Sponsored White Papers, Webcasts, and Downloads
- ZDNet Author Biography
Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and E-crime incident response. Dancho is also involved in business development, marketing research and competitive intelligence as an independent contractor. He's been an active security blogger since 2007, and maintains...- more about Dancho Danchev »
ZDNet Resources
- McAfee debunks recent vulnerabilities in AV software research, n.runs restates its position
- Several days after blogging about a research conduced by n.runs AG that managed to discover approximately 800 vulnerabilities in antivirus products, McAfee issued a statement basically debunking the number of vulnerabilities found, and providing its own account into the number of vulnerabilities affecting its own products : "A recent...
- Tags: Software, McAfee Inc., Antivirus, Vulnerability, Vendor, Flaw, N.Runs, Dancho, Security, Viruses And Worms, Dancho Danchev
- Blog posts 2008-07-23
- 75% of online banking sites found vulnerable to security design flaws
- In a paper entitled "Analyzing Web sites for user-visible security design flaws" to be published at the Symposium on Usable Privacy and Security meeting at Carnegie Mellon University July 25, Atul Prakash and two of his doctoral students examined 214 financial institutions in 2006, finding that over 75% of all...
- Tags: Bank, Online Banking, Flaw, Security, Financial Services, Dancho Danchev
- Blog posts 2008-07-23
- Georgia President's web site under DDoS attack from Russian hackers
- From Russia with political love? It appears so according to a deeper analysis of the command and control servers used by the attackers. During the weekend, Georgia President's web site was under a distributed denial of service attack which managed to take it offline for a couple of hours. The...
- Tags: Web, Russia, Server, Web Site, Hacker, Distributed Denial Of Service, Georgia, Attack, Russian, Shadowserver, C&C, C&C Server, Web Site Development, Security, Internet, Dancho Danchev
- Blog posts 2008-07-22
- Kaspersky's Malaysian site hacked by Turkish hacker
- According to Zone-h.org, Kaspersky's Malaysian site has been defaced by a Turkish hacker during the weekend, through a SQL injection, leaving the following message - "hacked by m0sted And Amen Kaspersky Shop Hax0red No War Turkish Hacker Thanx to Terrorist Crew all team members". "The official Malaysian Kaspersky Antivirus's...
- Tags: Web, Malware, Web Site, Site, Hacker, Kaspersky, Web Site Development, Web Technology, Cyberthreats, Spyware, Adware & Malware, Security, Viruses And Worms, Internet, Dancho Danchev
- Blog posts 2008-07-21
- Spam coming from free email providers increasing
- After analyzing three weeks of spam data between June 13 to July 3, 2008, Roaring Penguin Software Inc. found evidence that spam originating from the top three free email providers (Gmail, Yahoo Mail and Hotmail) is increasing, with spammers in favor of abusing Gmail's privacy preserving feature of not including...
- Tags: CAPTCHA, Google Gmail, Free Email Company, Anti-spam, Spammer, E-mail Company, IP, Service, Cyberthreats, Spam, E-mail Providers, E-mail, Phishing, Viruses And Worms, Security, Networking, Spam And Phishing, Internet, Online Communications, Dancho Danchev
- Blog posts 2008-07-18
- Ringleader of cybercrime group to be offered a job as cybercrime fighter
- Owen Thor Walker, a 18 years old ringleader of an international cybercrime group, known as AKILL, part of the A-Team, a group of 8 script kiddies which were all caught in a operation called "Operation Bot Roast II" bust executed by the FBI and several international law enforcement agencies in...
- Tags: Job, Malware, Bot, Malware Bot, PRIVMSG, Spyware, Adware & Malware, Cyberthreats, Viruses And Worms, Security, Dancho Danchev
- Blog posts 2008-07-16
- Remote code execution through Intel CPU bugs
- Kris Kaspersky, author of numerous books on reverse engineering and software engineering, will be presenting his research on remote code execution through Intel CPU bugs at the upcoming Hack in the Box Security Conference in Malaysia. If his proof of concept code consisting of JavaScript or TCP/IP packet attacks on...
- Tags: CPU, Intel Corp., Processors, Security, Semiconductors, Hardware, Components, Dancho Danchev
- Blog posts 2008-07-14
- XSS worm at Justin.tv infects 2,525 profiles
- A XSS worm was crawling across Justin.tv, the popular lifecasting platform at the end of June, details of the incident emerged in the middle of last week. Basically, the group that found the XSS vulnerability abused it for the purpose of generating the following graph as a proof of concept,...
- Tags: Vulnerability, XSS, Worm, Security, Dancho Danchev
- Blog posts 2008-07-14
- Verizon, Telecom Italia, and Brasil Telecom top the botnet charts in Q2 of 2008
- When was the last time you heard something in the lines of "We do our best to protect our customers from the threats posed by..." ? In reality though, the statement should end up like "protect our customers from the threats posed by the rest of our customers". China may...
- Tags: Telecom Italia, Verizon Communications Inc., Internet Service Provider, Malware, Internet Service Providers (ISPs), Cyberthreats, Spyware, Adware & Malware, Viruses And Worms, Security, Internet, Dancho Danchev
- Blog posts 2008-07-10
- Gmail, PayPal and Ebay embrace DomainKeys to fight phishing emails
- Brad Taylor, Google's Gmail Spam Czar, has just posted details on the ongoing cooperation with PayPal and Ebay, two of the most targeted brands in phishing emails, the effect of which is rejecting compared to flagging as spam each and every email pretending to be coming from paypal.com and ebay.com...
- Tags: Google Gmail, DomainKeys, PayPal, eBay Inc., Authentication, E-mail, Phishing, Cyberthreats, Spam, Viruses And Worms, Security, Online Communications, Spam And Phishing, Dancho Danchev
- Blog posts 2008-07-09
- Storm Worm says the U.S have invaded Iran
- Right after the U.S Independence Day fireworks, Storm Worm latest campaign launched a couple of hours ago, is back online this time attempting to once again exploit client-side vulnerabilities, this time serving iran_occupation.exe by spreading false rumors of U.S invasion in Iran. The text reads : "Just...
- Tags: Worm, Iran, Phishing, Cyberthreats, Corporate Communications, Spam, Viruses And Worms, Security, Spam And Phishing, Marketing, Dancho Danchev
- Blog posts 2008-07-08
- U.K's most spammed person receives 44,000 spam emails daily
- When you get so much spam that your anti-spam provider decides to use you in a marketing campaign, your spam problem turns into an asset for the community, and researchers running honeypots can only envy you for the sample of spam emails you receive on a daily basis. According to...
- Tags: Orange PCS, Internet Service Provider, U.K, Spam Email, Internet Service Providers (ISPs), E-mail, Internet, Online Communications, Dancho Danchev
- Blog posts 2008-07-08
- $1 Million prize offered for cracking an encryption algorithm
- It's 2008, and companies perhaps rich on VC money to waste in a guerilla marketing tactic for generating viral buzz, still talk and act as the utopian "unbreakable encryption" algorithm is the panacea of security, or the "Hackers Hell: Privacy That Can't Be Compromised" as they pitch it. ...
- Tags: Passphrase, Malware, Encryption Algorithm, Encryption, Spyware, Adware & Malware, Cyberthreats, Security, Viruses And Worms, Dancho Danchev
- Blog posts 2008-07-07
- Approximately 800 vulnerabilities discovered in antivirus products
- In what appears to be either a common scenario of "when the security solution ends up the security problem itself", or a product launch basing its strategy on outlining the increasing number of critical vulnerabilities found in competing antivirus products, the IT/Security consulting firm n.runs AG claims to have discovered...
- Tags: Antivirus Product, Antivirus, Vulnerability, Malware, Security, Viruses And Worms, Dancho Danchev
- Blog posts 2008-07-07
- Storm Worm's Independence Day campaign
- A Storm Worm's Independence Day campaign is circulating online using email as propagation vector, attempting to trick users into visiting a Storm Worm infected host, where a multitude of what looks like over five different exploits attempt to automatically infect the visitors next to the malware binary fireworks.exe. Historically, Storm...
- Tags: Software, Malware, Worm, Exploit, Storm Worm, Day Vulnerability, Cyberthreats, Spyware, Adware & Malware, Viruses And Worms, Security, Dancho Danchev
- Blog posts 2008-07-04
- Gmail, Yahoo and Hotmail's CAPTCHA broken by spammers
- Breaking Gmail, Yahoo and Hotmail's CAPTCHAs, has been an urban legend for over two years now, with do-it-yourself CAPTCHA breaking services, and proprietary underground tools assisting spammers, phishers and malware authors into registering hundreds of thousands of bogus accounts for spamming and fraudulent purposes. ...
- Tags: CAPTCHA, MSN Hotmail, Google Gmail, Yahoo! Inc., Spammer, HIP Character, E-mail Providers, Internet, Dancho Danchev
- Blog posts 2008-07-03
- Antivirus vendor introducing virtual keyboard for secure Ebanking
- Kaspersky's most recent product launch of the Kaspersky Internet Security 2009, is featuring a virtual keyboard "a secure pop-up that enables logins, passwords, bank card details and other important personal information to be entered safely to prevent the theft of confidential information" aiming to protect users from keyloggers, and consequently...
- Tags: Bank, Antivirus, Virtual Keyboard, Malware, Kaspersky, Ebanking Malware, Keyboards, Hardware, Peripherals, Dancho Danchev
- Blog posts 2008-07-02
- 300 Lithuanian sites hacked by Russian hackers
- A recently accepted legislation in Lithuania banning communist symbols across Lithuania, has prompted Pro-Russian hackers to start defacing Lithuanian sites, an indication of the upcoming attack was detected last week with active discussions around Russian forums greatly reminding us of the Russia vs Estonia cyberattack sparkled due to the removal...
- Tags: Web, Web Site, Hacker, Distributed Denial Of Service, Attack, Hacking, Security, Dancho Danchev
- Blog posts 2008-07-02
- Sony PlayStation's site SQL injected, redirecting to rogue security software
- The latest high trafficked web site to fall victim into the continuing waves of massive SQL injection attacks courtesy of copycats and the ASProx botnet, is Sony's PlayStation U.S site according to a recent post at SophosLabs's blog : "Researchers at IT security firm Sophos have warned lovers of...
- Tags: Sony Corp., Domain, SQL, Sony Playstation, SQL Injection, Hacker, Programming Languages, Game Players, Databases, Security, Software Development, Software/Web Development, Consumer Electronics, Personal Technology, Enterprise Software, Software, Data Management, Dancho Danchev
- Blog posts 2008-07-02
- Blizzard introducing two-factor authentication for WoW gamers
- Password stealing malware targeting popular MMORPGs such as World of Warcraft for instance, has become so prevalent, that video game developers are taking their authentication model a step further, by introducing two-factor authentication into play. And while marketable, is the new authentication layer actually useful in a real life situation?...
- Tags: Password, Two-factor Authentication, World Of Warcraft, Malware, Gamer, Spyware, Adware & Malware, Games, Cyberthreats, Security, Personal Technology, Dancho Danchev
- Blog posts 2008-07-02
White Papers and Webcasts
Designed specifically to address the concerns of senior IT managers at organizations with more than 100 employees, the Intel Premier IT Professional Program provides best practices via local and e-Seminars and a members-only Web site.
