- Security Blog
- By Eduard Kovacs
- July 12th, 2012
Compromised Chinese High School Site Leads to XML Core Services Exploit
A large number of users may have been served a piece of malware
- Spam Reports
- By Eduard Kovacs
- July 9th, 2012
ADP Digital Certificate Expiration Emails Point to Malware Hosted on Hijacked Sites
A new series of ADP spam notifications have started making the rounds
- Spam Reports
- By Eduard Kovacs
- June 21st, 2012
Fake Intuit Tax Information Update Emails Lead to Compromised Website
This particular scam was previously seen at the beginning of 2012
- Hacking News
- By Eduard Kovacs
- June 21st, 2012
XML Core Services Exploit Planted on European Aeronautical Supplier’s Site
Sophos found that the same attackers may have compromised a medical company's website
- Security Blog
- By Eduard Kovacs
- June 19th, 2012
Major League Baseball Site Distributes Fake AV Malware
The malicious elements are served via a compromised ad network
- Spam Reports
- By Eduard Kovacs
- May 31st, 2012
Fake “Resource Nation” Newsletter Spreads SpyEye
401k retirement account scam that can cause some serious damage
- Advisories
- By Eduard Kovacs
- May 18th, 2012
Spammers Promote Fake Luxury Goods on Hijacked Joomla and WordPress Sites
Webmasters should check their subfolders more often for signs of an intrusion
- Hacking News
- By Eduard Kovacs
- May 16th, 2012
High-Ranked Sites Blacklisted by Google After Being Hijacked
The banned websites are not malicious by nature, but cybercriminals make them so
- Security Blog
- By Eduard Kovacs
- May 15th, 2012
Notepad++ Site Compromised, Attackers Try to Steal Facebook Credentials
Software downloads have not been compromised in the incident
- Virus alerts
- By Eduard Kovacs
- May 11th, 2012
Amnesty International UK Site Hijacked, Serves Ghost RAT
The malicious element is signed with a valid certificate
- Security Blog
- By Eduard Kovacs
- May 11th, 2012
Google Chrome Identifies Malware on Phys.org
It's uncertain what triggered the warning message
- Security Blog
- By Eduard Kovacs
- May 8th, 2012
Cybercriminals Register New Domains for "Nikjju" SQL Injection Attack
The same individual is the owner of all the domains
- Virus alerts
- By Eduard Kovacs
- April 27th, 2012
One Vulnerable Site Can Serve Multiple Cybercriminal Groups, Experts Find
The attackers make a mistake that helps search engines flag the sites as malicious
- Security Blog
- By Eduard Kovacs
- April 20th, 2012
LinkedIn Reminders Point to Malware Hosted on Hijacked Sites
Malicious scripts look for vulnerabilities in Adobe and Microsoft components
- Security Blog
- By Eduard Kovacs
- April 17th, 2012
Verizon Wireless Bill Payment Scams Point to Compromised Sites
Large payments made from users' credit cards always attract attention
- Virus alerts
- By Eduard Kovacs
- March 29th, 2012
Compromised OpenX Ad Servers Lead Users to Malware
A gang called "BlackAdvertsPro" sells traffic to cybercrooks that run exploit sites
- Virus alerts
- By Eduard Kovacs
- March 22nd, 2012
BBB and LinkedIn Email Lure Users to Compromised WordPress Sites
The BlackHole Exploit Kit is used to spread the malicious Cridex worm