AusCERT - AusCERT Web Log

HOME

About AusCERT

Membership

PKI Services

Training

Publications

Sec. Bulletins

Conferences

News & Media

Services

Web Log

Site Map

Site Help

Member login

AusCERT Web Log

Welcome to the AusCERT web log, where AusCERT will informally discuss current activity and interesting developments in the area of information security, Internet security and computer network attacks.

This is a channel for the timely release of unstructured information which may not be suited to our standard bulletins or other publications. A trade off of providing timely information is that it may be unverified or contain inaccuracies. However, if the accuracy of information changes or new information comes to light about an issue, we will always endeavour to update our web log.

We welcome comments and corrections of any of the information contained in the blog. Please contact auscert@auscert.org.au to provide feedback.

Further Information
denotes AusCERT member only content. Pinch pinched - The makers of Pinch, a nasty trojan, have been arrested. (20/12/2007)

Week In Review - 14/12/2007 - Microsoft Patches Ahoy! - (13/12/2007)

Perspectives on a recent SMH news article "Is internet banking safe?" - AusCERT was recently referenced in an article "Is internet banking safe?" in the Sydney Morning Herald. This blog entry attempts to share an analyst's perspectives on this article. (12/12/2007)

denotes AusCERT member only content. Week in Review 07/12/2007 - Week of Patches - (06/12/2007)

Computer Security Day is on ... now - To mark Computer Security Day 2007 Information Security Institute (QUT), the Australian Information Security Association and AusCERT are organising a non-profit event in Brisbane. (29/11/2007)

denotes AusCERT member only content. AusCERT Week in Review - Week Ending 23/11/2007 - Discussion of AusCERT recent participation in the APCERT drill and only 3 weeks to go for the call for presentations for AusCERT2008. (22/11/2007)

Banner Ad Malware - Sensis websites have been found to be serving malware via their banner ads. (13/11/2007)

denotes AusCERT member only content. Drive-by malware on the increase - We have been predicting an increase in drive-by malware attacks for some time and it seems that in the UK, a noticeable change in this direction has occurred. (12/11/2007)

Click-through Cloaking - The term "Click-through Cloaking" may be a new one but the idea behind it is quite an interesting one. It is nothing specifically new, however recently we have come across a few more incidents of this than normal - so I thought it would be worth a mention. (08/11/2007)

denotes AusCERT member only content. Return of the Mac...Trojan - A Mac only Trojan is currently circulating the net, reminding us that no operating system is safe from malware producers. (06/11/2007)

Firefox and Al Qaeda Cyber Jihad - A new Firefox version has been released (2.0.0.9). A web article stating Al Qaeda may have scheduled a Cyber Jihad for Nov 11. (01/11/2007)

denotes AusCERT member only content. Warezov and Stration seeding - There are still a few bot-hosted domains used by this malware to be on the watch for. (28/10/2007)

Week in Review - Ending 26/10/2007 - Auscert week in review talks about Microsoft, Adobe, RealPlayer and Firefox. (26/10/2007)

denotes AusCERT member only content. AusCERT Grows, Oracle, Firefox, and Storm - This week at AusCERT we have two new Computer Security Analysts to join the AusCERT co-ordination centre. (19/10/2007)

A newly registered Australian political party trials online voting in Australia - A newly registered Australian political party, Senator Online (SOL), is developing a web-based voting system to help inform how elected SOL senators cast their votes in the Senate. If SOL candidates are elected to the Senate, AusCERT assesses that the online voting mechanisms being used are vulnerable to manipulation by attackers within Australia or around the world and hence could be used to manipulate the Australian democratic process. (17/10/2007)

denotes AusCERT member only content. Australian Taxation Office Notification - Another scam is being emailed regarding refunds for Tax returns. (15/10/2007)

Advance fee fraud scammers researching potential targets - Spam emails used as part of advanced fee fraud scam include correct telephone numbers (11/10/2007)

denotes AusCERT member only content. Hi! I'm not sure if you remember me ... but I have a trojan for you - Attackers posing as old school friends trying to social engineer their way onto your PC. (11/10/2007)

AusCERT2008 and an alleged vulnerability in Symantec Veritas Backup Exec for Windows Servers - This week, AusCERT announced the call for papers for AusCERT2008. We have also seen an alleged vulnerability in Symantec Veritas Backup Exec for Windows Servers. (05/10/2007)

denotes AusCERT member only content. Week in Review - Week Ending 28/09/2007 - Discussion of recent Google web application vulnerabilities and a paper discussing the security of Windows Vista Gadgets. (28/09/2007)

RSS feeds of the AusCERT web log - A very quick pointer on how to receive RSS feeds of the AusCERT web log. (27/09/2007)

denotes AusCERT member only content. Recent Adobe Acrobat/Reader PDF vulnerabilities - The recent reports of Adobe PDF processing vulnerabilities and a general discussion about unconfirmed vulnerabilities. (25/09/2007)

Fake Microsoft Security Bulletin - Spam email trying to get users to run a malicious executable file claiming to be an update from Microsoft. (21/09/2007)

denotes AusCERT member only content. Snakes in an Office - Yesterday at the AusCERT offices proved to offer just a little more excitement than your average day-at-the-office. (20/09/2007)

Storm malicious emails - lures continuing to change - Within the last two weeks the Storm malicious emails have tried many different social engineering approaches. (18/09/2007)

denotes AusCERT member only content. Father's Day Email Follow-up - Two more small runs have been seen since the initial alert was raised on 12 September 2007, using different malicious domains. (18/09/2007)

Trojan Activity - Two items of discussion, Storm Trojan blogging and "Australian Office of Fair Trade" Trojan. (31/08/2007)

denotes AusCERT member only content. Storm spam hooks - The social engineering techniques used by Storm seem to be changing every three to four days. (27/08/2007)

Malware utilising Alternate Data Streams? - I can't decide if this is really smart, really targeted, or just really weird. Alternate data streams provide a way for malware to hide on a windows system with an NTFS volume. And you can't see them using built in tools. (21/08/2007)

denotes AusCERT member only content. Week in review - Week Ending 10/08/2007 - Various thoughts on Storm malware, the Chaos Communication Camp 2007 and the Bind name server. (10/08/2007)

Low volume "Bird Flu" trojan spam run - Over the past few days there has been what seems to be a low volume spam run of a warning about H5N1 bird flu supposedly breaking out in various places. (02/08/2007)

denotes AusCERT member only content. BIND up your DNS - The recent BIND vulnerability - A recent vulnerability in BIND could allow attackers to take control of what your domain names resolve to. (26/07/2007)

Improving international arrangements to deal with cybercrime - AusCERT participates in international government fora to help develop better strategies for dealing with malware and online crime. (24/07/2007)

denotes AusCERT member only content. AusCERT Slashdotted - AusCERT was recently quoted in a news article which found its way onto slashdot.org. (20/07/2007)

Welcome to our web log! - AusCERT has released a members-only web log. (20/07/2007)

Previous 1, 2, 3 ... 10, 11, 12 denotes AusCERT member only content.