by leveraging some of the technologies...
-
Virus warnings are almost always hoaxes. Even if they’re not, forwarding the warning to your friends and colleagues can do more harm than good. My simple advice is this: press delete . Virus warnings and hoaxes are one particular flavour of chain email. For in-depth information on why you should never...
-
Virus warnings are almost always hoaxes. Even if they’re not, forwarding the warning to your friends and colleagues can do more harm than good. My simple advice is this: press delete . Virus warnings and hoaxes are one particular flavour of chain email. For in-depth information on why you should never...
-
This superficially amusing article about one customer’s experience with Lloyds Bank Plc actually raises a more interesting security issue. The BBC news article reports (emphasis mine): Lloyds TSB stressed there was no security lapse in this case. A spokesperson said: "On the majority of transactions...
-
Is your ISP patched against the DNS cache poisoning ( US CERT advisory ) exploit? There are confirmed attacks in the wild . My ISP is patched. I asked them, and actually got an intelligent response. They escalated my ticket and a day later came the response: “Thank you for contacting us And again thanks...
-
It seems there is an instant messenger virus at large at the moment. The virus sends messages similar to these (the URLs are deliberately obfuscated): "Hot or Not? hxxp://mymsngallery.my.funpic de/viewimage.php?youremail@someplace.com" or "this really looks like you hxxp://mymsngallery...
-
It seems there is an instant messenger virus at large at the moment. The virus sends messages similar to these (the URLs are deliberately obfuscated): "Hot or Not? hxxp://mymsngallery.my.funpic de/viewimage.php?youremail@someplace.com" or "this really looks like you hxxp://mymsngallery...
-
I saw this article in Microsoft's UK Security Newsletter (which you can subscribe to online). Ed Gibson, chief security advisor, relates the following story: The owner of a '.com' web domain name is telephonically contacted by someone claiming to work for a domain registration service. The...
-
I saw this article in Microsoft's UK Security Newsletter (which you can subscribe to online). Ed Gibson, chief security advisor, relates the following story: The owner of a '.com' web domain name is telephonically contacted by someone claiming to work for a domain registration service. The...
-
The recent spate of announcements from the government and others regarding "lost" confidential information has really annoyed me. I'm so angry because every shipped business edition of Windows since 2000 has included encryption technology that was easy to use. Just a few clicks could have...
-
Another blog article I've been meaning to write for a long time: how to construct a strong password. Much has been written on this subject, but it is also out of date. To understand what makes a password strong, first we need to be clear what would make it weak by understanding how black-hats can...
-
I received the following email today, which is clearly a rather crude hoax: From: <deleted> @hotmail.co.uk To: <24 MSN/Hotmail addresses removed to protect privacy> Subject: PLEASE READ Date: Thu, 10 Jan 2008 21:48:22 +0000 Hey it is tara and john the directors of MSN, sorry for the interruption...
-
I received the following email today, which is clearly a rather crude hoax: From: <deleted> @hotmail.co.uk To: <24 MSN/Hotmail addresses removed to protect privacy> Subject: PLEASE READ Date: Thu, 10 Jan 2008 21:48:22 +0000 Hey it is tara and john the directors of MSN, sorry for the interruption...
Posted to
Tim Long
by
Tim Long
on
01-11-2008
Filed under:
Filed under: Opinion, IT, HowTo, Security, Small Business, Home Computing, TiGra Networks, Business, Help Me, Hints and Tips, Philosophy, War Stories