FaceBook is very popular and there are about 400 million FaceBook users around the world.  Experts believe millions of users will fall for this attack and get infected.  Yes, that’s right – millions of FaceBook users will be infected by this targeted attack.

Unfortunately, 400 million users makes for a big opportunity for delivering malicious software.  Hence, Inboxes all over the world are being flooded with SPAM that is trying to induce FaceBook users to click on an attachment.  This attachment installs Trojans and other malware that is very dangerous to the computer user.   And unless their security software catches it, they will have no idea it is on their computer.

Our advice:

• Never clink on any link or open any attachment in any email that warns of dire consequences – be it about FaceBook or your bank, or anything else.
• Keep your anti-virus software up-to-date.
• Periodical scan your computer with a tool specially made for finding and eliminating malware.  One of the best is MalwareBytes Anti-Malware freeware version, which can be downloaded from http://www.malwarebytes.org/

Go to https://privnote.com/

1. Write a private note (add a return receipt if desired).
2. Past the link to the note in an email and send.
3. It can only be read once and will self-destruct.

Maxwell Smart couldn’t do any better.

You can help end spam by submitting it to:

 http://www.knujon.com/index.html.

Knujon.com has already succeeded in shutting down over 50,000 junk mail sites.

They analyze spam and work to shut down the spammers at the source.  There are more details at the web site, but basically all you have to do is to forward any spam you receive to the following email address:

nonregistered@coldrain.net

One easy way is to select a bunch of the spam emails and forward them all as attachments.  The also web site describes a number of other ways to send spam to them.

By now, lots of folks have become wary of Phishing.  But what about “Vishing”?

Vishing is the practice of using an email or text message to bait a person to call a certain phone number.

The inducement is usually in the form of some dire warning about a problem with your bank or credit card account, and the email instructs you to call the phone number listed in the email.

At the other end, you will find someone, or an automated system, who impersonates your bank or credit card company.  They will request all your account details, and will those details to rip you off.

If you get one of these, DO NOT CALL THE PHONE NUMBER LISTED IN THE EMAIL.

If you do have any concerns about your bank account, call a listed phone number.   Find it on your statement or in the phone book.  Or, if it is about a credit card, call the number listed on the back of your credit card.

 And report the “vishing” attack.  (Just be prepared to explain what a “vishing” attack is.  They may not be familiar with the term.)

To see why it is  so very important to secure your wireless network with WPA security, as well as taking some other simple precautions, such as naming your network in a way that is not personally identifiable, check out this YouTube video:

Link: http://www.youtube.com/watch?v=A88XB7_Jz7s

Microsoft is working furiously to fix a deep vulnerability in Windows. This vulnerability has affected lots of third party software vendors, and has hit Adobe Reader particularly hard. 

This vulnerability is being very actively exploited in the wild, both through infected email and through infected web sites.  It is propagated via infected .pdf files.   Therefore it is very important to download and install the latest patch to Adobe reader.  We advise all readers to check to see if they have Reader version 8.1.1, and if they don’t, to install it immediately.

Also, look for a patch from Microsoft in the near future.    We predict Microsoft will issue a patch ASAP, and not wait for their normal second Tuesday update cycle because this vulnerability is so important to get plugged.

For more information:

http://www.theregister.co.uk/2007/10/26/microsoft_scrambles_to_fix_windows/

 Carnegie Mellon University has produced a little phishing game to test you skills at spotting fake Internet addresses (URL’s).

The game can be accessed at the following address:

http://cups.cs.cmu.edu/antiphishing_phil/

TOR, AKA “The Onion Router”, is described on their web site as follows:

Using Tor can help you anonymize web browsing and publishing, instant messaging, IRC, SSH, and other applications that use the TCP protocol. Tor also provides a platform on which software developers can build new applications with built-in anonymity, safety, and privacy features.

But several security issues have been raised recently with the TOR, and a number of security professionals believe TOR should not be relied upon to provide secure communications or anonymous web browsing.

In fact, TOR provides this warning on their download page:

Warning: Want Tor to really work?
…then please don’t just install it and go on. You need to change some of your habits, and reconfigure your software! Tor by itself is NOT all you need to maintain your anonymity. There are several major pitfalls to watch out for.

Tor only protects Internet applications that are configured to send their traffic through Tor — it doesn’t magically anonymize all your traffic just because you install it. We recommend you use Firefox with the Torbutton extension.

Browser plugins such as Java, Flash, ActiveX, RealPlayer, Quicktime, Adobe’s PDF plugin, and others can be manipulated into revealing your IP address. You should probably uninstall your plugins (go to “about:plugins” to see what is installed), or investigate QuickJava, FlashBlock, and NoScript if you really need them. Consider removing extensions that look up more information about the websites you type in (like Google toolbar), as they may bypass Tor and/or broadcast sensitive information. Some people prefer using two browsers (one for Tor, one for unsafe browsing).

Beware of cookies: if you ever browse without Tor and Privoxy and a site gives you a cookie, that cookie could identify you even when you start using Tor again. You should clear your cookies frequently. CookieCuller can help protect any cookies you do not want to lose.

Tor anonymizes the origin of your traffic, and it encrypts everything inside the Tor network, but it can’t encrypt your traffic between the Tor network and its final destination. If you are communicating sensitive information, you should use as much care as you would on the normal scary Internet — use SSL or other end-to-end encryption and authentication.

While Tor blocks attackers on your local network from discovering or influencing your destination, it opens new risks: malicious or mis-configured Tor exit nodes can send you the wrong page, or even send you embedded Java applets disguised as domains you trust.

Also, the ‘exit servers’ on the TOR network can easily be compromised, and all traffic through an exit router can be misused, as evidenced in the following article:
http://www.securityfocus.com/news/11486?ref=rss

In other words, even if you use TOR, secure communications requires careful configuration and the use of encryption and a secure pipe, such as SSL or VPN. And, as evident in the above article, you may indeed be less secure using the TOR network than when using other means of secure communications because TOR may give users a false sense of anonymity or security.

For secure email, we recommend using an email service that allows full SSL encryption for the entire session, not just the login page. And if you use email through a hosted web site, we recommend that you contact the host and ask if their email is secure or can be made secure. Many cannot.

We recommend any of the following options:

• HushMail, is one of the best.
• Alternatively, Gmail can be made secure if you log in using SSL, as in “https://gmail.google.com”.
• Or set up an Exchange Server account. We recommend Mailstreet, and use it locally or online.
• Or use a secure email installation on your computer. We recommend Ciphire Mail. (for maximum protection, both sender and reciever must be using Ciphire.) Ciphire can secure email using most any email client, such as Outlook.

Computers that have been compromised and turned into remote control attack machines, otherwise known as Zombies, are becoming a significant problem.

These compromised computers are being used to attack a variety of Internet servers in a number of countries. These attacks can shut down web sites by overloading their servers with traffic.

For more information:

CypherTrust.com is a good source of information about Zombies and other security threats.

The title of this blog pretty much says it all.

Don’t Fall for the Old IRS Refund Email Scam.

The IRS does NOT contact taxpayers this way.

For more info: PCmag