by certifiedbug on July 29, 2006
in News
BusinessWeek online
JULY 28, 2006
By Manjeet Kripalani, Louise Lee and Nichola Saminather
Call Center? That’s So 2004
Outsourcing shops are moving fast into higher-paying businesses
Americans, it seems, hate calling a help desk or customer service number to find an Indian on the line. Well, guess what, America? India doesn’t particularly want to talk to you, either. As India’s top companies get more sophisticated at taking over outsourced work from U.S. and European multinationals, they’re finding that the lowest end of the business — call centers — just doesn’t pay anymore. “Call centers have become commoditized,” says B. Ramalinga Raju, chairman of Satyam Computer Services Ltd.
For workers in India a positive move if they do receive increased income.
As to the outsourcing companies, most people having purchased a computer in… (your country of original transaction) would prefer to speak to a person in… (your country of original transaction)
These companies already make a profit, customer service in return for our money wouldn’t hurt.
Article
Mr.Ramalinga Raju
by certifiedbug on July 28, 2006
in Security
Vitalsecurity.org
Friday, July 28, 2006
Posted by paperghost
Zango was targetting Myspace: The Proof
An anonymous tipoff (who claims they were an affiliate of Zango, but got fed up with them emailing him all the time) recently saw the whole “Zango on Myspace” thing and was surprised to see Zango claiming they have a “hands off” policy towards Myspace. From the InformationWeek article:
“Those two test accounts were actually created by one of our developers who was exploring possible opportunities, but he didn’t realize it was Zango business practice not to target MySpace,” said Stratz. “He should not have been doing this, and we want to tell MySpace that we didn’t mean to target them.” The developer, said Stratz, would soon be deleting the profiles.
Surprised, because he claimed they sent him what appeared to be a mass-mail shot from a Zango rep, showing all these fun ways to push Zango on Myspace.
Article
Edit:
TechWeb contacted Zango for their response.
Zango spokesman Corey Magnus acknowledged that “as the e-mail clearly indicates, we had at one point looked into opportunities” on MySpace. But Magnus again said it was Zango’s policy not to target the social site.
That may be true in the letter of the law, but not the spirit, countered Boyd,
TechWeb Article
by certifiedbug on July 28, 2006
in Security
‘Inappropriate Material’ Could Reach Children
By Brian Krebs
Special to The Washington Post
Friday, July 28, 2006; Page D05
Warner Bros. Studios, home to Bugs Bunny, Scooby Doo and Harry Potter, said yesterday that it plans to terminate a business relationship with Zango Inc., an adware company that has been offering free games on the Warner Bros. Web site
Article
by certifiedbug on July 28, 2006
in Security
securitypronews
David Utter | Staff Writer
2006-07-27
Zango Affiliate Still Luring MySpace Users
An affiliate who had been posting Zango content on MySpace against both companies’ terms of service has switched to using a new domain, despite Zango’s public claims that such activity would result in the termination of the affiliate account.
Article
by certifiedbug on July 28, 2006
in Security
SpywareGuide
Posted by Paperghost on July 26, 2006
Gambing Site Promoted by…Gambling Bots!
The irony here is that an online gambling website is being pushed by a profile promoting illegal bots - exactly the kind of program that the gambling site would not want being used on their system. Talk about conflict of interest! Of course, if you click the link to “Red Casino”, you won’t see any Bots - just a website asking you to install the gambling software:
Article
McAfee Avert Labs
Spying Gecko
Tuesday July 25, 2006 at 3:32 am CST
Posted by Geok Meng Ong
Upon successful execution, FormSpy hooks mouse and keyboard events in the Mozilla Firefox web browser. It can then forwards information such as credit card numbers, passwords and URLs typed in the browser to a malicious website hosted at IP address 81.95.xx.xx.
Typically, Mozilla Firefox components are installed via .xpi files where users are prompted to confirm the installation. FormSpy writes and modifies Mozilla configuration files directly which bypasses this confirmation process.
Article
With popularity comes the attention of malware writers.
by certifiedbug on July 24, 2006
in Security
SANS Internet Storm Center
Handler’s Diary July 23rd 2006
Reader Ivan alerted us earlier today about an email scam that has surfaced in the past few days. Here’s the text of the message he saw:
Subject: egold transaction
Message:
Good day,
Yesterday I was checking my egold account and was surprised at what I saw: I had almost 200 ounces of gold (USD 100,177.90). I never had so much money, (I only had USD177.90 in my account at he time of this transaction) I don’t know how did they get there. I clicked on history and saw that money were transferred 2 hours ago, in the memo field I saw your email address:[email] When I was trying to sort this out - money disappeared from my egold account. I lost my money and money that came from nowhere. I changed my password immediately and now I am trying to find out what has happened. Luckily I made a screenshot with the transaction history for you to see and tell me what is going on. I hope that you will let me know what has happened. I did not contact egold support yet. I hope that we will be able to sort this matter ASAP. Before I will contact them.
Not a bad job of building a scam. As you might expect, there was a file attachment that looks fairly innocent, “screen.zip” and likely would fool many unsuspecting victims. Opening the file we find an executable file inside the archive that is named “screen.jpeg (many spaces) .exe” that in turn has a filesize of 8,485 bytes. Most of you know what happens next…
More:
by certifiedbug on July 22, 2006
in Security
spywareguide.com
July 21, 2006
Paperghost posts:
What we have here is a clear example of Bait and Switch - luring you in with one offer, only to be denied the desired item, but presented with a “substitute” at the last moment. The difference here, is that the webmaster also gets to install Smart Browser onto the PC in the process - I suppose you could call it a two for the price of one deal or a “bonus”. Even if the end-user doesn’t choose to download any Zango videos, they’ll still be receiving pop-ups (and possibly premium rate dialers) via Smart Browser.
Article and screenshots
by certifiedbug on July 22, 2006
in Security
BBC News website
By Mark Ward Technology Correspondent
“This is a criminal act,” said Hemanshu Nigam, MySpace chief security officer. “This ad is being delivered by ad networks who distribute these ads to over a thousand sites across the Internet in addition to ours.”
“We are working to have these ad networks remove this ad so that they do not appear on our site,” he said.
Chris Boyd, director of Malware research at Facetime Security Labs, said sites such as MySpace and Orkut often felt like “gated communities” and made people feel more secure than they should.
Article here
by certifiedbug on July 21, 2006
in Security
Washington Post
Security Fix
Brian Krebs writes
Hacked Ad Seen on MySpace Served Spyware to a Million
An online banner advertisement that ran on MySpace.com and other sites over the past week used a Windows security flaw to infect more than a million users with spyware when people merely browsed the sites with unpatched versions of Windows, according to data collected by iDefense, a Verisign company.
Internet Explorer users who visited a Web page containing this ad and whose IE was not equipped with the WMF patch would not get that warning. Rather, their machines would silently download a Trojan horse program that installs junk software in the PurityScan/ClickSpring family of adware.
Microsoft Security Bulletin MS06-001
Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (912919)
Published: January 5, 2006
Six months later apprantly many have still not patched. 
