Twitter
RSS

Posts Tagged ‘Barracuda Web Filter’

« Older Entries

Spam targeting tax professionals automatically installs malware

By on Wednesday, June 29th, 2011 | No Comments

by David Michmerhuizen & Luis Chapetti – security researchers

 

Tax forum spam

 

The criminal gangs that distribute the password stealing Trojan.Zeus have altered their spam campaigns in a frightening new direction.  Already seen targeting their emails at credit point-of-sale users and wire transfer users, their latest spams are now crafted to appeal to tax preparation professionals by posing as an official IRS communication.  What’s even worse is that their payload isn’t an attachment or a link to a download. Rather, the payload is a link to a Web site hosting an exploit kit that probes your computer’s software and automatically installs the Zeus password stealer.

> Read more ...
Read More...

Huge amounts of Federal Reserve spam delivering Zeus password stealer

By on Tuesday, June 21st, 2011 | No Comments

by David Michmerhuizen & Luis Chapetti – Security Researchers

Our spam monitoring systems at Barracuda Labs are following a very large spam campaign carrying Trojan.Zeus.   The spam amounts are approaching many hundreds of thousands a day and although they are being delivered to a wide cross-section of Internet users, the content of the spams is aimed at users of online banking services.

> Read more ...
Read More...

Fake Chase Bank invite delivers password stealer

By on Friday, June 17th, 2011 | No Comments

by David Michmerhuizen & Luis Chapetti – Security Researchers

Chase Paymentech logo

The spam monitoring systems at Barracuda Labs have uncovered an especially objectionable spam campaign that poses as a sign-up email from the Chase Bank credit card processing service Chase Paymentech.

We see lots and lots of spam at Barracuda Labs.  Even if the sender isn’t suspect it is still generally easy to spot, either because of the subject matter or flaws in the content.

What makes this spam dangerous is a combination of convincing content and deceptive payload.  Examining this spam highlights the risk that comes with assuming can always judge spam by it’s appearance alone.

> Read more ...
Read More...

Fake AntiVirus Scams Add MacOS Support

By on Thursday, May 19th, 2011 | No Comments

by Luis Chapetti & Dave Michmerhuizen – Security Researchers

Fake antivirus scams are designed to scare innocent computer users with exaggerated displays of virus activity in the hope that they will hand over their credit card numbers to make it go away.   They’ve been around for years and the most prevalent ones use a freely available JavaScript design that mimics the Windows user interface, as seen here:

Fake Antivirus that mimics WindowsFake Antivirus that mimics Windows

 

When these pages pop up on Macintosh computers, it’s immediately obvious that something isn’t right.

> Read more ...
Read More...

Facebook survey scams reappear as Verify Your Account wall posts

By on Thursday, May 12th, 2011 | No Comments

by Dave Michmerhuizen – Security Researcher

Facebook survey scammers who had recent success with JavaScript cut and paste pages have changed their approach and turned loose a fast-spreading “Please verify your account”  campaign that appears as a wall post from a friend…

Verify your acount wall post

Barracuda Labs recently reported on versions of this scam that required you to cut and past a bit of JavaScript into your URL bar.  The attack above uses the same JavaScript but embeds it in a link attached to the wall post.

> Read more ...
Read More...

Facebook infested with cut and paste Javascript survey scams

By on Tuesday, May 10th, 2011 | No Comments

by Dave Michmerhuizen – Security Researcher

The Social Networking monitors at Barracuda Labs are reporting a virulent outbreak of survey scams on Facebook.  These attacks use a variety of social engineering topics and spread via different Facebook APIs,  but all use the same initial “cut and paste JavaScript” exploit to spread within the Facebook ecosystem.

Osama Death Video

Osama Death Video

500 Facebook Credits

500 Facebook Credits

Free McDonalds

Free McDonalds

Official Time Spent App

Official Time Spent App

See you in 20 Years

See you in 20 Years

Dad walks in on daughter

Dad walks in on daughter

Who hacked your Facebook

Who hacked your Facebook

Who Visited 1.01

Who Visited 1.01

 

> Read more ...
Read More...

Fraudsters limber up for World Cup themed scams

By on Tuesday, June 1st, 2010 | No Comments

An interesting article from The Register, on the upcoming FIFA World Cup, and how we can expect a whole variety of scams themed on the event.

Fraudsters as well as footballers are gearing up for this month’s World Cup extravaganza in South Africa.

Football governing body FIFA has already warned [1] supporters to be wary over various forms of scams that are likely to crop up in the run-up to the start of the tournament, which kicks off in ten days.

> Read more ...
Read More...

Surfing Porn Still Popular at Work

By on Friday, May 28th, 2010 | No Comments

**excerpt from Globe & Mail Article. Original can be found here.

Barracuda Web Filter

Marco Bonanni of Optrics Engineering, a diamond partner of Barracuda Networks, which specializes in e-mail and web security, said workers should be aware everything they’re doing is marked and logged — even things they might think are innocent.

The equipment that most organizations install nowadays have months and months of logged data and information about every single message that goes in and out of the company, or every single URL or website that’s been visited” he said from Edmonton.

> Read more ...
Read More...

The dangers of weak passwords on Social sites (Facebook / Linkedin)

By on Tuesday, March 9th, 2010 | No Comments

Phishers Used Facebook to Penetrate Financial Firm’s Computer System (March 4, 2010)

Phishers used Facebook to burrow their way into the network of a large US financial company last year.

The attackers took control of one employee’s Facebook account and using information culled from that individual’s friends’ profiles, sent what appeared to be personal messages to several other company employees about pictures taken at a company picnic.

The phishers learned of the picnic through postings on the hijacked account.  When one of the other employees received a message asking her to click on a link that would allow her to view the pictures, her computer became infected with keystroke logging malware.

> Read more ...
Read More...

Google Acting Slow?

By on Tuesday, December 9th, 2008 | 10 Comments

(An interesting article by Joel Esler, published on the Internet Storm Center):

Everyday we receive about 20 reports of “www.xwebsitehere.com” being slow.  Today we’ve received a few reports about Google being slow.  One reader (thanks Neal) even wrote in to say that after he did some monitoring on his connections, he isolated it down to “pagead2.googlesyndication.com”.  Obviously, from the hostname being one of the servers that serves ads to lots of websites. 

Neal stated that after he blacklisted this hostname, his browsing went back to normal.  Anyone else experiencing similar?

> Read more ...
Read More...
« Older Entries

  • To take advantage of the "inside information" we receive from our vendor partners, become an "Optrics Insider" today!

  • Looking For an Email Filtering Service? Try a 15-Day Free Trial!

  • Recent Posts

  • Categories

  • Popular Tags

    adobe analyzer article Barracuda Networks business careers cisco create-account daily daily-network datacenter-management desktop-management drobo enterprise-it-management flash Fortinet Ipswitch it-servicedesk it management manageengine management manager monitor movies NEC network network-tool Network Management network mapping Network Monitoring Network Security press-designed promise rights science science & technology security server-management stumble-it technology traffic video Virtualization WhatsUp Gold windows