Fake LinkedIn e-mails lead to Zeus Trojan | InSecurity Complex – CNET News

Criminals are using bogus LinkedIn invite e-mails to trick people into clicking on links that lead to the Zeus data-stealing Trojan, a researcher warned today. The malware targets Windows users.

Researchers saw tens of billions of messages related to the attack yesterday, Henry Stern, a senior security researcher at Cisco Systems, told CNET. “There have been some bursts today, but nothing like yesterday,” he said. “The botnet responsible for this is still in operation and it’s just doing something else right now.”

While this attack appears to be abating, people should be wary of any new campaigns that use similar methods.

“This attack is particularly interesting because of its size,” Stern said. “It’s one of the largest viral campaigns we’ve seen, and one of the largest that mimics a social network.”

In this attack, the e-mails looked like legitimate LinkedIn invites with a Web link for confirming a contact. However, the link doesn’t lead to LinkedIn; it redirects to a Web page and displays a message saying “Please waiting …. 4 seconds” before then redirecting to Google.

Fake LinkedIn e-mails lead to Zeus Trojan | InSecurity Complex – CNET News.

Cisco has more information about the attack on its blog.

Comment

Theft of vital information  has become big business. Sometimes it seems that no matter where you go on the internet, it seems something bad may be waiting around the corner.

This is another good example of how important it is to secure your systems and keep your computer security software updated.

Welcome Windows Live Spaces Bloggers (via WordPress.com News)

WordPress is moving along and in all fairness so is Windows Live Spaces.

We're excited to announce that WordPress.com is now the default blogging platform for Windows Live Spaces users. We've worked with our partners at Microsoft to create a simple migration service for Spaces bloggers to easily bring all their posts, comments, and photos to WordPress.com. Over a six month period, beginning today, Windows Live Spaces users will have the option to move their blogs to WordPress.com. To make this possible, we've created … Read More

via WordPress.com News

New Theme: Fusion (via WordPress.com News)

A beautiful theme, I once had a similar theme love the layout etc and this has everyuthin you may need.

I'm proud to introduce you to Fusion, our newest theme. The versatility of this theme makes it great for a variety of uses including technical blogs, long-form writing, posting code samples, and displaying large images. You can use Fusion just like any other WordPress.com theme or, if you prefer a wide layout, this theme is ready to accommodate. [caption id="attachment_5167" align="aligncenter" width="640" caption="Example of Fusion's out-of-the- … Read More

via WordPress.com News

IRD: Watch for hoax tax refund email – Fraud – NZ Herald News

Another hoax email is circulating, this time offering people a tax refund in exchange for credit card details, Inland Revenue says.

A link in the email directs people to a fake webpage with an Inland Revenue logo where people are asked to enter personal details including their credit card details.

Anyone that falls for the scam risks having their credit card details stolen, Inland Revenue group manager for assistance Charles Ronaldson said.

Inland Revenue is asking people to ignore the email and to never click on any links within a suspicious email.

For those who may have already given away their bank details, the advice is to contact their bank or credit card provider.

To report suspicious emails that target Inland Revenue customers, people should email phishing@ird.govt.nz

- NZPA

via IRD: Watch for hoax tax refund email – Fraud – NZ Herald News.

ADDITIONAL WARNING

It is noted here that In Christchurch (before the earthquake) there were people visiting premises claiming to be from Tax Refund (www.taxrefund.co.nz). From a reliable source it was learned that Tax Refund does not have people out there going door to door and copying vital information using a camera. It is recommended that you do not let these people in or if you do do not had them any of your private information.

Related Articles

• Tax Refund Emails are FAKE [Simon • Cartoon-O! • Ellinas] (ecademy.com)
• Scammers seize on tax rebates as phishing lure (go.theregister.com)
• If Online is the Future, How Much Should We Push the Technophobes? (diversity.net.nz)
• Phishers exploit HMRC tax error refund in UK (sophos.com)
• Be flexible with earthquake victims, English tells IRD, banks (nzherald.co.nz)

Google adds extra security step – technology | Stuff.co.nz

Google is making it tougher for computer hackers and other imposters to break into e-mail accounts and other password-protected services.An additional security measure introduced Monday will require typing a six-digit code after an account holder’s Google password is entered. The codes will be sent to people’s mobile phones.The two-step login means it will take more than a password to get into an account.The extra protection initially will be offered to companies and government agencies subscribing to a Google service that provides e-mail and other office applications.Google is also offering the added security to schools that rely on Google to run their e-mail.People using Google’s free Gmail service will be able to make the security codes part of their login process within the next few months.

via Google adds extra security step – technology | Stuff.co.nz.

Personally I think this is a welcome new step to secure email accounts.

Related Articles

• Google Two-Step Authentication Adds Extra Security To Email, Apps (huffingtonpost.com)
• Google adds security code to password (cbc.ca)
• Google adds extra security step to e-mail, apps (seattletimes.nwsource.com)
• Google tightens password security on email, other services (thestar.com)
• Google adds security step to e-mail, apps (abclocal.go.com)
• Google adds extra security step to e-mail, apps (sfgate.com)
• Google tightens security on services (theglobeandmail.com)
• Google Apps gains extra layer of security with two-step verification (arstechnica.com)
• Google is rolling out two-step verification for all accounts (geek.com)
• Google Apps Gains Extra Security With Two-Factor Authentication (wired.com)