Video Screencast Help
Search Video Help Close Back
to help
New in the Rewards Catalog: Vouchers for "Symantec Technical Specialist" and "Symantec Certified Specialist" exams.

Security Response

Showing posts by Zahid Raza remove filter
Phishing Toolkit Attacks are Abusing SSL Certificates
Zahid Raza | 08 Jul 2009 | 0 comments

In the present scenario, when more people are paying attention to the risks and have taken the proper steps needed for increased security, fraudulent sites are easily visible when not using SSL. However, a recent attack spotted by Symantec was using a legitimate SSL certificate to masquerade as a legitimate site. Fraudsters continue to use these kinds of techniques to perpetuate identify theft and these particular attacks aren’t as noticeable.

Over the last thirty days, Symantec has observed the highest number of URLs abusing SSL certificates for the last year. A single compromised Web server with an SSL certificate can be used to host a broad range of phishing sites that can have a higher success rate, in that the visitors erroneously believe that they have a secure connection with their intended site.

Fraudsters have targeted the users of major brands by compromising Web servers with SSL certificates so that the fraudulent pages display the familiar lock icon...

Read more
Smart Phishing!
Zahid Raza | 03 Jun 2009 | 0 comments

Hold on! I am not with the fraudsters, nor am I praising the bad guys. It’s just something about the concepts they come up with. In order to acquire sensitive information such as usernames, passwords, and credit card details, fraudsters usually masquerade as a trustworthy entity using electronic communication. But, thanks to numerous “phishing awareness” online programs, the number of people that were not fooled and took no action on phishing email rose from 75 percent in 2006 to 82 percent 2007 (survey conducted by SC Magazine).

After the run-on-the-bank issues that impacted most major banks during the 2008 global financial crisis, e-money/e-wallet stored value services came into highlight. In simple terms, an e-wallet functions much like a physical wallet, but it provides security, efficiency, and added utility to the end user and above all, it is not susceptible to the run-on-the-bank issues. The main reason for its popularity is because, unlike banks,...

Read more
TinyURL—The Tiny Fear
Zahid Raza | 15 Apr 2009 | 0 comments

You may or may not know about TinyURL, which is a Web service that provides short aliases for the redirection of long URLs. The TinyURL homepage includes a form that's used to submit a long URL for shortening. For each URL entered, the server adds a new alias in its hashed database and returns a shortened URL.

For example, a good use of the TinyURL service would be changing the result from a Google search for Indian wonders:

hxxp://video.google.com/videosearch?hl=en&client=firefox-a&rls=org.mozilla:en-US:official&hs=rFy&ei=9rnESfWpHY6wNKHF8PUP&resnum=1&q=indian+wonders&um=1&ie=UTF-8&ei=-LnEScWJGtvfnQflxPRR&sa=X&oi=video_result_group&resnum=5&ct=title

…becomes:

http://tinyurl.com/cz6z88

This is really a great service, but as the saying goes, “those who make themselves seem great will attract bad things.” The popularity of...

Read more

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
258,791