Sophos

SophosLabs Blog

Want to know what Sophos experts think about the latest security issues? Daily updates from SophosLabs™ provide insight into the most interesting and widespread threats

May

  • Strange BedfellowsWe keep track of a lot of websites at SophosLabs, but one in particular has kept me interested for a few months now. It starts off with a variation on a theme we’ve seen before - malicious 404 pages....
    16 May 2008 23:46 GMT
  • Worm targets Grand Theft Auto IV (and everything else)British newspaper The Daily Mail recently ran a story on a new Trojan that apparently targetted the newly released videogame Grand Theft Auto IV, being offered as a pirate download. We set out to find a...
    16 May 2008 15:31 GMT
  • Sophos Anti-Virus for UNIX 7.0 Beta Available - Why bother? Sophos has recently launched the beta of Sophos Anti-Virus 7.0 for UNIX. Initially this will be for Solaris 9 & 10 Sparc platform and allows users to centrally control policies, consolidate alerts and...
    16 May 2008 15:17 GMT
  • Debian / Ubuntu users - beware of the OpenSSL vulnerabilityOn Monday (the 12th) there was a post on isc.sans.org talking about how brute-force SSH attacks are on the rise. This report links to an useful paper which “investigates current methods and...
    16 May 2008 09:42 GMT
  • Controlling your employees' choice of web browserHow much control do you have over the web browsers used by the staff in your company? I ask the question because on more and more occasions I’m hearing from system administrators and technical...
    16 May 2008 09:16 GMT
  • Social Engineering, again?Picture the scene. It is early evening and the waves have been pounding against the shoreline the whole day. Four people are sitting in the pub as the sun begins to glow orange as it lowers in the sky....
    15 May 2008 09:43 GMT
  • Microsoft? I don't think so..We got a large amount of emails in our spam queues this afternoon, all pretending to be from “Microsoft Security Team”. The emails kindly pointed out that our computers could be at risk from new...
    14 May 2008 14:12 GMT
  • SQL meets Fast-FluxWhilst investigating some of the domains used as the target for the malicious script tag added to web pages in recent SQL injection attacks, one of them stood out as potentially interesting. A DNS lookup...
    13 May 2008 11:23 GMT
  • The Usual Sus/PectsWith the SAV7 release Sophos introduced the Sus/ detection class (Suspicious files), designed to cater for the more paranoid among us by utilizing looser-style generic identities. These looser identities...
    13 May 2008 08:44 GMT
  • Poetic JusticeOh how we sail, in this wonderful place where vision is obscured, and they have no face yet the winds blow strong, and they never relent the storm of spam that we all are sent. The spam fiends currently...
    12 May 2008 16:41 GMT
  • Give Them an Inch and They'll Try to Rule!A classic case of impudent opportunism, more and more malware are now using standard Microsoft Windows Operating System files to do their bidding. Last year there were examples of malware modifying...
    11 May 2008 15:50 GMT
  • CARO On Packers and ObfuscatorsLast week several SophosLabs staff attended the 2nd International CARO workshop to discuss packers and obfuscators and how the anti-malware industry is dealing with them. It was interesting to see the...
    10 May 2008 06:50 GMT
  • SQL sorcerySince I last blogged about a recent spate of aggressive SQL injection attacks [1], we have seen continued activity, with sites across the globe being hit. Amongst the casualties are numerous well known...
    9 May 2008 16:13 GMT
  • Mister Swizzor's Wacky Dialog Box AdventureMr Swizzor had a problem. He knew that anti-malware engine heuristics thought that GUI applications without windows and buttons and text boxes were worrisome, because creating a GUI application without a...
    9 May 2008 13:08 GMT
  • Free MP3s? Nothing in life is freeA couple of days ago McAfee posted an interesting blog entry detailing the aggressive use of fake MP3 files to trick victims into installing a potentially unwanted application (PUA). The article gathered...
    8 May 2008 15:09 GMT
  • Safe sofa surfing?With the newer and ever more popular generation of games consoles it’s not just about playing the game anymore, it’s also about having the ability to browse the net from the comfort of your sofa...
    8 May 2008 07:28 GMT
  • Greetings from the EICAR conferenceThe 17th annual EICAR conference is being held in Laval, France. Despite our worries about getting there it was actually quite an easy journey. French rail system is excellent. This year SophosLabs have...
    6 May 2008 07:42 GMT
  • Make the Sophos Spam Pledge - as spam email turns 30 years oldToday sees the 30th anniversary of the first ever spam message. The message was sent by Gary Thuerk, an over-enthusiastic sales and marketing representative of DEC, to all 393 users of ARPANET (which...
    1 May 2008 08:19 GMT
  • Even Rocket Scientists fall prey to malwareIt may not have been a Rocket Scientist but the report on The Register that a NASA employee was conned into installing malware, should be a wake-up call that it could happen to anyone in any company....
    1 May 2008 07:39 GMT

Select another month

RSS feed

Atom feed

Send us your feedback

Email us at sophosblog@sophos.com to share your views, ask questions, and tell us what you think.

Send us a sample

If you have suspicious files that our software has not detected, please send us a sample for analysis.