|
McAfee Research BlogDave Marcus is ready for his OscarFebruary 8th, 2010Posted by Shane Keats As a rule, we don’t do product plugs on this blog for obvious reasons. This is the place for research and data on threat and response. But we’re going to make an exception to bring you a video from Dave Marcus, the guy who keeps the McAfee Labs blog running, and runs a couple dozen [...] Protecting Privacy by DesignFebruary 2nd, 2010Posted by Ben Edelman This guest post was written by Benjamin Edelman, Assistant Professor at Harvard Business School and an advisor to McAfee. Last week I revealed troubling transmissions by the Google Toolbar: Even when a user specifically “disable[s]” the Google Toolbar, and even when the Toolbar disappears from view, the Toolbar continues tracking users online behavior—including specific web [...] Hackers Disrupt European CO₂ MarketFebruary 2nd, 2010Posted by Francois Paget
Be careful on help filesFebruary 2nd, 2010Posted by Shinsuke Honjo
Scams Take Advantage of Haiti Relief EffortsJanuary 22nd, 2010Posted by Sam Masiello Never is the heartless nature of cybercriminals more apparent than in the wake of a tragedy. As relief efforts continue and worldwide aid pours in to help those affected by the earthquake that rocked Haiti on January 12, cybercriminals have not slowed their efforts. They are eager to get you to donate money that the people [...] Patch Released for Recent Microsoft Zero Day (CVE-2010-0249)January 21st, 2010Posted by Craig Schmugar Microsoft has released Security Bulletin MS10-002, regarding Internet Explorer vulnerabilities. In addition to patching the flaw exposed by Operation Aurora, the company released patches for seven other vulnerabilities. We are aware of reports of private CVE-2010-0249 exploits impacting Internet Explorer 7 and 8 (though these are mitigated with ASLR and DEP). Historically, the odds of private exploits [...] Update on Recent Microsoft 0day (CVE-2010-0249)January 20th, 2010Posted by Craig Schmugar Here’s a quick update on CVE-2010-0249, aka the Aurora exploit. A few days ago exploit code was made public. Since then malware authors have been customizing the exploits payload to install their own malicious creations. Much of the field telemetry we’ve been receiving has been coming from McAfee users in China visiting websites in China. [...] Investigating a Possible Charity ScamJanuary 19th, 2010Posted by Francois Paget
McAfee ‘Hacking Exposed’ Webcast Series Fights CybercrimeJanuary 19th, 2010Posted by David Marcus We are pleased to announce the next event in our complimentary monthly “Hacking Exposed Live!–A Webcast Series,” which educates attendees to protect against cybercrime and hackers. The monthly webcast, hosted by Hacking Exposed coauthor and McAfee Senior Vice President Stuart McClure, walks attendees through the latest hacking techniques and explains countermeasures for preventing attacks. The [...] An Insight into the Aurora Communication ProtocolJanuary 19th, 2010Posted by Guilherme Venere
Went Looking for IE Exploits in “Haiti”, Found Something ElseJanuary 17th, 2010Posted by Craig Schmugar
“Operation Aurora” Leading to Other ThreatsJanuary 16th, 2010Operation Aurora has received a lot of attention over the past couple of days. To recap, Google, Adobe, and many other companies were attacked with code exploiting a zero-day vulnerability in Internet Explorer. Since the announcement of this vulnerability (CVE-2010-0249), exploit code has been made public and already revised into a more usable form. History tells [...] More Details on “Operation Aurora”January 14th, 2010Earlier today, George Kurtz posted an entry, ‘Operation “Aurora” Hit Google, Others’, on the McAfee’s Security Insight blog The purpose of this blog is to answer questions about this particular attack; fill in some of the threat flow and McAfee coverage details. How were systems compromised? When a user manually loaded/navigated to a malicious web page from [...] New Koobface variant saves researchers time from analysisJanuary 13th, 2010
BlackBerry Messenger the new vehicle to distribute Hoaxes?January 12nd, 2010
|






