SANS Newsbites is a summary of the most important news articles published on computer security in the past week. It includes commentary from an editorial board. In Volume 11 Number 9, they reported on the DOJ self-phishing exercises that has been in the news. I was a little surprised that Marcus Ranum wrote “This sort …
Continue reading ‘SANS Newsbites on Phishing your Company’ »
I ran into an interesting problem on Tuesday. I installed Extended Validation SSL certificates on three of our IIS servers, and the ISA front end. Yes, yes, I know. “EV SSL is a scam.” They weren’t that expensive at Digicert and I thought it would be cool to turn the address bar green. After implementing, …
Over at the impactalabs blog, Kevin Lam comments about a company that sent an all employee email waring users about a IKEA phishing/malware email. This hit something that I’ve been forced to re-examine this week. Is it effective to send all employee emails warning about the latest virus attack on the internet. I believe that …
Brian Krebs reports on a attack on CheckFree in todays Security Fix blog. It looks like someone used phishing to get credentials for their Network Solutions account. Brian says “This may seem like a logical stretch, and perhaps it is.” I dont know about that. If they just phished the email address in the whois …
I’ve been looking forward to the release of Lunker, a spear Phishing toolkit for pentesters. It was originally reported to be part of the OWASP live CD due out this month. We just dont have the budget for phishme (although it is cheap). Unfortunately according to a comment on this post over at hackyourself.net they …
I’ve noticed that the number of vishing attempts reported at work has been on the rise. Vishing like phishing is a socially engineered attempt to get your financial information. Unlike phishing rather than luring you to a website, it lures you to a phone number. This could fool some people who are aware of the …
Earlier this week I was discussing password resets with one of my co-workers. Common password reset questions are discoverable, guessable or disclosed on your social networking site.. Mother’s Maiden Name – public record Street you grew up on – can be findable. Place of Birth – discoverable Name of Pet – guessable (top list of …
A couple days ago I received email from Paypal titled “New PayPal Plug-In – Shop anywhere online.” That struck me as kind of suspicious so I looked at the mail headers. The headers showed the message did originate with Paypal’s servers, and more importantly it contained a domain key (DKIM). According to Wikipedia, “DomainKeys is …
Twice today I read “enterprises do this” statements that made me laugh. Over at SANS the handler wrote “Corporates typically block outbound FTP” while describing Yahoo phishing that had FTP downloaded malware. Later I was reading the latest AV-Comparatives report. In the discussion of numerous Sophos false positives, the author says Sophos is used in …
MX Logic has a writeup on US Tax Court phishing emails seen today. The email from [email protected] has a link to download “a Copy of the Order, Letter, Notice or Other Document Being Appealed”. The website was not online when checked on it.