23 Jan 2012

Detecting Fraud in Facebook Contests

Whatever your feelings on Facebook, it’s pretty clear that it’s here to stay. If your company or organization has considered running a promotional Facebook contest, this is crash course in detecting fraud because if your prize is worth anything to anyone, you will encounter fraud, without exception.

9
07 May 2011

Rogue Antivirus Attacks Tailored to Mac and PC

Rogue antivirus is a term used to describe a trojan (called such because it is a malware file disguised as a file the user has been convinced they want to open) that uses social engineering to trick a user into thinking their computer has been infected, and offers a free

11
03 May 2011

New Facebook Page Admin Scam

A new scam has come to our attention, one that’s a new take on an old trick in Facebook. Scammers are adding users as page administrators on a page that’s got a poisoned IFRAME set as the default tab.

0
15 Mar 2011

QR Codes: Trendy Marketing and Pwning Tool

I’ve been out at SXSW for the past few days, and QR codes abound. Every telephone pole is papered with them, people walking on the street have QR codes on their shirts, with clever text below it prompting you to scan them. I’m a big fan of the idea of

1
26 Jan 2011

Facebook Introduces HTTPS Opt-In for Users, Impacts App Developers

In an article posted today on the Facebook Developer Blog, Facebook announced that they would be offering users the option to switch their Facebook experience to HTTPS-only, which would force all Facebook page loads to be routed over SSL.

10
13 Jan 2011

Security Keynote Download

I recently gave a low-tech security and social engineering talk at my company to help raise awareness of better password practices and scenarios to be on the lookout for. The deck is 36 slides, and you can download it in PDF, .key or as images.

13