Flash ads are suspected to have spread malicious URLs into clipboards on Mac and Windows systems.

Several sources are speculating that web ads are infecting Mac and Windows system’s clipboards with malicious URLs or website addresses. This hijacking attack is a different path taken by hackers to spread bogus security software onto computer users so that they may end up purchasing the malicious programs.

We are well aware of the recent Flash based attacks through malspam messages lately. Now it seems clipboards are being hijacked by flash ads used to port several malicious URLs into your clipboard in hopes that computer users visit those sites.

More Infected Flash Files?

Flash files are a new easy target for spammers and hackers to use because certain instructions can be imbedded within a flash file for good or even evil intent. Obviously in this new clipboard attack, flash ads may have been used for evil intent by utilizing the “setClipboard” Flash command. You should beware that flash files or flash ads can contain many embedded functions that hackers can use against you with very little effort. This may be why we are seeing a new wave of malicious infections being ported by hacked flash files lately.

After taking a closer look into recent reports it is apparent that computer user’s clipboards are filled with multiple strange URLs. So how would this directly affect a computer user or spread malicious files or software? It is because computers users utilize the paste function many times. Do you ever find yourself pasting text into a word document or pasting a web address into your browser? Yes, it is that easy. If your clipboard is filled with malicious URLs and you happen to paste the contents into your web browser then the hackers who have creating this scheme are a step closer to succeeding.

What are computer users experiencing?

Many reports have come from computer users on several support forums including those of Apple computer’s support forum. From the many complaints it looks as if the malicious clipboard contents cannot be removed in some cases. Whenever an infected computer user uses the paste function it always pastes a suspicious URL.

Surprisingly many computer users have reported this happening only after visiting a reputable website such as MSNBC’s cable news channel. That makes us believe that this infection must come from a flash ad. Once again, flash ads or flash files are usually ways that hackers can infect large “trusted” websites without anyone knowing about it or actively detecting an issue.

We believe that in the near future we will start to see a log more of these types of infections to be spread utilizing flash files or flash ads. It may be a good idea to limit clicking on advertisements especially if they look suspicious and are flash based. Staying abreast on the latest threats is always a good idea to assist in avoiding infection from the newest issue that is causing issues over the internet.

Have you ever pasted contents from your clipboard that you did not copy? Is your clipboard filled with suspicious URLs?

Are U.S. based systems vulnerable to Cyberattacks?

Have you ever seen any of the Hollywood movies where a large scale cyberattack against the U.S. was conducted or where a war was almost started because of a hacker? Do you ever think that this could actually happen in real life? Experts say that this could happen as it has on a smaller scale where there was a cyberattack that overwhelmed the former Soviet republic of Georgia government websites recently.

What many people do not understand about cyber attacks is that no one is coming up with a sure way to prevent them from happening. Ever since 9/11 security has been a major concern and priority in the U.S. but what is being done about the security of the U.S. computer systems and online infrastructure?

Hackers have targeted computer networks and websites for several years but large scale cyberattacks that are well coordinated is something new that we have not seen much of. One of the challenges that the U.S. faces is that this type of large-scaled attack can be initiated from anonymous sources and performed very cheaply from anywhere in the world. In the recent Georgia cyberattack, it was the implementation of botnets used to infiltrate computer systems. Botnets are automated programs or group of computers with installed software programmed to perform malicious activities online while staying undetected. In such a scenario where botnets are spread throughout a large group of computers and networks it could result in a large scaled attack against any group or country of systems.

Are U.S. based networks or government security agencies safe from cyberattacks?

Security experts will tell you that agencies such as the Central Intelligence Agency (CIA) and the Pentagon are very difficult to attack or disrupt. Experts will also say that a large scale cyberattack on U.S. computer systems could do damage to transportation, industrial and electric power grid networks. Ultimately this kind of cyberattack would be handled as to avoid major conflict within the U.S. as a whole but it would be very disruptive to those directly affected. The U.S. still has a long way to go to secure certain systems. Even still, the Government Accountability Office found where the Tennessee Valley Authority has not implemented adequate cybersecurity measures especially when this company supplies power to over 8 million people in the U.S.

Do you feel safe? Are you alarmed with the fact that a cyberattack against the U.S. could directly affect you?

Security Questions are asking a bit too much personal information that can be stolen by hackers.

Does it annoy or even scare you when certain websites ask you for additional login credentials to set up a security question in the case that you forget your password? Do you ever wish that you could create your own security questions so you do not feel like you are giving up too much of your personal information?

In today’s society where identity theft is knocking at our front door every day we go online, we have become a little more self-conscious as too what information that we willingly give over the internet. Some sites that have you create accounts will ask for an additional security question but most of them define what question you must answer. That is a bit controlling and on the verge of stealing your personal information without asking for permission.

In the case that a websites’ information is compromised or stolen, your security question and answer may be taken also. It has been reported on security blogs that a hacker can use this information in conjunction with other credentials to log into your account. If a website has defined security questions then hackers are in-the-know of how to use your answers or personal information against you. If you answer a simple security question of “your mother’s maiden name”, right off of the bat hackers are able to utilize that piece of information along with whatever else they steal from a sites database directly against you. Something like your mother’s maiden name is commonly used for credit or banking transactions. Just think what damage a hacker can do in knowing your mother’s maiden name.

What can you do if a site requires that you select and enter a pre-set security question?

One thing you can do is just lie. That’s right, if you lie then that is one big step in protecting your real information. There is no rule set in stone that you must tell the truth on a security question. However, if you forget your login or password and are required to retrieve it through entering the answer to one of your security questions, you must remember the lie that you entered. Some sites, such as Gmail, will allow you to setup your own security question. In this case you can pick something off-of-the-wall as to not identify you in any way that can be used against you by thieves. Remember, treat your security question just like you would a password because in some situations it can be just as powerful (or dangerous) as a login name and password.

Do you ever think that you could become a theft victim of your secret security questions?

Malware E-Mails Disguised as Invoices and E-Tickets contain the GenericDownloader.ab Trojan

Recent reports from McAfee have stated that malware is being distributed through e-mail in the form of airline e-tickets and UPS invoices. The price of air travel is already outrageous so you want to be sure your purchased airline ticket is secured right?. If you are one of the lucky ones and recently purchased an airline ticket, 9 times out of 10 you are going to open a received email related to an “airline ticket”. What better way to spread malware onto computer users than using a fake airline e-ticket, airline titled email or even a UPS invoice?

Through further examination of these types of emails, it was confirmed that the threats are variants of a downloader called Generic Downloader.ab which is classified as a Trojan infection. Because many Trojans are manually installed they can utilize emails such as in the case of fake e-tickets and UPS invoice messages. Once the Generic Downloader.ab trojan is installed it attempts to access a remote host (81.29.241.20) where it could send your personal information to a remote user or hacker.

Have you ever had UPS or FedEx mess up a shipment of yours?

Don’t you want to be sure that any package shipped to you makes it to the correct address? If so, you are going to open an email that says something about your package not getting delivered. The fake UPS invoice email states something similar to “your last shipment could not be delivered because the address was wrong”. The email further explains that you must print out the invoice and bring it to your local UPS office to obtain your package. The invoice itself is the malware. When you access it to print it off the infection is executed.

The fake airline ticket or e-ticket email says in the body of the message that an account has been created for your credit card used for purchase of tickets. Now common since would tell you that you did not recently purchase an airline ticket. But if you did, you may easily become a victim of this scam. This time the attachment looks like it is in the form of a MS Word document. Once you click on this attachment it is too late, you must now remove this Trojan.

Tip: The danger of opening email attachments or accessing links on suspicious emails has always been a serious threat. You must remember hackers are always changing ways to trick you and you must stay ahead of the game to avoid damaging your computer or exposing your personal information.

Have you ever received an email and clicked on an attachment and nothing happened? Did you later find out that you were infected with a Trojan?

No more service packs, no more security patches, no more critical updates, you are officially SOL if you choose to run Windows XP in the near future. Is this what we are facing if we choose not to upgrade to Windows Vista once Microsoft no longer offers free mainstream support for Windows XP?

Microsoft is rolling out the last service pack update for Windows XP, Service Pack 3 (SP3). Many of us know about the upcoming date (April 2009) next year where Microsoft will no longer provide mainstream support for Windows XP. This will affect thousands of computer users worldwide leaving them with a bitter taste in their mouth. We know how often updates are pushed out to solve a security issue or patch a discovered vulnerability in Windows XP. We can’t think that Windows XP will never be attacked again, that would be very naive of us. Realizing that Windows XP will be attacked without a fix in reach is the harsh reality that some of us will face very soon.

Can’t we pay for updates or help from Microsoft after the cut-off date?

If we opt for extended or paid support from Microsoft we will be able to get free security fixes but we will be required to pay extra for other help. Once Microsoft ceases mainstream support for XP it will only be a matter of time before more security holes are discovered within XP. Unfortunately Microsoft will not be able to save us from being attacked for free this time. We will be required to dig deep into our gas money stash if we want something “fixed” in Windows XP.

With this said, do you prepare to upgrade to Vista now or just wait it out like other procrastinators? Do you wait for Windows 7 to come out (year 2010) and hopefully that will be your savior? Will you keep Windows XP until it crashes just like people keep cars until the wheels fall off? It is your choice, choose your poison wisely.