While trying to catch up with a huge backlog of recent email and potential blog topics, I came across this article that Graham Cluley posted a few days ago on Internationalized Domain Name (IDN) homograph attacks, the kind of spoofing attack where a site address looks legitimate but is not what it seems because a […]
Partly because the previous post got a bit of publicity, but mostly due to the fact that there were a lot more sites to research, I decided to do a follow-up post on the big malvertising network that's been running for months. To begin with, I should answer the most-asked question, namely, "Is the LA […]
As I mentioned in a post last week, there was an interesting malvertising component involved as one of the “prongs” of a large malware attack, and it was worth a post of its own. (Any time a big site like the L.A. Times is involved in a malware campaign, it’s newsworthy, and it’s not alone […]
Latest Comments