Your PC Facil.com

"Any Facebook identity can be hacked," say the authors of an online service that in return for only $ 100 provides its clients with the login and password to access any account on the popular social network. This includes accounts not only for anonymous users, but celebrities, politicians or known advertising brands.

Payment is made online through Western Union and the host country is Ukraine, which reinforces the idea that most Internet mafias are located in Eastern Europe. The domain that hosts the service is registered in Moscow. (continue reading ...)

Building on the popularity of influenza A and distribution of health advice, a new Trojan is being distributed via mass email. The hook they use is a potential economic conspiracy by pharmaceutical companies, and urges users to open a power point ("POS.exe") which will reveal the "big secret".

After running the attachment, it downloads (continue reading ...)

Coinciding with the celebration of 20 anniversary of Panda Security, PandaLabs experts have developed the ranking of those considered most dangerous threats in the past 20 years, both for end users and companies, and have them "face".

Different threats have been selected by the popularity they have achieved to have been the protagonists of major epidemics. Hall of Fame is: (continue reading ...)

Actress Jessica Biel managed to unseat Brad Pitt as the most dangerous celebrity in cyberspace, according to Internet security firm McAfee.

It is the third year, McAfee investigates what famous was the most dangerous to search the internet after Pitt was at the top of the list last year and that Paris Hilton occupy that place in 2007.

Biel, 27, and who rose to fame with the television series "7th Heaven" and starred in "Easy Virtue" was ranked as the most dangerous, and their fans have a chance in five of falling on a website that has given positively dangerous content such as spyware, adware, spam, phishing and viruses, the more data after the jump. (continue reading ...)

We have just confirmed, the guys at Microsoft, for this is planned June 23 release the public beta of Microsoft Security Essentials (formerly Morro key).

The free anti-virus will start with their beta program next week and an updated beta version of the summer period. The company also confirmed that the official release of Microsoft Security Essentials (MSE) will be launched in autumn this year. We have noticed that Microsoft is focusing September or later than for the anti-virus software is available for the October 22 launch of Windows 7.

Formerly known as El Morro, the software giant plans to replace its Windows Live OneCare with MSE offerings later this year. Microsoft will stop retail sales of OneCare, June 30 so it will not be able to buy in stores after that date, but consumers will still be able to buy the product after June 30 directly from Microsoft.

The beta will be available next Tuesday on a limited basis, Microsoft aims to make the first beta are 75,000 U.S., Israel and Brazil-based clients. Then will be available mid July, a beta for China. Similar to the beta of Windows 7 is likely that the company is expanding to meet demand.

Microsoft OneCare Anti-Virus was discontinued several months ago, which is why Microsoft is developing a new virus called "Microsoft Security Essentials." Microsoft has said that "Security Essentials" will be available later this year but is expected to be released a beta one month of September.

Link to read more

Microsoft Security Essentials

(Continue reading ...)

Panda GateDefender Integra SB

Panda Security, the Cloud Security Company, has released a new version of UTM (Unified Threat Management, Unified Threat Management) Panda GateDefender Integra.

This product is specially designed for small-and medium-sized. It has two models: Panda GateDefender Integra SB, a new model designed exclusively for companies with up to 50 employees GateDefender Integra 300, for those who are between 50 and 250 employees. Both models have the following protections: (continue reading ...)

It's another example of how cybercriminals are attacking the most popular web 2.0 in order to distribute malware. Previously we had seen, to a lesser extent, Digg.com, Facebook and others. Now, PandaLabs, the detection and analysis laboratory of Panda Security's malware has located up to 4900 YouTube videos from your comments that contain links to a page designed to download malware.

In these videos can be erotic tone comments and a link appears to redirect to a legal site with pornographic content. You can see an image here: http://www.flickr.com/photos/panda_security/3548358349/

However, when the user clicks on the link, are directed to a page that simulates the original, but is actually malicious. In it, to watch the video will be asked to download a certain component. If they do, in fact on your computer will be introducing a copy of the fake antivirus http://www.flickr.com/photos/panda_security/3548358229/ PrivacyCenter

This fake antivirus, when run on your computer, simulations carried out an analysis of the same detecting dozens of copies that are not actually on the computer. It then offers users the ability to buy the paid version of this fake antivirus to remove these viruses. The ultimate goal is to obtain revenue for cybercriminals with the sale of the Premium version. http://www.flickr.com/photos/panda_security/3548362019/

"The technique of putting snide comments in the YouTube videos is not new. What is alarming is the large number who have found links lead to the same page. This suggests that cybercriminals have automated tools to publish these comments ", explains Luis Corrons, technical director of PandaLabs

All images are available here: http://www.flickr.com/photos/panda_security/tags/privacycenter/

Publicly presented today the National Cyber-Security Consultant (CNCCS). The Council brings together all the leaders of the Spanish sector of computer security: Panda Security, S21sec, Hispasec Systems and Secuware.

In a situation with an exponential growth and cyber-crime motivated by economic and political interests, the industry has agreed to join forces and made available to government or private entities to advise them on matters related to the Cyber-Security. Its mission is to make sure the Internet and information networks, and promote innovation and economic growth of our country.

Concerned about the progress of the mafias of the Internet, different measures are being promoted internationally to combat its effects. In the EU, for example, created the European Food Safety Agency (ENISA) and the United States, the Programme for the diagnosis of security in cyberspace. In Spain, however, there were no similar initiatives, although a powerful security industry recognized internationally, which may contribute to the prevention of cyber-crime and improving security in different areas.

The activity of the National Cyber-Security Consultant is not confined to a mere advisory body, but has plans to launch several initiatives to help:

? Protecting consumer identity

? Critical Infrastructure Protection

? The creation of national laws against cyber-crime

? The protection of corporate information

? The evolution of the structure of government since the outbreak of the physical realm of cyberspace

? The improvement and support, from the standpoint of the Council of economic prosperity and national security

The Council consists of the CEOs of each company supported by different executives (Juan Santana, Panda Security, Xabier Mitxelena, S21sec, Bernardo Quintero, Hispasec, and Carlos Jimenez, Secuware) as Founding Members. It plans to seek the support of public and private organizations outside the Council, as government organizations focused on promoting the Information Society and / or security, user organizations, telecommunications companies and ISPs, data protection agencies, law security, etc.., to be invited to actively participate in initiatives that develop.

The Council is indefinite and has the presidency of each of the companies on a rotating basis every six months. The first period of presidency is held by Juan Santana, CEO of Panda Security.

Juan Santana, as President and member of the National Cyber-Security Consultant, said: "We have several months discussing the initiative with other entities, public and private, and we are delighted with the good reception given. This tells us that really needed an organization like this. In addition, security, Spain is at the forefront of global technological superpowers, and the companies we represent have the knowledge and experience to contribute to a healthy and responsible use of the Internet and new technologies in all areas ".

According Xabier Mitxelena CEO S21sec, "I really needed this kind of initiatives for different reasons. The first one, because as a unified sector and be able to push really interesting initiatives that contribute to improving security in general. And on the other hand, because we have much knowledge and experience to contribute positively to the prevention and management of cybercrime, research and development of new technologies to mitigate the impact of fraud and collaboration in the drafting of legislation and regulations that help protection of the Information Society. "

Meanwhile, Bernardo Quintero, CEO of Hispasec adds "the current state of malware on the one hand, and the lack of global awareness are sufficient reasons for the existence of a body such as the Council. More and more services available to citizens, public and private, are moving to the Internet and therefore, whenever there are greater risks. Our organization will work to improve confidence in the network and get to make the most of the benefits of Internet. "

Finally, Carlos Jimenez, CEO of Secuware said "the initiative seemed to us from the start overwhelmingly positive. So we had no hesitation in being part of the Council. We think that remains to be done, both from the standpoint of legislative and regulatory framework, and from the perspective of global awareness. "

During the year 2008 PandaLabs, Panda Security's laboratory, found every day, on average, 35,000 copies of malware, 22,000 of which were new infections. At year end the number of threats detected by Panda exceeded 15 million. This figure surpassed the initial forecast of the company that was five million. This avalanche of malicious code in August caused PandaLabs last year and both were detected as malware in its 17 year history together. 99% of those threats were detected automatically by Collective Intelligence, Panda's innovative technology that can detect Security and analyze malware in the cloud.

New malware

Annual Report Espla most of the new malware, 67.7% were Trojans, that is, was designed to steal confidential data like bank account numbers, passwords, etc..

New malware in 2008, "The feeling of the public is safe and so, in many cases, do not use security measures or do not use all they should. The truth is that there is more malware than ever and feeling of security that only favors the cybercriminals to infect more computers without being discovered, "explains Luis Corrons, technical director of PandaLabs.

The Trojans, with 70.1% of the total, were the type of malware that infected more computers, followed by adware (19.9%) and worms (4.22%). This means, therefore, that over 94% of malware found on computers of users was one of three categories.

Regarding the threats that have grown in 2008, PandaLabs Annual Report highlights the role of the fake antivirus. This is a special type of adware that makes the user believe that is infected with dozens of examples of malware, then offer a paid version of a fake antivirus that supposedly eliminated these infections. Prices for these fake antivirus are around 50 euros and according to PandaLabs estimates could be generating a profit for cybercriminals approximately 10 million euros per month.

Banking Trojans: The Threat Continues

Banker Trojans were a major threat in 2008. This is a type of Trojans aimed at getting bank details of the users concerned and thus steal their money.

Normally these Trojans remain resident in memory and only activate when the user accesses the website of certain banks. To this end, the Trojans have a list of banks that attack.

"For cybercriminals is relatively easy to obtain these malicious programs, since there is a whole market selling a la carte Trojans and so-called bank kits, which allow not only to create Trojans with multiple functions, but control and send new instructions" explains Corrons.

The main types of banking Trojans PandaLabs distinguished:

1. Brazilian Banker Trojans (Banbra, Banks): These are designed primarily to steal passwords from Brazilian and Portuguese banks, although it is possible to find variants of Spanish banks in the Banks family. Normally transmit the information obtained via email or FTP.
2. Russian Banker Trojans 1.0 (Cimuz, Goldun ...): This type of Trojan is becoming less used, and their detection has become easier. Still, we continue to see many variations in circulation.
3. Russian Banker Trojans 2.0 (Sinowal, Torpig, Bankolimb): Created to replace the previous, it is malicious code that constantly changed and updated, making it difficult to detect. They all have a common function: the list of entities to be monitored to steal the credentials obtained from a configuration file, which can be well along the Trojan on a server or partly controlled by the cyber criminal, so that no have to modify the Trojan to add a new entity.

The annual report PandaLabs further information on the current state of spam on the most important vulnerabilities of 2008 and on trends in the field of malware for 2009.

You can download the annual report PandaLabs here http://www.pandasecurity.com/spain/homeusers/security-info/tools/reports.htm