SANS Newsbites on Phishing your Company

SANS Newsbites is a summary of the most important news articles published on computer security in the past week. It includes commentary from an editorial board. In Volume 11 Number 9, they reported on the DOJ self-phishing exercises that has been in the news. I was a little surprised that Marcus Ranum wrote “This sort …

Continue reading ‘SANS Newsbites on Phishing your Company’ »

CheckFree Attack

Brian Krebs reports on a attack on CheckFree in todays Security Fix blog. It looks like someone used phishing to get credentials for their Network Solutions account. Brian says “This may seem like a logical stretch, and perhaps it is.” I dont know about that. If they just phished the email address in the whois …

Continue reading ‘CheckFree Attack’ »

Vishing

I’ve noticed that the number of vishing attempts reported at work has been on the rise. Vishing like phishing is a socially engineered attempt to get your financial information. Unlike phishing rather than luring you to a website, it lures you to a phone number. This could fool some people who are aware of the …

Continue reading ‘Vishing’ »

A Different Approach to Password Reset

Earlier this week I was discussing password resets with one of my co-workers. Common password reset questions are discoverable, guessable or disclosed on your social networking site.. Mother’s Maiden Name – public record Street you grew up on – can be findable. Place of Birth – discoverable Name of Pet – guessable (top list of …

Continue reading ‘A Different Approach to Password Reset’ »

Iconix Phishing Protection

A couple days ago I received email from Paypal titled “New PayPal Plug-In – Shop anywhere online.” That struck me as kind of suspicious so I looked at the mail headers. The headers showed the message did originate with Paypal’s servers, and more importantly it contained a domain key (DKIM). According to Wikipedia, “DomainKeys is …

Continue reading ‘Iconix Phishing Protection’ »

Corporate Fantasyland

Twice today I read “enterprises do this” statements that made me laugh. Over at SANS the handler wrote “Corporates typically block outbound FTP” while describing Yahoo phishing that had FTP downloaded malware. Later I was reading the latest AV-Comparatives report. In the discussion of numerous Sophos false positives, the author says Sophos is used in …

Continue reading ‘Corporate Fantasyland’ »