February 1st, 2012 
Mourad Ben Lakhoua New malicious campaign have been detected by Trend Micro that is circulating on Facebook, the malware is called TROJ_FOOKBACE.A and it starts by inviting Facebook users to install a new cool theme for the Valentine , I think this will attract any user that are looking to show the real love for his partner. By [...]
Posted in Cybercrime & Hacking, Malwares 
Tags: Facebook, Malware, Malwares, Trend Micro 
No Comments »
January 15th, 2012 Mourad Ben Lakhoua Today we are sharing all our sensitive information on social networks websites such as Facebook, twitter and more. I have just used a very nice tool that you can use on your lab as a PoC about how it will be possible in a few minutes to download profiles and pages with all pictures locally. [...]
Posted in InfoSec, Social Networking, Uncategorized Tags: Facebook, social engineering, Social Networking, Tools No Comments »
December 5th, 2011 Mourad Ben Lakhoua All social network websites are expanding their functionality to attract more users; if you are subscribed on Facebook you will notice that it is now possible to use webcam, chat or even play games. For all these features there are the good side but it may also increase risk of having new malicious programs. Today [...]
Posted in InfoSec, Malwares, Vulnerabilities & attacks Tags: Dorkbot worm, Facebook, Malware, Viruses And Worms No Comments » August 10th, 2011 Mourad Ben Lakhoua The hacker group published a YouTube video announcing their plan, and urging others to take down Facebook on November 5th. Maybe that the group has created the new tool called #RefRef and they feel to use it for launching distributed denial of service against Facebook. I think the Facebook needs to take the warning seriously. [...]
March 29th, 2011 Mourad Ben Lakhoua New Cross-site scripting vulnerability has been detected on Facebook and widely exploited in the mobile API version, this vulnerability allows a malicious user to include JavaScript content into a website and redirect victim’s browser to the prepared URL. I have already saw this flaw in the last few days, many of my friend list are [...]
Posted in Social Networking, Vulnerabilities, Vulnerabilities & attacks, Web Security Tags: Facebook, XSS, XSS Vulnerability 48 Comments » October 18th, 2010 Mourad Ben Lakhoua Today there has been a very interesting post on Security-Faq regarding password security and new Facebook One time password solution. According to Lee: What the team over at Facebook has come up with is a way to get a temporary password at anytime when you are on a wireless network that you do not trust. [...]
Posted in Social Networking, Web Security Tags: Facebook, fraud, identity, information gathering, Intelius, invasion, owned, passwords, Privacy, profile 14 Comments » October 3rd, 2010 Mourad Ben Lakhoua Today it is not a secret the amount of information that we can find on internet. This can touch personal and organizational information. Tracking any user is possible over different online services like whois or dnslookup…. Nice example can be found on http://www.attackvector.org/invasion-of-privacy/ , this post demonstrate how it will be possible from receiving a [...]
Posted in Privacy & data protection Tags: anonyminity, email address, Facebook, fraud, identity, information gathering, Intelius, invasion, linkedin, owned, passwords, Privacy, profile 12 Comments »
