Discovered by security researchers at scan safe

“A potent trojan cocktail consisting of backdoors, password stealers, and downloader is being loaded by a malicious iframe on nearly 55,000 compromised website pages. The iframe points to an intermediary exploit site, http://a0v.org/x.js, which in turn loads additional exploits and malware from up to seven different malware domains.

A Google search on the iframe script tag resulted in 54,900 hits. Victim sites include www.feedzilla.com, latindiscover.com, and a number of charitable and nursing facilities, including howellcarecenter.com, sweetgrassvillagealf.com, www.foodsresourcebank.org, and morningsideassistedliving.com.”

I started seeing these domains pop up around 8/5. Follow the links below for more information.

ahthja info
laogong info

Read More

‘Skimming’ customer credit card numbers is a growing threat
By Ellen Messmer , Network World , 08/25/2009

Miniature digital cameras have been found “hidden in false ceilings,” above PIN pads, or on store counters “in boxes to hold leaflets” and in “charity boxes next to PIN pads,” the council’s report notes. Criminals use “miniature cameras to observe and record the PIN as it is entered.”

Attackers are doing whatever takes to tamper with payment-terminal equipment to compromise it by adding skimmers, sometimes paying off employees to look the other way.

“The skimming equipment can be very sophisticated, small and difficult to identify,” the council’s report notes. “Often it is hidden within the terminal so neither the merchant nor the cardholder knows that the terminal has been compromised.” Even MP3 players and voice recorders have been used as skimming equipment

Read More

You can now hide a GPS unit in your family car and find out where everybody went. But should you?
By Todd R. Weiss , Computerworld , 08/25/2009

These days, if you want to watch over your house, your kids or your significant other, there’s a whole world of high-tech security devices out there you can use, in forms you may not have even imagined.

There are tiny GPS data loggers you can slip into someone’s car or backpack to learn where they’re going. There are audio recorders the size of flash drives that can listen in and preserve the conversations of others nearby. And there are surveillance cams in a whole assortment of motion-activated disguises, including facial tissue dispensers, alarm clocks, outdoor home electrical boxes, bird feeders and even soft, furry teddy bears.

But while it’s easy to find and buy surveillance devices, is it legal and/or ethical to use them? Is it okay if you use them to watch over strangers? Is it reasonable to use them to watch and hear family members and loved ones?

The answers can sometimes be murky.
Read More