Security Corner:


March 31, 2011  6:58 PM

No, Samsung Isn’t Shipping Laptops With Keylogger Spyware on Them.

Posted by: Ken Harthun
keylogger, Samsung, Security, spyware

Saw this in a security forum today:

Here's a new one; how about keylogging software pre-installed on brand new laptops, straight from the factory.......BY THE MANUFACTURER!! The "StarLogger" software was discovered by Mohamed Hassan, founder of NetSec Consulting, after he...

March 30, 2011  6:55 PM

UPS Notification Spam

Posted by: Ken Harthun
Email security, Scam, Security, spam, Trojan

I can't believe that a somewhat savvy friend of mine asked me about this message. He was actually considering opening it. Some people will fall for anything. The first thing is that this message is very poorly written. Anyway, please inform your family and clients that this is bogus and contains a...

March 29, 2011  6:32 PM

The RSA (SecureID) Compromise

Posted by: Ken Harthun
data breach, RSA Security, Security, Two-factor authentication

On March...

March 27, 2011  5:50 PM

Malware Infection Flowchart

Posted by: Ken Harthun
Cybercrime, Malware, Online banking fraud, Online Scams, Security

This image needs little explanation, but I want to thank Dave at for posting it in his forum. If you're not a member of that forum and a subscriber of the newsletter, you need to be. Here's what he had to...

March 26, 2011  10:42 PM

Create Perfect Passwords on Paper

Posted by: Ken Harthun, LastPass, Password, Perfect Paper Passwords, Secure Computing, Spinrite, Steve Gibson

I wrote this article back in 2007. It was relevant then, and it's relevant now, particularly in the light of the Comodo SSL compromise incident I reported in my last post. While I have gone on to using LastPass to generate and securely store my passwords, I still occasionally use Perfect Paper...

March 26, 2011  3:02 PM

SSL Compromise an Act of Cyber-warfare?

Posted by: Ken Harthun
Certificate Authority, Comodo, Cyber warfare, Cybercrime, SSL

SANS NewsBites | March 25, 2011 | Vol. 13, Num. 024: "SSL Security Compromised...Attackers compromised a partner of SSL certificate authority, Comodo and issued themselves fraudulent SSL certificates.  The certificates vouch for a site's authenticity, and would have allowed the thieves to set up...

March 25, 2011  2:55 AM

Five Internet Security Tips (Unedited)

Posted by: Ken Harthun
101 Internet Security Tips, Security, Security best practice

Here are the first five tips from my new work in progress, "101 Internet Security Tips." These are unedited and I am posting them here to solicit feedback. The book can become a huge tome, or it can be kept small. I would like you to help guide the direction I take. So, here are the first five...

March 23, 2011  12:10 AM

Japan Quake Spam Links to Malware

Posted by: Ken Harthun
Cybercrime, Fraud, Malware, Scam, Scripting

Bookmark and Share     0 Comments     RSS Feed     Email a friend

March 16, 2011  12:58 AM

Adobe Flash – The worst security record of all time?

Posted by: Ken Harthun
Adobe, insecure, Opinion, Vulnerabilities

As you know, I'm an editor over at Dave's Computer Tips and have been working with that site for going on four years. We have a forum, of course and this is a relevant thread, more than appropriate for Security Corner:

March 12, 2011  12:37 AM

Anatomy of An Email Scam?

Posted by: Ken Harthun
E-mail scam, Online Scams, Phishing

Got this email a couple of days ago. I was going to delete it, but somehow it looked legitimate:

I'm interested in purchasing
I'd likely be able to pay in the $200 - $700 range for it.
Let me know whether or not you are open to hearing a formal offer.
Now, that seemed...

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: