General News

2010 CWE/SANS Top 25 Most Dangerous Programming Errors

The 2010 CWE/SANS Top 25 Most Dangerous Programming Errors is a list of the most widespread and critical programming errors that can lead to serious software vulnerabilities. They are often easy to find, and easy to exploit. They are dangerous because they will frequently allow attackers to completely take over the software, steal data, or […]

Spam & Phishing

Stock spam reloaded: XLS format this time

Remember the stock spams send in PDF format ? You thought they are new ? Think again ! Now it is time for Excel format ! The mails come in a ~24Kb XLS file called “detailed invoice.xls”, “stock information.xls”, “investor_news2323.xls” and probably many others. See the picture below for a screen shot. What is interesting […]

Antivirus Spam & Phishing

New type of Stock Spam : PDF Stock Spam

Last evening I analyzed a new type of spam, together with Oliver Auerbach. It has been published immediately on the avira.com website, thanks to Oliver. Source: http://www.avira.com/en/security_news/new_type_of_stock_spam.html Content: Tettnang, Wed, 20 June 2007 – Avira warns about a new type of spam which is currently sent to users within Germany. The spam claims to be […]