eBay Users Should Change Password due to Breach

All eBay users should change their passwords immediately.  Due to a security breach, customer account information for eBay’s millions of users has been compromised.  To reset your password, here is the eBay password-reset page link .

In a post yesterday on the company’s official blog, eBay said the “database, which was compromised between late February and early March, included eBay customers’ name, encrypted password, email address, physical address, phone number and date of birth. ”  You can read the rest of the blog here.

According to reports and the company, the breach did not affect PayPal systems.  However, eBay and PayPal are affiliated entities and you might also consider changing your PayPal password.  It is always best to use a unique password for every online account.

Users should be especially wary of “phishing” attacks.  Just like during other major events, criminals will use keywords such as “eBay” and “password change” to lure victims into clicking malicious links in emails.  Don’t get tricked – never click links in emails.  Instead, type the website name into your browser for safety.

Popular Live-Blogging Site Says Data Files Were Breached

CoveritLive, a popular, Web-based live-blogging program used worldwide, said Friday it has discovered that “certain proprietary data files” of its users “were accessed without authorization,” but that “no financial account information has been compromised. We have not yet determined if, or to what extent, CoveritLive account information (i.e., user names, email addresses and/or passwords) was accessed,” Demand Media, which bought CoveritLive last year, said in an email to its users. Those users include bloggers, journalists and mainstream media organizations, including msnbc.com, Foxnews.com, ESPN and the BBC.

By Suzanne Choney from Technolog.msnbc.msn.com

For full article: http://technolog.msnbc.msn.com/_news/2012/01/13/10152434-popular-live-blogging-site-says-data-files-were-breached

Zappos Working To Correct Online Security Breach

The personal information of up to 24 million Zappos.com customers has been compromised.

Criminals hacked into parts of the company’s internal network and gained access to names, addresses and encrypted passwords. The company said the criminals could have names, email addresses, billing and shipping addresses, phone numbers the last four digits of credit card numbers and passwords, although those are encrypted. But the hackers did not gain access to complete credit card numbers or other payment information.

By Steve Tellier at WLKY.com

For full story: http://www.wlky.com/news/30228397/detail.html

‘Request rejected’ spam campaign leads to fake AV

A spam e-mail campaign carrying a malicious attachment designed to download and run a fake AntiVirus (AV) solution on the recipient’s computer is hitting inboxes around the world.

The subject of the e-mail is “Request rejected.” The message does not contain any clue as to what the rejected request might be, and since the purported sender and its e-mail address do not offer any additional information, many users might be tricked into downloading the attached zip file to find out more information.

According to CA researchers, the zipped attachment contains a file by the name of EX- 38463(dot)pdf(dot)exe, which is a downloader trojan that connects the computer to hdjfskh(dot)net, from where it downloads and executes a fake AV variant.

The fake AV has the ability to change its name based on which version of Windows OS the computer
runs: XP, Vista, or Win7. It also has a variety of fake alert windows that it uses to great effect to scare the victims into believing their computer is affected by malware.

If you receive an email with this or similar subject, do not be fooled and do not click on the link.

Source: http://www.net-security.org/malware_news.php?id=1693

Massive Data Loss from Email Service Provider May Increase Email Scams

A large email service provider called Epsilon was recently compromised by hackers and has lost names and emails for millions of people whose records they managed for many different banks, stores, etc including the Kroger grocery chain (Fred Meyer, etc.) Citigroup, Barclays Bank, Ethan Allen furniture, Best Buy and many more.

It is very likely that this will result in targeted email scams as the hackers now have information on specific organizations connected to the email addresses they stole.

The following excellent tips on avoiding email scams were posted in a blog by Brian Krebs this morning (to see the entire article go to – http://krebsonsecurity.com/2011/04/after-epsilon-avoiding-phishing-scams-malware/):

“Don’t take the bait: Many people are familiar with the traditional phishing attack, which arrives in  an email that appears to have been sent from your bank or ISP, warning that your account will be suspended  unless you take some action immediately, usually clicking a link and “verifying” your account information, user name, password, etc. at a fake site. Commercial emails that emphasize urgency should be always considered extremely suspect, and under no circumstances should you do anything suggested in the email. Phishers count on spooking people into acting rashly because they know their scam sites have a finite lifetime; they may beshuttered at any moment (most phishing scams are hosted on hacked, legitimate Web sites). If you’re really concerned, pick up the phone (gasp!) and call the company to find out if there really is anything for you to be concerned about.

Links Lie: You’re a sucker if you take links at face value. For example, this might look like a link to Bank of America, but I assure you it is not. To get an idea of where a link goes, hover over it with your mouse and then look in the bottom left corner of the browser window. ” 

Japan Earthquake and Tsunami Disaster Email Scams, Fake Antivirus and Phishing Attack Warning

Potential email scams, fake antivirus and phishing attacks regarding the Japan earthquake and the tsunami disasters are likely to start appearing in City e-mail. Scams may contain links or attachments which may direct users to phishing or malware-laden websites. Fake antivirus attacks may come in the form of pop-ups which flash security warnings and ask the user for credit card information. Phishing emails and websites requesting donations for bogus for charitable organizations commonly appear after these types of natural disasters.

If you wish to donate to disaster relief, do not follow links in unsolicited e-mail messages. Use a reputable organization’s site like the International Red Cross, Doctors Without Borders, etc.

Cyberattack-alert system could be model for U.S.

Cyberattack-alert system could be model for U.S.
Washington state system alerts for cyberattacks, botnets, comprised desktops
By Ellen Messmer, Network World | March 08, 2011 08:54 AM ET

An ambitious project to create a statewide cyber-alert “early warning” system in the state of Washington to link with the federal Department of Homeland Security (DHS) is starting to take shape and could be a cybersecurity monitoring model for other states.

The “Public Regional Information Security Event Management” system (PRISEM) is designed to offer an online early warning about everything from botnet incursions on compromised desktops to possible full-fledged cyber-attacks from terrorists. As now designed, PRISEM will use customized security and information event management (SIEM) equipment from NitroSecurity that’s being kept at the University of Washington’s Applied Physics Lab where researchers will assist on the project, says Michael Hamilton, CISO of Seattle.

Full story here: Cyberattack-alert system could be model for U.S.

Source: www.networkworld.com/news/2011/030811-cyberattack-alert-system-washington.html