Blog

January 2010

Last weekend I had come across the news of Sony Playstation 3 just got hack. I was not sure until I found this piece of message and later the official news release on BBC’s website. http://news.bbc.co.uk/2/hi/technology/8478764.stm Now users can load and play anything on to their Sony PS3 claims the...
A new stream of phishing emails aimed at user using Google Adwords have been noticed. The ongoing practice of phishing for personal information, especially financial details like credit card numbers makes this kind of crime low risk with high gain for the criminals. Phish mail Google’s online advertising brings a...
Today I received an unusual email which was supposedly sent by “Indian Income Tax Department” indicating that I am eligible to receive a tax refund of Rs. 820.50. Below is the image giving idea about how the email looked like. This reminded me of fake Income Tax Refund website that...
The security update fixes six memory corruption vulnerabilities and issues in handling of URL validations. It is also believed that MS has also included patch in same update for a flaw used by attackers targeting Google and other major corporations recently. In past few weeks there has been increase in...
Internet Systems Consortium announced the release of the BIND 9.6.1-P3 security patch to address two cache poisoning vulnerabilities, “both of which could allow a validating recursive nameserver to cache data which had not been authenticated or was invalid.” More details follow below links CVE-2010-0097 CVE-2009-4022v6
Recently Indian government official admitted that there was an attempt to attack and steal the information from offices of National Security Adviser through hacker attack. More details on this news announcement can be found at: http://timesofindia.indiatimes.com/india/China-tried-to-hack-Indias-computers-Narayanan/articleshow/5473640.cms The announcement was made only after looking at similar attack news in US of...
A remotely exploitable vulnerability in QuickTime has been discovered. Information on vulnerable version of QuickTime available on Bugtraq 32540 The vulnerability can be exploited by malformed .mov files. The latest version of QuickTime is not affected by this vulnerability.
As expected cybercriminals are taking advantage of those want to donate money for Haiti earthquake relief. We had already warned the readers to not to respond any unsolicited emails asking for quake relief fund in the message. It has been observed that Rouge application generators are doing SEO poisoning on...
After the holiday season is over and people resumed their office with new year work load ahead, it all started with phishing scam on one of the India’s popular nationalized bank. Since 8th January I had been observing that I had been receiving phishing emails targeting Punjab National Bank of...