I love the patchy humor (pun intended) from the F-Secure guys. What other incident team would have a blog title of You’ve Got Comment!
And of course when the person clicks the link, out comes YouTube! Er, I mean YuoTube… momentary dyslexia there… my bad. Which of course contains an “update” for your Adobe Flash player, because the site is so sure that your player is outdated. Don’t argue with its superior wisdom. And when you execute that file in your system… well, let’s just say you’ve gone and summoned his older brother — Net-Worm:W32/Koobface.CY.
1. ATM Network Fraud
2. Check Fraud
3. ‘Laser-Guided’ Precision Strikes
4. Phishing Attacks To Continue
5. Check Image Fraud
6. Zero Day Attacks
7. Low ‘N Slow Attacks
8. Drive-By Attacks Deliver
9. Phones Will Be Ringing
10. Insider Threat
That seems to cover everything. I see slow and careful, automated, insider, outsider…in other words do not expect a reduction in attack profile for the coming year.
I bought a doughnut and they gave me a receipt for the doughnut. I don’t need a receipt for a doughnut. I just give you the money, you give me the doughnut. End of transaction. We don’t need to bring ink and paper into this. I just can not imagine a scenario where I had to prove I bought a doughnut. Some skeptical friend. Don’t even act like I didn’t get that doughnut. I got the documentation right here. Oh, wait it’s back home in the file. Under D.
This log entry sponsored by Bob’s Doughnuts on Polk Street in San Francisco, where you can find the freshest piping hot doughnuts just after 1 am to close out a live music/comedy night in style, and they don’t give receipts.
Just kidding, I hate doughnuts.
a blog about the poetry of information security, since 1995