Vulnerabilities & attacks

Europe is getting a cybercrime alert system as part of a European Union drive to fight online criminals.

According to plans, European law enforcement body Europol will receive 300,000 euros ($386,430) to build an alert system that pools reports of cybercrime, such as online identification and financial theft, from across the 27 member states.

Police will launch more remote searches of suspects' hard drives over the Internet, as well as cyberpatrols to spot and track illegal activity, under the strategy adopted by the European Union's council of ministers Thursday.

The strategy, a blueprint for fighting cybercrime in … Read more

Editors note: CNET editor and Crave contributor Dong Ngo is spending the next month in his homeland of Vietnam and plans to file occasional dispatches chronicling his impressions of how technology has permeated the culture there. Click here for more of Dong's stories from abroad.

HANOI, Vietnam--If you use any Internet-connected computer in Vietnam--and there are lots of them, with Internet cafes and Wi-Fi spots abounding in any city--chances are you'll find a little red plus sign at the bottom-right corner of the screen.

That's the icon of the most popular antivirus software here. It's called BKAV.

(A bit of background: if you've recently read reviews of Internet security products by our security editor Rob Vamosi, know that I am the one who designed the methodology involved in testing these applications. It's therefore natural for me to be curious about how people in various parts of the world are protected against malicious software.)

BKAV is short for Bach Khoa AntiVirus, with "Bach Khoa" being the Vietnamese name for the Hanoi University of Technology. The software was originally developed as a hobby by Quang Tu Nguyen, a student-turned-lecturer at the school. It's currently the flagship product of Bach Khoa Internetwork Security center (BKIS), of which Quang, now 33, is director.

Quang still lectures once in awhile, but he's primarily known as the man who has changed the landscape of network and computer security in Vietnam. His creation, BKAV, is in many ways just about the best security software you can find.… Read more

Spammers knocked offline two weeks ago when their hosting company, McColo Corp., was shut down are finally coming back online, security researchers said on Wednesday.

San Jose, Calif.-based McColo was believed to be responsible for up to 75 percent of all spam, according to Brian Krebs of The Washington Post, who broke the initial story.

Spam volumes, which dropped about 80 percent when McColo was shut down on November 11, remained relatively flat since then until a few days ago when they started climbing up, said Matt Sergeant, senior antispam technologist at MessageLabs, now owned by Symantec.

Since Sunday, … Read more

A worm dubbed Win32/Conficker.A is making the rounds on Windows machines, exploiting a security hole that Microsoft released a patch for in October, Microsoft said on Wednesday.

The number of attacks have increased over the past couple of days, exploiting a critical vulnerability that was addressed by security update MS08-067.

The malware mostly was spreading inside corporations, but also hit several hundred home PCs, Microsoft said in a posting on the Microsoft Malware Protection Center Blog.

"It opens a random port between port 1024 and 10000 and acts like a Web server. It propagates to random computers … Read more

Someone is using Orkut to spread Trojan links in a message disguised as an official e-mail from the Google-owned social network, according to an alert from security firm Websense released Tuesday.

The message, written in Portuguese to appeal to Orkut's many Brazilian members, looks like it is sent from an Orkut member who is looking for love, Websense says.

"The message contains several links that appear to lead to the official Orkut Web site. Clicking on a link actually leads to a malicious executable file, which is a Trojan Downloader named 'imagem.exe,'" the Websense alert says. &… Read more

Microsoft is listed fifth in the Top 10 list of the worst spam service ISPs compiled by Spamhaus.org.

Spammers are advertising links to sites that "peddle fake pharmacy products, porn, and Nigerian 419 scams" on Microsoft's Live.com and Livefilestore.com sites because they know that the Microsoft sites won't get blocked by antispam groups, writes Brian Krebs on his Security Fix Blog at the Washington Post.

Spamhaus has been alerting Microsoft to the problem for some time, but to no avail, Richard Cox, Spamhaus' chief information officer, told Krebs. Other security companies, including McAfee … Read more

A Connecticut substitute teacher arrested four years ago for allegedly showing students porn on a classroom computer has been cleared of the felony charges--for now--after experts pointed the finger at spyware.

Julie Amero, 41, agreed to plead guilty to a misdemeanor count of disorderly conduct, pay a $100 fine, and surrendered her teaching license, according to the Hartford Courant. The ordeal left her hospitalized for stress and heart problems, the report said.

The Superior Court judge in Norwich on Friday tossed out the charges that she had endangered children by intentionally causing "pop-up" pornography to display on her … Read more

China is actively conducting cyber espionage as a warfare strategy and has targeted U.S. government and commercial computers, according to a new report from the U.S.-China Economic and Security Review Commission.

"China's current cyber operations capability is so advanced, it can engage in forms of cyber warfare so sophisticated that the United States may be unable to counteract or even detect the efforts," according to the annual report (PDF) delivered to Congress on Thursday.

The report cites news articles and testimony from U.S. officials like Col. Gary McAlum, chief of staff for the … Read more

Did you know that you can buy a keystroke logger for $23 or pay $10 to have someone host your phishing scam? Having a botnet at your fingertips will cost you $225, and a tool that exploits a vulnerability on a banking site averages $740 and runs as high as $3,000.

That's according to the Symantec Report on the Internet Underground Economy due to be released Monday.

Symantec researchers spent a year observing the chat among cybercriminals on IRC channels and forums on the Internet between July 1, 2007 and June 30, 2008 and were able to piece … Read more