An anonymous reader writes "More than 420,000 scam e-mails are sent every hour in the UK, according to a report by CPP, which estimates that Brits were targeted by 3.7 billion phishing e-mails in the last 12 months alone. A quarter of us admit to falling victim to e-fraudsters, with the average victim losing over GBP285. Fake banking e-mails are the most common method used by criminals, with 55% of those targeted receiving seemingly legitimate e-correspondence from high street banks."

darthcamaro writes "A year ago, it looked like the .cn country code Top Level Domain (ccTLD) for China was growing so fast that it would displace .com. In 2010 that's no longer the case, as .cn has dropped from being the number two global domain by registrations to number four. And yes, .com is still number one. According to VeriSign, the top 10 list of TLDs in the first quarter was: .com, .de, .net, .cn, .uk, .org, .info, .nl, .eu and .ru. So why did .cn decline? Spammers. 'Many of these are low-priced promotional names that have now come up for renewal at a higher price,' said Pat Kane, vice president of naming services at VeriSign. 'The .cn registration decline was also based on the CNNIC (China Internet Network Information Center) registry's implementation of the real names directive from the Chinese government primarily around verifiable "whois" data.'"

coondoggie writes "The Federal Trade Commission today had a federal court in Chicago halt a major telemarketing operation that made at least 370 million illegal phone calls pitching worthless extended auto warranties and credit card interest rate-reduction programs. According to the FTC, one telephone service provider told the FTC that during a single day in April 2009 the defendants — SBN Peripherals — sent 2.4 million calls to consumers — more than 27 calls per second."

Barence writes "HP is set to unveil a line of printers with their own email addresses, allowing people to print from devices such as smartphones and tablets. The addresses will allow users to email their documents or photos directly to their own — or someone else's — printer. It will also let people more easily share physical documents; rather than merely emailing links around, users can email a photo to a friend's printer. 'HP plans to offer a few of these new printers to consumers this month, and then a few more of the products to small businesses in September.'"

Lobais sends in the cautionary tale of a man who was locked out of Google Groups for three years — losing the ability to administer his own open source project in the process. "After about a year of using Google Groups for the PyChess project, I started [noticing] a problem. When I wrote mails to the list, no one would answer. And when I answered other peoples' post[s], they seamed to ignore them and press for new answers. As I tried to check the online group to see what was happening, I got a 403 Forbidden error. After a short while I realized that this error was given for any page on the groups.google.com subdomain. The lockout meant that I was unable to manage the PyChess mailing list. I was unable to fight increasing spam level, and more importantly I couldn't reply to anybody in my community. I wasn't even able to visit the Google help forums, which are all on groups.google.com. As the services are free of charge, I never really expected any support options. ... How can we know how often this kind of thing happens? If any admin can lock you out by a sloppy click, and give you no option to defend yourself, then it is bound to happen once in a while."

Stoobalou writes "Apple's worst-kept secret will be revealed on June 7. A press release from Apple HQ has made it almost certain that the company will announce the new iPhone 4G on June 7, in our opinion, at least. The missive from Cupertino simply states that Steve Jobs will kick off the Worldwide Developers Conference 2010 with a keynote address. The thing is, Apple's enigmatic frontman doesn't turn up to these geeky WWDC shindigs unless he has something to announce that will get the hyped-up gang of Apple fanboys and girls a-whoopin' and a-hollerin'."

coondoggie writes "The Federal Trade Commission today got a judge to effectively kill off the Internet service provider 3FN, which the agency said specialized in spam, porn, botnets, phishing, and all manner of malicious web content. The ISP's computer servers and other assets have been seized and will be sold by a court and the operation has been ordered give back $1.08 million to the FTC."

DukeTech writes "This week marks the end of an era for one of the earliest pieces of Internet history, which got its start at Duke University more than 30 years ago. On May 20, Duke will shut down its Usenet server, which provides access to a worldwide electronic discussion network of newsgroups started in 1979 by two Duke graduate students, Tom Truscott and Jim Ellis." Rantastic and other readers wrote about the shutdown of the British Usenet indexer Newzbin today; the site sank under the weight of a lawsuit and outstanding debt. Combine these stories with the recent news of Microsoft shuttering its newsgroups, along with other recent stories, and the picture does not look bright for Usenet.

Keith noted that Krebs has an interesting story on a Russian businessman being accused of running a spam ring while serving as an anti-spam adviser to the Russian government. It's a strange tale including an investigation in 2007 that was abandoned when the chief investigator was actually hired to work for the spammer. Not suspicious at all, no way.

Trailrunner7 writes in with a Threatpost.com article that begins: "For years, security experts, analysts and even users have been lamenting the state of desktop security. Viruses, spam, Trojans and rootkits have added up to create an ugly picture. But, the good news is that the desktop security battle may be over. The less-than-good news, however, is that we may have lost it. Jeremiah Grossman, CTO of WhiteHat Security, said Thursday that many organizations, particularly in the financial services industry, have gotten to the point of assuming that their customers' desktops are compromised. And moving forward from that assumption, things don't get much prettier." It goes on to speculate about home routers being targeted and infected.

eldavojohn writes "Some 2,000 public and 2,200 private newsgroups devoted to and managed by Microsoft support are going to be phased out in favor of forums because of newsgroup spam. The Register calls it 'killing newsgroups' but Microsoft eloquently calls it 'the evolution of communities.' Always managing to spin it in a positive light! Let's hope the spam posts and voting bots in their forums remain controllable."

An anonymous reader writes "AOL has sold ICQ to Digital Sky Technologies (DST), Russia's largest Internet company, for US$187.5 million. DST's offer was apparently more attractive than those of Russia's ProfMedia and China's Tencent. ICQ, originally released in 1996 and bought by AOL in 1998 for US$407 million, was one of the world's first major instant messaging systems. Although largely forgotten in English-speaking countries, it remains widely popular in Central Europe, Russia, and Israel. Moscow News has additional coverage of the deal."

An anonymous reader writes "The United States continues its reign as the king of spam, relaying more than 13% of global spam, accounting for hundreds of millions of junk messages every day, according to a report by Sophos. However, most dramatically, China – often blamed for cybercrime by other countries – has disappeared from the 'dirty dozen,' coming in at 15th place with responsibility for relaying just 1.9% of the world's spam."

wto605 writes "As computers are used for more and more vital business functions, small businesses must have office employees who understand the dangers of, and how to recognize and avoid, malware, spam, and phishing. After having been stung by monthly virus cleanups (at $75 an hour) due to an otherwise competent office manager, my parents have realized they need to be aware of their employees' computer skills beyond the ability to type a letter in Microsoft Word (currently the closest thing they have to a test of computer competence). The problem is, as a small business, they have no IT expert who would be able to judge a potential employee's competency. I'm wondering if anyone knows of a good way to test these security/safety awareness skills, such as an online test, a set of questions, etc. I have already pointed them to Sonicwall's Spam and Phishing test, but it definitely does not cover all of the issues facing computer users."

workie writes "Using data derived from website infections, RescueTheWeb.org has found several interesting link-spam architectures. One architecture is where concentric layers of hijacked websites are used to increase the page rank and breadth of reach (within search engine search results) of scam sites. The outer layers link to the inner layers, eventually linking to a site that redirects the user to the scam site. Another architecture involves hijacked sites that redirect the user to fake copies of Google, having the appearance that the visitor is still within Google, but in reality they are on a Google lookalike that contains only nefarious links."

We've been getting submissions about an uptick in compromised Gmail accounts in the last few days, but nothing that could be substantiated. Robert McMillan did a bit of digging and now reports in PC World that "Google is investigating a growing number of reports that hackers are breaking into legitimate Gmail accounts and then using them to send spam messages. The problem started about a week ago but seems to have escalated over the past few days. ... [I]n forum posts, Gmail users note that the hackers appear to be sending spam via Gmail's mobile interface — which gives mobile-phone users a way to check their Gmail accounts — and wonder if there may be a bug in the mobile interface that is allowing criminals to send the spam. ... Google says there's no Gmail bug. ... 'Spammers may sometimes use a mobile interface to access accounts they have already compromised because it's simpler for bots to use this method at large scale.'" Here's how to tell if your Gmail account has been accessed by bad guys, and what to do about it.

Stoobalou writes "Not content with its iPhone scoop, Gizmodo has probably ruined the career of a young engineer. The tech blog last night exposed the name of the hapless Apple employee who had one German beer too many and left a prototype iPhone G4 in a California bar some 20 miles from Apple's Infinite Loop campus. Was that really necessary?" It also came out that they paid $5K for the leaked prototype and that Apple wants it back.

Krebsonsecurity.com has a writeup on the decision of UK anti-fraud activist site bobbear.co.uk to retire from the fray. The 66-year-old fraud fighter said he was getting too old for the work, which takes him about 15 hours a day. "We had so many messages of thanks, and congratulations on the site, but it is so stressful and takes so much out of you, and there is always the worry of litigation hanging over your head." "The owner and curator of bobbear.co.uk, a site that specializes in exposing Internet fraud scams and phantom online companies, announced Saturday that he will be shuttering the site at the end of April. Bobbear and its companion site bobbear.com are creations of [the pseudonomous] Bob Harrison, a 66-year-old UK resident who for the last four years has tirelessly chronicled and exposed a myriad of fraud and scam Web sites. The sites, which are well-indexed by Google and other search engines and receive about 2,000 hits per day, often are among the first results returned in a search for the names of fly-by-night corporations advertised in spam and aimed at swindling the unsuspecting or duping the unwitting." Any ideas on who might want to take over the domains and carry on the work would be appreciated by the Internet community at large.

alphadogg writes "Despite security researchers' efforts to cut spam down to size, it just keeps growing back. The volume of unsolicited email in the first quarter was around 6 percent higher than a year earlier, according to Google's e-mail filtering division Postini. Security researchers have won a few significant battles against the spammers in the last year, first against those hosting the spammers' control systems, and later against the control systems themselves, but they will have to change tactics again if they want to win the war. In the first half of last year, security researchers concentrated their efforts on identifying the ISPs or hosting companies that allowed command-and-control servers to operate, and shutting these botnet purveyors down. The success of that tactic was short-lived, however."

Zarrot writes "In the next step for their Free 2 Play model, Turbine Entertainment, publisher of Dungeon and Dragons: Online, Lord of the Rings: Online, and Asheron's Call, has partnered with notorious 'lead generation company' SuperRewards. Initial testing by forum users shows that just accessing the page without clicking on any offers sends the user's email and game login in clear text to SuperRewards. Reports of new spam and fresh malware infections on test systems are already being reported on the company's forums. Is the Zynga business model the future of Internet gaming?"