News

Dynamic Detection of Malicious DDNS
Dynamic Detection of Malicious DDNS
This post was co-authored by Andrew Tsonchev. Two weeks ago we briefly discussed the role of dynamic DNS (DDNS) in a Fiesta exploit pack campaign.
Feb. 11, 2014
Malicious Ads from Yahoo Just the Tip of the Iceberg
Malicious Ads from Yahoo Just the Tip of the Iceberg
When Fox-IT published their report regarding malvertisements coming from Yahoo, they estimated the attack began on December 30, 2013, while also noting
Jan. 9, 2014
Fake German Bill Spam Campaign Spreads Malware
Fake German Bill Spam Campaign Spreads Malware
Update 2014-01-10: This malicious campaign has expanded to include emails that masquerade as bills from NTTCable and from VolksbankU Update
Jan. 9, 2014
Christmas Packets: Web Browsing and the Festive Period
Christmas Packets: Web Browsing and the Festive Period
The web browsing behaviour of users changes as the end of the year approaches. The holiday season can provide a large distraction from work duties that
Nov. 20, 2013
A Smorgasbord of Denial of Service
A Smorgasbord of Denial of Service
On October 22, 2013, Cisco TRAC Threat Researcher Martin Lee wrote about Distributed Denial of Service (DDoS) attacks that leverage the Domain Name System
Oct. 25, 2013
Wireless Security Yesterday, Today and Tomorrow
Wireless Security Yesterday, Today and Tomorrow
As we continue our series of blog posts during National Cyber Security Awareness Month (NCSAM), we focus today on some best common practices that can be used both at home and in the workplace to enhance the overall security posture of your Wireless Networks.
Oct. 8, 2013
Watering-Hole Attacks Target Energy Sector
Watering-Hole Attacks Target Energy Sector
Beginning in early May, Cisco TRAC has observed a number of malicious redirects that appear to be part of a watering-hole style attack targeting the
Sept. 18, 2013
The Highs and Lows of the Pump and Dump Scam
The Highs and Lows of the Pump and Dump Scam
The Internet remains an environment where it is important to keep your wits. The recent indictment of nine individuals on stock fraud charges reminds us
Aug. 15, 2013
Error Correction Using Response Policy Zones: Eliminating the Problem of Bitsquatting
Error Correction Using Response Policy Zones: Eliminating the Problem of Bitsquatting
A memory error is a condition that occurs any time one or more bits being read from memory have changed state from what was previously written.  By even
Aug. 2, 2013
July, a Busy Month for Breaches
July, a Busy Month for Breaches
This month has been particularly prevalent for the loss of personal information. At the beginning of the month it was reported that Club Nintendo had been
July 22, 2013
Expiring Albert: Recycling User IDs and the Impact on Privacy
Expiring Albert: Recycling User IDs and the Impact on Privacy
Within many organisations offering online services to the public, there must be a great temptation to expire redundant user accounts that occupy desirable
June 27, 2013
Security Logging in an Enterprise, Part 2 of 2
Security Logging in an Enterprise, Part 2 of 2
We first logged IDS, some syslog from some UNIX hosts, and firewall logs (circa 1999). We went from there to dropping firewall logging as it introduced some overhead and we didn’t have any really good uses for it. (We still don’t.) Where did we go next?
May 6, 2013