Recent Security Developments

Recent developments regarding PC security are clear warnings that everyone should have their systems checked for security vulnerabilities.

Some recent examples of this are:

1. An increase in the number and sophistication of "phishing" scams.

The IRS scam "Notice of under-reported Income".  This email appears to be from the IRS.  Users are prompted click on a link to view their tax statement.  The link actually takes you to malicious web site.  The malware that this site delivers is variant of the Zeus Trojan, which is hard to detect and may slip by many anti-virus programs. It’s primary goal is to steal sensitive banking information and allow the bad guys to drain your bank accounts. Note:  The IRS dos not initiate contact with taxpayers via email.

2.  Hackers on social networking sites.

Hackers have recently found ways to create automated Facebook pages and are using them to spread spyware to unsuspecting users. In many of these cases Facebook’s CAPTCHA bot-catcher failed to detect the virus associated with the pages, and allowed malware programs  to be installed on the users PC.

3.  Hackers plan to clobber devices that use embedded security (Android, iPhone), and more advanced client-side attacks which leverage the Web 2.0 technologies.

At a recent HITB (Hack in the Box) security conference, held in Malaysia, there were presentations with such titles as "Clobbering the Cloud","Spying on BlackBerry Users for Fun", and "Remote keystroke
sniffing using mechanical energy emissions and powerline leakage".

If you are concerned that your current system is not up to par, please contact or email the CCS Retail Systems Support Department to schedule a security review.

Leave a Reply