Phpbb is a free online forum available and thousands love using it in different ways for exchange of ideas, discussions or build a business. However the spammers are equally busy running auto bots which can create users , fill up captcha and post their own spam topic. In a recent research at mobilesecurityresearch, we […]
Its the comeback of OWASP top 10 – 2013. Nothing much has changed security threat landscape when it comes to applications. Below is the screenshot from OWASP pdf and link to the main pdf. OWASP TOP 10 list of 2013 published list. 1) Injection 2) Broken Authentication and Session Management 3) Cross-Site Scripting (XSS) 4) […] The notorious Zeus Trojan from is back to the market with a new set of variants. This was first spotted since 2007, a wide spread powerful trojan targeting bank accounts. Now a report from TrendMicro has shown the come back of Zeus with a new variant. As per net-security : “In this particular instance, the malware […] The Dorkbot worm, which first appeared in 2011 and has since been spreading via removable drives, IM programs and social networks, is currently targeting Facebook users. According to Bitdefender reports, over 9,000 malicious links pointing to the malware have been detected in 24 hours. The worm is delivered to potential victims via a chat message […] Multiple reports regarding this threat was first discovered in Brazil. Microsoft detect it as Trojan:JS/Febipos.A. The malware is a malicious browser extension specifically targeting Chrome and Mozilla Firefox as reported by Microsoft Malware Protection Center. As per Microsoft reports : When installed, it attempts to update itself using the following URLs: Chrome browser: du-pont.info/updates/<removed>/BL-chromebrasil.crx […] Its time for apple’s turn to take a hit. Researcher Elie Bursztein demonstrated how apple store communicated with plan text. After a decade, Apple finally turns HTTPS on for the App Store, fixing a lot of vulnerabilities. It was almost unbelievable that Apple opened their doors for years. As per ELIE.IM : “By abusing the lack of encryption (HTTPS) […] Bogus alert from Microsoft Digital Crime Unit carries malware. Microsoft Digital Crime Unit helps fight online crimes partnering with other organisations, the division of Microsoft that was responsible to take down few of botnets and investigate of various online legal issues. As per Sophos the spammed out email looks like the screenshot below. The email with the old […] Symantec and few others reported about the multiple versions of APT – 1 infecting thousands of computers worldwide. The hackers are using multiple versions of Apt 1 tricking the users download the pdf. As per Mandiant blog report. As we noted yesterday, Brandon Dixon’s 9B+ blog and Symantec reported the discovery of two malicious versions of our […] Every other day either I am tagged on Facebook with Southwest free tickets or I keep hearing my friends who signed up for this spam. This has been going on for a while and Facebook has not been able to do anything with their security/fraud team. This version says something along the lines of “TWO FREE Southwest Airline […] The Android Malware which threatens to take control of contact lists, internet connections, and dialing and text functions, and can be used to collect personal information and engage in SMS spamming. Once it’s turned your phone into a “zombie,” it sends text messages that create financial gains for advertisers. In many cases, the threat will overrun […]