Provided by CommunityDNS, the information in this post consists of news items in the security-based Internet community.

Trojan taps Google Groups as command network

Researchers have discovered hackers utilizing Google Groups to distribute commands. While spreading malware through newsgroups is not new, using groups for a command and control structure is new.

It is believed this particular instance is more of a proof of concept to show this concept can work.

Once infected with the Grups Trojan a computer will seek a page from the “escape2sun” private newsgroup. Commands to be carried out by the Trojan exist on this page.

Click here for more information.

Linux webserver botnet pushes malware

Organizations running legitimate Linux-based webservers, running Apache, have been discovered to have a hidden purpose of serving up malware. The legitimate websites were hacked to include hidden I-frames. When users land on one of these websites they receive the legitimate information over port 80. At the same time malicious traffic is sent to the user’s computer via port 8080.

Click here for more information.

Cyber criminals targeting small businesses

Because small to medium-sized businesses do not have the resources to keep up with necessary computer security, organized cyber groups, or cybergangs are targeting such businesses for purposes of stealing credit card numbers as well as personal information regarding the respective card holders.

In testimony for the Senate Homeland Security and Governmental Affairs committee, by installing simple to intermediate measures 87% of data breaches could have been avoided.

Click here for more information.

Domain-name abuse proliferates; rogue registrars turn a blind eye

Using phony information and paying with stolen credit cards, phishers are amassing domain names from which to conduct their attacks. Rogue registrars are turning an eye towards such practices as it means money coming in for the registrar. However, many registrars are working to discourage such practices by shutting off access to domains used by phishers.

In the 2nd half of 2008, 56,959 phishing attacks were launched using 30,454 unique domain names. 5,591 of those domain names were believed to have been registered by phishers. The remaining 24,863 domain names are believed to have been hacked domains from legitimate site owners. Using the Fast-Flux method, phishers can initiate attacks using over a thousand unique domain names in the course of a single day.

Click here and here for more information.

Web Censoring Widens Across Southeast Asia

Countries across Southeast Asia are looking for ways to dampen dissent towards official political stance that may traverse the Internet. While some countries lack the resources to implement filtering technology, as done by China, others are fearful of implementing such technologies due to either previous promises to their citizens about NOT restricting the Internet or the fear of loosing business through the location of international businesses. For those countries who are not implementing Internet filtering technologies they are seeking to quell dissent by changing their respective laws. While bloggers, video uploaders or users of social networks may not have their access to the Internet denied, they may find themselves in jail instead.

Click here for more information.

AT&T to FCC: gaming is not “broadband,” but an added service

In the last month News Bits reported a story whereby organizations are trying to define the term “Broadband” so as to be able to provide slower bandwidth speeds while still meeting the definition of “broadband”.

To add more to the debate AT&T wants to “suggest” that the definition of “broadband” ensure that online gaming is seen as “aspirational services” instead of a needed service.

Comment: Might influencing the definition of “broadband” be a preview of ways for broadband providers to legally skirt the issue of ‘Net neutrality when the definition provides neutrality to some applications but not others?

Click here for more information.

As the World Becomes Flat, Our Pipes Get Fat

A newly released report says bandwidth between countries has grown by 9.4 terabytes for a total of almost 25 terabytes. In 2007 the total was only 8.7 terabytes.

In 2008 international traffic increased by 61%. So far in 2009 the amount has grown by 79% over last year.

With connectivity growing to 444.3 million subscribers people, especially new to the ‘Net, are wishing to utilize bandwidth intensive social networking sites.

Click here for more information.