Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Perimeter

Guest Blog // Selected Security Content Provided By Sophos
What's This?
3/19/2010
12:48 PM
Graham Cluley
Graham Cluley
Security Insights
50%
50%

Malware Foes Exploit Sandra Bullock's Marriage Woes

Newspaper headlines about problems in Oscar-winning actress Sandra Bullock's marriage to Jesse James are (predictably, perhaps) being exploited by cybercriminals.

Newspaper headlines about problems in Oscar-winning actress Sandra Bullock's marriage to Jesse James are (predictably, perhaps) being exploited by cybercriminals.If you're one of the hordes of people who can't get through your day without a celebrity gossip fix, then make sure you're not searching too feverishly for information about Sandra Bullock, Jesse James, and tattoo model Michelle "Bombshell" McGee right now.

That's because you might find the pages your search engine springs up are actually poisoned by hackers trying to direct you to infection by fake antivirus software.

Poisoned Sandra Bullock search result

Hackers are time and time again exploiting interest in hot news stories -- underlining the importance of running a security solution that scans every single Web page you visit, and the necessity to keep up-to-date with patches.

It's a similar tactic to what we saw used by hackers after the deaths of Natasha Richardson and Patrick Swayze, and when they exploited interest among the public on the anniversary of the 9/11 terrorist attack last year.

Cybercriminals will carry on using SEO poisoning for as long as it brings them a fresh crop of victims. I don't see them dropping the technique anytime soon.

Graham Cluley is senior technology consultant at Sophos, and has been working in the computer security field since the early 1990s. When he's not updating his award-winning other blog on the Sophos website, you can find him on Twitter at @gcluley. Special to Dark Reading.

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
Malicious USB Drive Hides Behind Gift Card Lure
Dark Reading Staff 3/27/2020
How Attackers Could Use Azure Apps to Sneak into Microsoft 365
Kelly Sheridan, Staff Editor, Dark Reading,  3/24/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "I feel safe, but I can't understand a word he's saying."
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
State of Cybersecurity Incident Response
State of Cybersecurity Incident Response
Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-7599
PUBLISHED: 2020-03-30
All versions of com.gradle.plugin-publish before 0.11.0 are vulnerable to Insertion of Sensitive Information into Log File. When a plugin author publishes a Gradle plugin while running Gradle with the --info log level flag, the Gradle Logger logs an AWS pre-signed URL. If this build log is publicly ...
CVE-2020-7610
PUBLISHED: 2020-03-30
All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's _bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type.
CVE-2019-17560
PUBLISHED: 2020-03-30
The "Apache NetBeans" autoupdate system does not validate SSL certificates and hostnames for https based downloads. This allows an attacker to intercept downloads of autoupdates and modify the download, potentially injecting malicious code. “Apache NetBeans" version...
CVE-2019-17561
PUBLISHED: 2020-03-30
The "Apache NetBeans" autoupdate system does not fully validate code signatures. An attacker could modify the downloaded nbm and include additional code. "Apache NetBeans" versions up to and including 11.2 are affected by this vulnerability.
CVE-2020-8509
PUBLISHED: 2020-03-30
Zoho ManageEngine Desktop Central allows unauthenticated users to access PDFGenerationServlet, leading to sensitive information disclosure.