A looooooong gap…. (December – January)

Well, I was actually incommunicado over Xmas (yippee!) But the last summary I posted here was on 15th December, so a lot has happened. I’m therefore changing the format a bit for this post, so that it doesn’t take me all week to write it.

Blogs for ESET (last half of December 2011):

• December 19th: Facebook scam #umpteen: having your cheesecake and eating it… 
• December 30th: Passwords, Stratfor, and Newton’s 3rd Law of Motion 

Blogs for ESET (January 2012 up to 28th)

• January 4th: Bootkit Threat Evolution in 2011
• January 9th: Irish 419-er seeks Spanish Lady 
• January 10th: Autorun and Conficker not dead yet: Threat Trends Report
• January 11th: Phishing and Taxes: a dead CERT?
• January 12th: HTML/Scrinject: surfing for cheap thrills at XXXmas?
• January 16th: Great Expectations and the Grim Reaver 
• January 17th: Passwords, passphrases, and big numbers: first the good news… 
• January 20th: Facebook, your birthday #1, and survey scams 
• January 24th: Facebook scam: the hours I spend… 
• January 27th: Facebook Fakebook: New Trends in Carberp Activity

SC Magazine (15th December – 27th January)

• January 11th: Retrophitted Retrophish
• January 16th: Great expectations 
• January 25th: Keep taking the tablets… 

Infosecurity Magazine (15th December – 27th January)

• 19th December: Small Eruption in Peru*: Not Many Infected
• 16th January: I Keep Getting Flashbacks
• 23rd January: iOS Jailbreaking: Does Absinthe Make the Heart Grow Fonder?

Chainmailcheck:

• 19th January: Agony Column for Comment Spammers 
• 20th January: Facebook Memes are the New Black(hat)

Mac Virus:

• December 19th: New Infosecurity blog article
• January 17th: Flashback to 2011: another recurring Trojan… 
• January 17th: F-Secure’s summary of 2011 Mac Malware
• January 20th: Mac Virus: 2011 in review
• January 25th: Jailbreaking with Absinthe

AMTSO:

• January 9th: San Mateo meeting

Papers and articles (I don’t seem to have been listing these, but there are a lot due out in the next few weeks, so maybe I should):

ESET papers:

• Ten Ways to Dodge CyberBullets: Reloaded An updated version of the paper “Ten Ways to Dodge CyberBullets”, addressing the question “what are the top 10 things that people can do to protect themselves against malicious activity?”
• <!– Win32/Carberp: When You’re in a Black Hole, Stop Digging –>Win32/Carberp: When You’re in a Black Hole, Stop Digging by Aleksandr Matrosov, Eugene Rodionov, Dmitry Volkov and David Harley: This paper consolidates information published by ESET and Group-IB researchers on Russian malware that attacks Russian RBS (Remote Banking Systems) transactions: now updated to version 1.1 to include additional material.
• Contributions to Global Threat Report for December 2011

AMTSO: The Test of Time? in Network Security (Elsevier): subscribers only.

Forthcoming articles:

• Living the Meme: for Virus Bulletin
• When I’m x64: Bootkit Threat Evolution in 2011 (with Aleksandr Matrosov and Eugene Rodionov) Hakin9

 Media coverage: way too much to point to individual articles. Shout-outs to Kevin Townsend, Dan Raywood, Fred Donovan, Esther Shein, Ellyne Phneah, Fahmida Y. Rashid, and apologies to those I’ve forgotten.