State of Internet Security (Websense Report)

January 23, 2009 by · Leave a Comment 

As we all know, the Web offers many benefits, yet numerous risks. The good folks at Websense recently released their Q3-Q4 Internet Security Report, outlining the magnitude of threats we face while browsing the Web. Using their patent-pending ThreatSeeker, they boast the ability to scan over 40 million websites and almost 10 million e-mails every hour. Here are a few highlights from their report:

  • 70% of the top 100 most popular Websites either hosted malicious content or contained a masked redirect link to malicious sites.
  • In the second half of 2008 more than 77% percent of the Web sites Websense classified as malicious were actually sites with seemingly “good” reputations that had been compromised by attackers.
  • The number of malicious Web sites identified from January first 2008 through January first 2009 has increased by 46 percent.
  • 57% of data-stealing attacks are conducted over the Web, representing a 24% increase over the six-month period.
  • 39% of malicious Web attacks included data-stealing code, demonstrating that attackers are after essential information and data.

You can read their full report here.

Cisco Security Manager Vulnerability

January 23, 2009 by · Leave a Comment 

Cisco recently released an out-of-band patch for their enterprise security manager application, Cisco Security Manager. This application is used to manage Cisco security devices such as firewalls, intrusion prevention systems (IPSs), or a VPN.

The vulnerability is within the Cisco IPS event viewer, which by default, is installed with the security manager application. When the IPS event viewer is launched, several remotely available TCP ports are open on the Cisco Security Manager server.

For more information on this vulnerability and to install the patch, read the Cisco Security Advisory.

LinkedIn links leading to malware

January 9, 2009 by · Leave a Comment 

LinkedIn is a professional networking website that has gained quite a bit of exposure in the past few years. With many IT professional losing their jobs and others looking for more security, it’s not a surprise that LinkedIn’s user base has increased to over 30 million. As in most cases, attackers like to target sites where they’ll get the most exposure, leading to the highest percentage of potential victims.
Trend Micro recently reported that one of their researchers found bogus LinkedIn profiles that contained links to malware. The profiles contained images of high-profile celebrities, with links that “supposedly” downloaded their nude pictures. These links lead to a series of redirections and eventually to malware. Trend Micro also reported that attackers are using previously registered accounts that are sold in the black market by the hundreds.


Warning: Unknown: open(/home/content/30/5076530/tmp/sess_qgjlbpsvj8j19kmc0hqs5karf5, O_RDWR) failed: No such file or directory (2) in Unknown on line 0

Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct () in Unknown on line 0