Feeds

Last.fm phish strikes a bum note

Crooks tune in to net unwary

Secure remote control for conventional and virtual desktops

Fraudsters have launched an attack which aims to trick Last.fm users into handing over their login credentials.

The assault is the latest example of cybercrooks applying phishing techniques towards Web 2.0 sites, such as Twitter and Last.fm, as well as the traditional targets of online banking and ecommerce sites. Part of the reason for this could be that some surfers tend to use the same passwords for low sensitivity sites, such as Last.fm, as well as more sensitive locations, such as webmail and even online banking accounts.

The attack against Last.fm users starts with a message to their Last.fm shoutbox that typically says “hey - check out this blog with ur pic" and an abbreviated URL. Music fans who follow the link are redirected to a faked Last.fm login screen.

The domain associated with the attack is hosted in China and associated with several previous login harvesting attacks, Trend Micro reports. Trend's write-up of the attack, including screenshots, can be found here. ®

Remote control for virtualized desktops

Whitepapers

Designing and building an open ITOA architecture
Learn about a new IT data taxonomy defined by the four data sources of IT visibility: wire, machine, agent, and synthetic data sets.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Managing SSL certificates with ease
The lack of operational efficiencies and compliance pitfalls associated with poor SSL certificate management, and how the right SSL certificate management tool can help.