Gotham Security Daily Threat Alerts

By Gotham
Posted in Security
On August 20, 2013

Here are some of the technology stories that caught our eye today:

August 19, SC Magazine – (International) Fake Adobe Flash Player update extension serves salacious spam ads. A fake Adobe Flash Player update extension for Chrome, Firefox, and Safari browsers has been found in a widespread campaign that injects spam ads onto regular Web sites. Source:

August 19, Help Net Security – (International) LastPass bug leaks plain text passwords. Users of the LastPass password manager were advised to update to the newest version of the software after a bug was discovered that could expose users' passwords if they are using Internet Explorer. Source:

August 18, Network World – (International) "Jekyll" test attack sneaks through Apple App Store, wreaks havoc on iOS. A research team designed and tested a malware test app for iOS called Jekyll that was able to sneak through Apple's App Store review process and then reassemble itself into malware that can perform a variety of functions even while inside the iOS 'sandbox.' Source:

August 18, Computerworld – (International) Microsoft restores after three-day outage -- sort of. Microsoft resolved a 3-day partial outage of its Outlook email service August 17, though some users still reported issues with syncing their mobile devices to the service. Source:

August 17, The Register – (International) Google goes dark for 2 minutes, kills 40% of world's net traffic. All Google services including email, YouTube, experienced an outage that lasted between 1 and 5 minutes August 16, causing total Internet traffic to drop by 40 percent during the outage. Source:

August 16, Help Net Security – (International) Firm found using browser plugins to inject unauthorized ads on YouTube. Ad firm Sambreel was found to be using two plugins to inject unauthorized ads into YouTube via two plugins. Malware peddlers have previously been found to use the unauthorized ads to direct users to malicious sites. Source: