SecurityFeed.info » Latest Blog Entires From WebSense Security Labs

Feeds

23887 items (23887 unread) in 97 feeds

• Aviv Raff On .NET (18 unread)
• Bugtraq (bugtraq) Mailing List (605 unread)
• CGISecurity.com: Your Web Site and Application Security Resource (74 unread)
• christian's weblog (25 unread)
• Irongeek's Security Site (125 unread)
• Jeremiah Grossman (74 unread)
• Heorot.net (11 unread)
• milw0rm.com (440 unread)
• Nmap Hackers (nmap-hackers) Mailing List (7 unread)
• Packet Storm Security Advisories (373 unread)
• Packet Storm Security Exploits (461 unread)
• Packet Storm Security Headlines (376 unread)
• Packet Storm Security Last 100 (1841 unread)
• Packet Storm Security Last 20 (833 unread)
• Packet Storm Security Last 50 (1441 unread)
• Packet Storm Security Last Files (544 unread)
• Packet Storm Security Miscellaneous Files (109 unread)
• Packet Storm Security Tools (113 unread)
• Rootsecure.net (694 unread)
• SecuriTeam.com (184 unread)
• Security Vulnerability Research & Defense (36 unread)
• SecurityFocus News (139 unread)
• SecurityFocus Vulnerabilities (806 unread)
• Securityvulns news channel (336 unread)
• SecWatch - Latest Exploit Alerts (10 unread)
• Taking Network Security to the Streets (28 unread)
• The One And Only Matt Parnell.com (34 unread)
• The Register - Security (389 unread)
• The Register - Software (457 unread)
• VulnWatch (vulnwatch) Mailing List (19 unread)
• Web App Security (webappsec) Mailing List (88 unread)
• IceСμbeς (15 unread)
• Linmagazine (186 unread)
• ‫netcraft Bytes :) (38 unread)
• Digg (4061 unread)
• Blonde 2.0 (51 unread)
• The Microsoft Security Response Center (MSRC) (40 unread)
• (IN)SECURE Magazine Notifications RSS (17 unread)
• 0x000000 Security (79 unread)
• ----- Anti-Malware ----- Analysis and Defense (15 unread)
• Apple Fun (25 unread)
• Technorati Search for: aviv.raffon.net (203 unread)
• C.I.S.R.T. (10 unread)
• Determina Zero-Day Protection (6 unread)
• Didier Stevens (47 unread)
• eEye Digital Security - Research Blog (10 unread)
• Ryan Naraine's Security Watch (96 unread)
• Security - RSS Feeds (179 unread)
• Exploit Prevention Labs (28 unread)
• Software Vulnerability Exploitation Blog (22 unread)
• F-Secure Antivirus Research Weblog (75 unread)
• Full Disclosure (290 unread)
• George Ou (10 unread)
• GNUCITIZEN Media Portfolio (65 unread)
• ha.ckers.org web application security lab (35 unread)
• heise security (342 unread)
• invisiblethings' blog (35 unread)
• Jeff Jones's blog (12 unread)
• JScript Blog (16 unread)
• Matasano Chargen (38 unread)
• McAfee Avert Labs (66 unread)
• Michael Howard's Web Log (26 unread)
• PandaLabs (35 unread)
• Zero Day (273 unread)
• SANS Internet Storm Center, InfoCON: green (232 unread)
• Latest Secunia Security Watchdog Blog Entries (24 unread)
• SecuriTeam Blogs (65 unread)
• Security Fix (115 unread)
• HP ASC Portal (30 unread)
• Strike Center (12 unread)
• Sunbelt Blog (217 unread)
• Sunnet Beskerming Security Advisories (29 unread)
• Technobabylon
• The Recurity Lablog (31 unread)
• Wired: Threat Level (454 unread)
• TrendLabs | Malware Blog - by Trend Micro (159 unread)
• Uninformed Journal (44 unread)
• WabiSabiLabi's blog (22 unread)
• WatchGuard Wire (48 unread)
• Latest Blog Entires From WebSense Security Labs (42 unread)
• Hackszine.com (151 unread)
• DVLabs: Blogs (63 unread)
• Errata Security (81 unread)
• Robert Hensing's Blog (71 unread)
• PaulDotCom Community Blog (10 unread)
• David LeBlanc's Web Log (20 unread)
• Billy (BK) Rios (19 unread)
• David Litchfield's blog (21 unread)
• Farfromr00tin (23 unread)
• aut disce, aut discede (17 unread)
• pwn* (16 unread)
• hackademix.net (42 unread)
• SecurityDot Vulnerabilities (422 unread)
• Vulnerabilities & Exploits (29 unread)
• Malicious Code (26 unread)
• Security Risks (21 unread)
• Digg / Security / upcoming (4195 unread)

Latest Blog Entires From WebSense Security Labs (10 unread)

• August 29, 2008
• 16:25

  Dissecting Shellcode in Malicious Web Sites

   » ‎ Latest Blog Entires From WebSense Security Labs
  Today’s blog shows how we can debug the shellcode that we find in malicious Web sites. You might ask: what does this shellcode do? And how can I debug it? One way to find out is to write a quick C program that has the shellcode bytes in a buffer. Then, we define a pointer function to point to the code and execute it!

• August 26, 2008
• 20:15

  A recent spam worm analysis

   » ‎ Latest Blog Entires From WebSense Security Labs
  Here in the Labs, we've recently discovered a new spam worm spreading. It is usually sent with spam that tries to deceive users into clicking a malicious URL contained in the message. Once clicked, the URL redirects users to malicious Web sites that result in an ActiveX Object error. The intention of this error is to manipulate users to download files infected with a virus.

• August 22, 2008
• 18:00

  Finding the virtual address of COM object functions

   » ‎ Latest Blog Entires From WebSense Security Labs
  Some of us know tools that can take a COM Object module (also known as an ActiveX Control)
  and show us information about it, such as the names of its objects and functions.
  
  Two examples of such tools are the OlyView and TLB Viewer.
  
  But what if we want to know additional information, such as the virtual address inside the
  module that handles each function of our object?
• August 21, 2008
• 18:00

  Malicious Flash redirectors

   » ‎ Latest Blog Entires From WebSense Security Labs
  Most of our blog readers are probably quite familiar with the use of redirectors by malicious groups to automatically redirect a user upon visiting a page. Generally, this is done so that users are presented with a link they are more familiar with, but that has been compromised in some way. For example, they may have added a few, very subtle lines of code that redirect the user to a more malicious Web site, less known to the user, and in many cases more dynamic in both content and location.

• 11:50

  Spam and Malware Ecosystem Targeting Brazilian Users with YouTube and Adobe Flash Themes

   » ‎ Latest Blog Entires From WebSense Security Labs
  Websense has discovered an ecosystem representing the combined tactics of spammers and malware authors targeting Brazilian users. This ecosystem comprises automated bots, templates of spam content with links encouraging users to watch a video on YouTube (Brazilian site). Through these email campaigns, the spammers invite targeted users to a fake page that resembles the Adobe Flash Player download site (Brazilian version), encouraging users to download the Adobe Flash installer which is actually a malicious executable.
  
• August 18, 2008
• 20:00

  Facebook Viral Social Networking Spam

   » ‎ Latest Blog Entires From WebSense Security Labs
  Websense Security Labs has been tracking various Facebook attacks for many years. We've had to create numerous tools and methods to detect these types of attacks because most Web 2.0 social networking sites are difficult to track due to limited public access to most accounts. Most social networking accounts can only be viewed if the account holder explicitly accepts or requests another account to be added as a "friend". A generic Web crawler and even a search engine Web crawler would not be able to mine the pages on a social networking site due to lack of permission.

  We've used our HoneyJax system , which we've spoken about in the past, to track malicious activity in the social networking world.

• August 14, 2008
• 19:55

  CNN and MSNBC Olympic spoof emails - 5 million spam messages per hour

   » ‎ Latest Blog Entires From WebSense Security Labs
  Over the last week in the Labs, we have alerted on and discovered a series of news alert spoofed emails which spread malware when links in the emails are clicked. Malicious emails of this news-related, social engineering tactic have been circulating for the last few months. They have evolved into attempts to entice end users to click on their malicious links by presenting news story links for users to click. Until these two recent examples of social engineering with the CNN and MSNBC spoof emails, the illegitimate emails were easy to spot. They simply were one line emails with outlandish headlines.
• August 13, 2008
• 14:30

  Georgia-Russia conflict: Impact on the Threat Webscape

   » ‎ Latest Blog Entires From WebSense Security Labs
  If you have been following recent news, you have probably seen that the top stories are covering the conflict in Georgia. In the Security Labs, we have seen evidence of attacks that are typical of so-called cyber-warfare attacks. Certainly, DDoS attacks and defacements are not new and have been used by those with malicious intent during events such as public riots or events of a politicial nature.
• August 12, 2008
• 20:47

  Patch Tuesday - August 2008

   » ‎ Latest Blog Entires From WebSense Security Labs
  This month, Microsoft released 11 security bulletins of which 6 were rated critical. Microsoft has finally patched the Snapshot Viewer ActiveX control vulnerability, which we have previously blogged about when we discovered hundreds of sites silently infecting their visitors with modified proof-of-concept exploit code. The window of exposure for this web-borne attack is at least 1 month and 5 days, given that it was first publicly announced on July 7th and only patched today.
• August 11, 2008
• 3:00

  Black Hat USA 2008 Wrap Up

   » ‎ Latest Blog Entires From WebSense Security Labs
  On Day 2 at BlackHat USA, there were a few talks that several Websense researchers were highly anticipating. One of the talks was by JavaScript guru Billy Hoffman, titled "Circumventing Automated JavaScript Analysis Tools". At Websense Security Labs we see a lot of malicious JavaScript, and we are always looking for new information and research in this area. Billy Hoffman has always been a great source of information regarding JavaScript and its malicious use.