Brian Prince

Two men accused of hacking the Comcast Website were sentenced Sept. 24 to 18 months in prison. The Department of Justice said in a news release, “Christopher Allen Lewis, aka ‘EBK,’ 20, of Newark, Del., and Michael Paul Nebel, aka ‘Slacker,’ 28, of Kalamazoo, Mich.,” had previously pleaded guilty to charges of “conspiring to disrupt […]

Law enforcement in Romania have announced the arrest of a man accused of trying to phish IDs and passwords for more than 3,000 eBay employees. Liviu Mihail Concioiu, arrested Sept. 22, is accused of having launched two phishing attacks against eBay in 2009 and stealing employee credentials with which he accessed an eBay database and […]

A man federal authorities said is the first person to be charged with hacking voice-over-IP providers and reselling hacked VOIP services was handed a 10-year prison sentence Sept. 24. The sentencing of Edwin Andres Pena, 27, in federal court in Newark, N.J., followed a three-year chase that took authorities from the United States to Central […]

More details about the Stuxnet worm trickled out Sept. 24 as security researchers continue to peel back the layers of the complex malware. According to Symantec researcher Liam O Murchu, early versions of Stuxnet were targeting industrial control systems without the help of a vulnerability at all. Instead, the malware abused Windows’ AutoRun feature to […]

EMC is partnering with Cloudera to help organizations manage and analyze big data. The two companies plan to integrate the data warehousing and analytics technology EMC acquired when it bought Greenplum with Cloudera Distribution for Hadoop (CDH). CDH is used for collecting, consolidating and analyzing data. The partnership will integrate CDH with EMC’s Greenplum massively […]

Spammers have increasingly been moving their operations to Russian domains since China’s domain regulator introduced tighter rules in 2009, security researchers say. The CNNIC (China Internet Network Information Center) changed some of its domain registration rules so that applicants are required to submit a formal paper-based application to a registrar that includes, among other things, […]

Microsoft is targeting small and midsize businesses with changes to the licensing agreement for its Security Essentials software. Right now, the licensing agreement states users “may install and use any number of copies of the software on your devices in your household for use by people who reside there or for use in your home-based […]

Internet Scams and Phishing: A Look Inside the Business by Brian Prince Phishing the Globe This graph shows the geographic distribution of servers hosting phishing pages in August. Phishing MOs The unique domains were home to more than 60 percent of the phishing attacks observed by Symantec last month, while Web hosting services and automated […]

Malicious PDFs have become familiar features on the threat landscape, in no small part due to the popularity and ubiquity of Adobe Reader and Acrobat. In a new report, researchers at Symantec took a deep look at how malicious PDF attacks hit users. According to Symantec, in the span of a year, the United States […]

Microsoft is warning users it has seen “limited attacks” targeting an ASP.NET vulnerability that could potentially affect many Web applications. The issue, which was demonstrated by security researchers Juliano Rizzo and Thai Duong, is due to ASP.NET’s use of encryption padding, which provides information in error messages that can be used by an attacker to […]