Canada Post warns of fraudulent email
Canada Post is warning its customers of a fraudulent email disguised as a delivery notification identifying itself as having been sent from Canada Post. The email states that Canada Post is trying to deliver a package and provides further directions for the recipient to open an email attachment in order to proceed with the package delivery.
Canada Post says the email is a fake and likely contains a virus or other malware. Recipients are being strongly cautioned against opening the attachment.
Additionally, Canada Post said that if a tracking number is provided in the email, you can check separately at the agency’s website. If it comes up as invalid, then the tracking number is a fake and the email should be deleted.
Read more at News1130
First known Mac botnet distributed as Trojan
A piece of malicious software unwittingly shared over a peer-to-peer network in January was the key tool in what security researchers are saying was the first known attempt to create a botnet of Mac computers.
Researchers at Symantec say the Trojan, called OSX.Iservice, hid itself in pirated versions of the Apple application iWork ’09 and the Mac version of Adobe Photoshop CS4 that were shared on a popular peer-to-peer bittorrent network.
SecureMac has released a tool to remove the Trojan, and can be downloaded from here.
Via: cbc.ca
New rogue DHCP server malware
at 10:00 pm
on March 16, 2009
in Data Centers, Development, Programming, Security, Tellicommunications
no comments
A bold new type of malware has been identified. Its attack vector is based on hijacking the DNS settings for devices on a local area network. Any device regardless of operating system that depends on an internal or external name server can be affected.
The trojan configures and runs a rogue DHCP daemon on the infected host. Other devices on the same LAN are misled into using name servers settings provided by the trojan DHCP daemon for DNS lookups instead of using the origional configured name servers.
Devices on the network are then sent to fraudulent websites that can be more difficult to identify as imposters since the DNS lookups appear correct.
This is a more advanced attack of a well known vector of attacking a systems hosts file, but by being system agnostic and using the familiar DNS protocol, it is much more effective.
More details can be found at SANS
Ruan is a resolute technophile that is currently devoted to the professional practice of Information Technology Management. In his free time Ruan pursues various interests including the study of Information Security practices and the exploration of visual culture through contemporary photography and communication design.
- IBM embraces Firefox, adopts it internally
9:54 am, July 5, 2010 - Canada Post warns of fraudulent email
7:18 pm, April 26, 2010 - Bank Employee Plants Malware on ATMs
11:46 am, April 9, 2010 - University of Cambridge discovers Chip and PIN verification “wedge” vulnerability
11:41 am, February 15, 2010 - The EU and UK Have Less Open Wireless WiFi Broadband Hotspots Than USA
11:43 am, January 8, 2010