Spyware posts on CNET - Page 4


Report: India targeted by spy network

Researchers have uncovered a spy network that stole classified and other sensitive documents from the Indian government, the Dalai Lama's office, the United Nations, and compromised computers elsewhere, according to a report released on Tuesday.

The operation, dubbed "Shadow Network," is detailed in a report that also cites evidence it says links the Shadow network to two people living in Chengdu, China, and the underground hacking community in that country.

The report is based on research from volunteers at the U.S.-based Shadow Server Foundation and Information Warfare Monitor, which includes researchers from the Citizen LabRead more

Exclusive offer: Get Ad-Aware Plus for $9.95

Hi, I'm Catherine Hwang, a Partner Manager at CNET Downloads. I manage software publisher relationships for Upload.com, and I'm here to tell visitors of Download.com about a software deal that's too good to pass up.

CNET Downloads teamed up with Lavasoft to bring you an exclusive special offer: Today only, you can upgrade your free version of Ad-Aware to Ad-Aware Plus for $9.95 (usually $26.95). That's 63 percent off the regular price, so take advantage of this special offer now, only at CNET Downloads. Click here to grab your copy.

Lavasoft Ad-aware … Read more

BlackBerry has spyware risk too, researcher says

We've heard a lot about security issues with the iPhone, but the BlackBerry isn't immune to threats from malicious apps.

Tyler Shields, a senior researcher at the Veracode Research Lab, has written a piece of spyware that allowed me to shoot an SMS command to his phone and have his contact list forwarded to my e-mail address in a demonstration. With another short text command, I was able to get his BlackBerry to e-mail me any SMS messages he sends.

And if I had wanted--and he had allowed me--I could have seen a log of all his calls, … Read more

StopBadware goes nonprofit with funding from Google, others

StopBadware, the anti-malware effort run out of Harvard's Berkman Center for Internet & Society, is spinning off to become a separate nonprofit with funding from Google, PayPal, and Mozilla, the organization was set to announce on Monday.

StopBadware was launched four years ago to help companies keep spyware, viruses, adware, and other malware off their sites. The project collects and analyzes data from Web sites and advocates for safer practices.

The group's "badware alerts," expose applications that violate its badware guidelines and have AOL, Real Networks, Sears, and others to change their practices regarding customer choice. … Read more

Google's spy case: Not the first, nor the last

The recent cyberattacks on Google and other U.S. companies became public because they prompted Google's dramatic showdown with China, but attempts to steal corporate secrets using the Internet happen under the radar on a daily basis.

"Espionage has been going on for decades. The Internet has made it a lot easier to conduct espionage," said John Bumgarner, chief technology officer at the government-funded think tank U.S. Cyber Consequences Unit. "The targets are mostly defense contractors and high-tech companies that have some type of competitive advantage that someone wants to steal."

When regular business … Read more

Corporate bank accounts targeted in online fraud

Criminals have tried to steal an estimated $100 million from corporate bank accounts using targeted malware and money mules, the FBI said on Tuesday.

"Within the last several months, the FBI has seen a significant increase in fraud involving the exploitation of valid online banking credentials belonging to small and medium businesses, municipal governments, and school districts," the agency said in a statement.

The FBI is seeing, on average, several new victim complaints and cases every week, according to a report prepared by the Internet Crime Complaint Center and linked to in the FBI release.

Brian Krebs reportedRead more

Bank Trojan botnet targets Facebook users

On the heels of one fake Facebook e-mail scam, a researcher warned on Wednesday of another such campaign in which users of the popular social network are being tricked into revealing their passwords and downloading a Trojan that steals financial data.

In the latest scam being blasted to e-mail in-boxes, a legitimate-looking Facebook notice asks people to provide information to help the social network update its log-in system, said Fred Touchette, a senior security analyst at AppRiver. When the user clicks the "update" button in the e-mail, they are directed to a fake Facebook log-in screen where their … Read more

US-CERT warns about free BlackBerry spyware app

The U.S. Computer Emergency Readiness Team warned BlackBerry users on Tuesday about a new program called PhoneSnoop that allows someone to remotely eavesdrop on phone conversations.

The PhoneSnoop application must be installed on the phone by someone who has physical access to it or by tricking the user into downloading it, the CERT advisory said.

The author of the app, Sheran Gunasekera, director of security for Hermis Consulting in Jakarta, Indonesia, says it wasn't written to do any actual harm, but rather to warn of the dangers that still exist with the BlackBerry.

The application can be used … Read more

Spying on a stolen laptop

Imagine your laptop gets stolen. Wouldn't it be great to remotely spy on the machine and get it back?

Clair Fleener, chief executive of IT outsourcer InertLogic, got that chance after a laptop belonging to a customer was stolen.

Fleener was instrumental in the investigation that led to the recovery of the laptop, monitoring the activities of the laptop user for two weeks using remote software and sharing the information with law enforcement in Omaha, Neb.

The story starts back in mid-May, right around Mother's Day, Fleener recounted this week. Someone broke into the car of an employee … Read more

Demos to show spying on mobile IP calls

Using VoIP-based mobile devices over Wi-Fi or IP video phones? Be careful.

Researchers plan to demonstrate this weekend how they can eavesdrop on voice over IP conversations made using an iPhone over a Wi-Fi network and snoop on video and audio communications between IP video phones.

These types of man-in-the-middle eavesdropping attacks aren't new, however these could be the first public demonstrations of them on these particular platforms.

In the VoIP demo at ToorCon in San Diego on Saturday, Jason Ostrom, director of Viper Lab at Sipera Systems will listen to the conversation of someone talking on an iPhone … Read more