penlau software

These are the top 15 most observed vulnerabilities for the first half of 2010 alongside the year they were disclosed and the year they were patched. (Credit:M86 Security Labs) The most exploited vulnerabilities tend to be Adobe Reader and Internet Explorer, but a rising target for exploits is Java, according to a report to be released on Wednesday by M86 Security Labs. Of the 15 most exploited vulnerabilities observed by M86 Security Labs during the first half of this year, four involved Adobe Reader and five in Internet Explorer, the lab wrote in its latest security report for January[....]

With nefarious spam on the rise throughout the blogosphere (both human and inhuman), it looks like Posterous has finally given users the ability to moderate comments upon their blogs. If you want to prevent comments from appearing on your site without your approval on your Posterous blog — now you can. You’ll get an email whenever a comment gets posted to your blog, and it’ll be up to you whether that comment gets approved or rejected. You can turn this setting on for each of your sites individually. You can either approve or reject the comment directly on the post, or go[....]

The spam appears to come from the Twitter customer support team. (Credit:Trend Micro) E-mail inboxes are getting hit this week with spam campaigns that appear to be legitimate Twitter messages but which lead to malware and phishing sites, security firms warned on Wednesday. Some e-mails masquerade as messages from Twitter’s customer support team warning the recipient that the site has detected an attempt to steal the Twitter account password and prompting the recipient to click on a link to download a “secure module” to protect the account, according to Vietnamese[....]

With human flavored spam on the rise, Ning is launching 3 weapons to help members fight the good fight and keep those “enhancement” products off of their respective forums and blogs. While Ning is sadly adopting the use of CAPTCHA’s (a tool that no longer works thanks to nefarious spam bots and human spammers), as well as email verification (which can land in the spam folder), their “Twilight quizzes” may help thwart spammers (whether virtual or in the flesh). Adding a quiz to your Ning Network’s sign-up makes it difficult for a spammer (or potential[....]

While bloggers may have won the war against spam bots via plugins like Akismet, WP-SpamFree and Sabre (not to mention a whole list of Movabletype plugins), it looks like these evil “promotional” companies have switched tactics by hiring desperate humans to promote their silly products (via Read Write Web). (Official Akismet Blog) Human-posted spam has been on the rise for some time. Low-paid workers are hired by “SEO” firms to post comments on blogs and forums, advertising their clients’ web sites (typically small local businesses). The workers generally operate out of[....]

In this day and age of technological advancement and digital lifestyles, it’s incredible to me that nearly half of a recently surveyed audience opened junk e-mail (aka spam), intentionally. According to an Ipsos Public Affairs Messaging Anti-Abuse Working Group (MAAWG) survey report (PDF), tens of millions of users continue to respond to spam in ways that could leave them vulnerable to a malware infection or bot network. The results of the survey show that nearly half of the users have opened spam, clicked on a link in spam, opened a spam attachment, replied, or forwarded it–all[....]

This screenshot shows the message sent in the latest phishing attack to hit Twitter. (Credit:Sophos) Twitter users were being hit on Wednesday with what seems to be the second phishing attack this week, according to security firm Sophos. The latest attack features a message that says “This you????” followed by a link that leads to a fake Twitter log-in page, according to a blog post by Sophos’ Graham Cluley. If a user provides the log-in credentials, the attackers have control over the user’s account and can retweet the phishing message from that account. [....]

“Bomb Blast.” “Jackson is still alive: proof.” “Obama cursed by Pope.” These are just a few of the subjects used by cybercriminals last year to trick people into opening malware-infected e-mails. Spam that uses the latest news headlines was just one of the hot trends last year in the world of cybercrime, according to McAfee’s “Q4 Threats Report” (PDF), released Tuesday. The latest threat assessment also noted a rise in “hacktivism,” or politically motivated cyberattacks. Though spam levels in the fourth quarter actually[....]