Clik here to view.
Rescue CD Beta Released
Yesterday we released a beta version of our Rescue CD tool.The beta has mainly incremental changes to existing functionality, such as updating the Knoppix OS to version 6.7.1 and now being bootable...
View ArticleClik here to view.
Seeking Internet Security 2013 Beta Testers
Greetings, folks! Our Innovation & Customer Involvement team has a special offer (just for you!) that they've asked us to write about. So without further ado…We present to you F-Secure's Internet...
View ArticleClik here to view.
Redux: Are you sure SHA-1+salt is enough for passwords?
Yesterday, LinkedIn confirmed reports that some member passwords have been compromised.Here's some info from their blog:"It is worth noting that the affected members who update their passwords and...
View ArticleClik here to view.
Still using the default setting on your password safe? Don't.
Last week, we republished a post called: Are you sure SHA-1+salt is enough for passwords?To continue on the topic of passwords: not only should you use a proper iteration count when implementing...
View ArticleClik here to view.
No, Heavy Salting of Passwords is Not Enough, Use CUDA Accelerated PBKDF2
I have been following online discussions centred around recent password leaks (LinkedIn, eHarmony, Last.fm) and it seems that there are still many developers who hold a very strong belief that salt...
View ArticleClik here to view.
ZeroAccess's Way of Self-Deletion
We normally see malware developing and evolving over the years. One particular malware we've been following is ZeroAccess, which has been continuously improving which we first detected it in late...
View ArticleFlame is Lame
When the Flame malware was found two weeks ago, it was characterized as 'Highly advanced', 'Supermalware' and 'The biggest malware in history'. These comments were immediately met with ridicule from...
View ArticleClik here to view.
It's Signed, therefore it's Clean, right?
Here's a slide from a CARO 2010 presentation called: It's Signed, therefore it's Clean, right?Hmm, MD5 forgery? Yeah, that's been going around lately (#Flame).Download the presentation here. On...
View ArticleClik here to view.
Foreign Policy's Twitterati 100
Foreign Policy magazine has published its Twitterati 100 — a Twitter list of notables in the foreign-policy Twitterverse.Presenting, Mikko H. Hypponen: Finnish cybersecurity expert… geek.Hmm, why are...
View ArticleClik here to view.
Commoditization vs. Specialization
Another rebuttal to Mikko's Flame related opinion column in Wired magazine, this time from Bruce Schneier.Schneier's summary of Mikko's argument:"His conclusion is simply that the attackers — in this...
View ArticleClik here to view.
Summer Listening: Anonymity
Recommendation: two recent Tech Weekly interviews covering the topic of online anonymity.In the first part, host Aleks Krotoski speaks with 4chan founder Chris Poole. Near the end of the interview,...
View ArticleClik here to view.
Die Zeit Uses Six Months of Mobile Data to Profile Green Politician
Have you ever wondered just how much your phone reveals about you?That's what German party politician Malte Spitz wanted to discover…A 2008 German law required all telecommunications providers with...
View ArticleClik here to view.
"Parental Control" Feedback
From Reddit:"My friends 7 year old sister left this note for her parents on their computer." On 28/06/12 At 10:10 AM
View ArticleClik here to view.
Should the FBI be reauthorized to continue DNSChanger servers?
The latest DNSChanger deadline is rapidly approaching: July 9th. (The previous deadline was March 8th.) Just one week to go!What's DNSChanger?DNSChanger is an ad-fraud botnet that the F.B.I. and...
View ArticleClik here to view.
iPhone "5"
Apple's "world changing" iPhone celebrated its fifth birthday on Friday, June 29th.Mikko's thoughts:Want to give Mikko your feedback? Do it via Twitter, Facebook or this post's comments.And now for...
View ArticleClik here to view.
How to Monetize Facebook Pages
We recently discovered an interesting post on a Cost Per Action (CPA) marketing forum. It's from June 13th."How to buy Facebook pages and Monetize them."What it all about? Facebook spam.Here are the...
View ArticleClik here to view.
DNSChanger Wrap Up
Bye bye FBI. We can confirm that the DNS Changer Working Group's "clean DNS servers" are offline.A popular move, at least based on last week's poll results:Source: DNSChanger: should the F.B.I. be...
View ArticleClik here to view.
Not Your Normal Skype Download
We recently stumbled upon a website that supposedly provides the application Skype for Android devices.When visiting the website using an Android device, it shows an APK file (skype52_installer.apk)...
View ArticleClik here to view.
Multi-platform Backdoor Lurks in Colombian Transport Site
We recently came across a compromised Colombian Transport website where the malware author utilizes social engineering by displaying a signed applet upon visiting the page.Here is what is shown if...
View ArticleClik here to view.
Google Play Fails to Remove All Super Mario Malware
Malware has been found once again on Google Play according to this post by Symantec's @Irfan_Asrar.Android.Dropdialer poses as a "Wallpaper" app but it also happens to install an additional app which...
View Article