0
POPSShaw Capital Working Management One stolen Google website authentication certificate would have been reason enough for Web users to worry, but it turns out last week’s security breach at the Dutch certificate authority DigiNotar is far more damaging than first thought, and could signal a new and extremely dangerous cyber crime threat. On Aug. 30, the news broke that a hacker calling himself “Comodohacker” made off with a Google authentication certificate on July 19, which allowed him to set up fraudulent Web pages under a legitimate Google domain name and harvest the personal information of anyone who visited his spoofed sites. A bit of background on authentication certificates: DigiNotar, like all certificate authorities, issues digital Secure Sockets Layer (SSL) certificates of trust to websites
0
POPSShaw Capital Working Management One stolen Google website authentication certificate would have been reason enough for Web users to worry, but it turns out last week’s security breach at the Dutch certificate authority DigiNotar is far more damaging than first thought, and could signal a new and extremely dangerous cyber crime threat. On Aug. 30, the news broke that a hacker calling himself “Comodohacker” made off with a Google authentication certificate on July 19, which allowed him to set up fraudulent Web pages under a legitimate Google domain name and harvest the personal information of anyone who visited his spoofed sites.
0
POPSRogue VirusTotal Website Distributes Java Malware The applet is actually a Java-based trojan downloader that distributes a piece of malware detected by Kaspersky Lab as Worm.MSIL.Arcdoor.ov. "The worm is developed to recruit zombies that will be part of a botnet designed primarily to perform DDoS attacks synflood, httpflood, udpflood and icmpflood," Kaspersky's Jorge Mieres explains. The botnet is controlled through a commercial web-based DDoS framework known as N0ise. It accepts commands to initiate several types of DDoS, report the hostname of the victim machine, type and version of the operation system, as well as the version of the malware itself. This is not the first time when the VirusTotal brand is abused to distribute malware. Back in February 2010, we reported about a fake VirusTotal website which was used to distribute scareware.
Pops
Newest Clips
Latest Comments
Most Pops
Print
Save
Turn on live update