Think Security

Think Security is concerned about the new security threats and exploits . That is why Think Security is now offering the Think Security Notification area; this is to provide up-to-date security notification along with new exploit and threats that are facing all of us today. Think Security hopes that everyone finds this information useful and helpful. Think Security would like to hear back from everyone, please feel free to contact Think Security.

New ACH email with virus -

There has been emails claiming to be from "The Electronic Payments Association" with the subject of "Rejected ACH transfer." It informed us that our ACH transfer was "canceled by the other financial institution," and provided a link to the supporting documentation.

If you click on the link you'll go off on a short trip through a few sites (and pull down some Google Ads-- you might want to look at who's making money off of that Google,) and eventually if you're running a system vulnerable to CVE-2010-1885 you'll eventually install a loader for what Ikarus is calling Worm.Win32.Fujack.o.

Hackers destroy pump in U.S. water utility attack -

The latest has targeted the control system of the city water utility in Springfield, Illinois, and has resulted in the destruction of a water pump, Wired reports.

The hackers have staged the attack from an Russian IP address and have used login credentials for the SCADA system used by the utility which they acquired by previously hacking into the networks of the manufacturer and vendor of the said SCADA system.