Archive for the ‘Uncategorized’ Category

The old saying goes that “you can’t teach an old dog new tricks.” But, nothing says “you can’t teach a new dog old tricks.” Which is what cybercriminals are doing by borrowing a trick or two from desktop days and applying them to smartphones. At least that’s the import of an article by Michael Lee’s on ZDNet.com.

Now, in previous blogs, we’ve talked about how cybercriminals use Twitter to steer smart phone users to places online where cybercrooks have malware stashed. Though it can be used for other nasty things, this malware is often used to force a phone to send SMS texts to premium-rate numbers with the cybercriminal getting a chunk of the action for the higher fees.

“During a single eight-hour operation, [security expert Joji Hamada] witnessed over 130,000 malicious tweets from about 100 Twitter accounts. Another operation saw over 1500 tweets from over 50 accounts in one hour. He said that this could just be the tip of the iceberg as several operations are typically conducted at the same time.”

Here’s an interesting sidelight. Cybercriminals use malware against smartphones the same way they used to use it against desktops. In the days of the desktop (apologies to everybody still using desktops), whenever the user’s antivirus found a cure for a particular strain of malware, the cybercriminal would develop a new strain or new virus. This one-upmanship arms race is now taking place on smartphones with cybercriminals getting an added advantage by trading on one of the smartphone’s major attractions. And, that is the ability to have access to the Internet anytime, anywhere 24/7/365. This offers cybercriminals, as Hamada puts it, to “mix their game around, thereby making it difficult to recognize all bad tweets.”

Research and security professional, Dinesh Venkatesan, found another anti-detection technique that cybercriminals use that’s borrowed from desktop days. It’s called reflection and allows the executing program to examine classes and, among other abilities, find particular functions to execute at runtime without necessarily knowing what the code is at compile time.

As a matter of course, when malware calls a sendTextMessage() function in Android for example, anti-malware applications are warned there’s a suspicious activity going on.

Based on reflection Venkatesan said, “Instead of directly calling the sendTextMessage() function, the malware stores the name of the function as a presumably harmless string and, after searching the API[*] for the function by this name, stores its location as a reference. When the malware then wants to execute the sendTextMessage() function, it will call on this reference rather than its direct name. For static code analysis tools, this is typically enough for the malware to escape detection.”

* If you’re not into programming, an API or application programming interface is used as an interface by software components to communicate with each other.

Additionally, Venkatesan “found that these particular samples were taking steps to encrypt the data they used. In particular, criminals had taken steps to ensure that the data was only decrypted at runtime. From here, the data was stored in memory as an XML file and used to determine which number to send SMS messages to and their content.” So it seems new dogs not only learn old tricks, they can also come up with new ones.

Desktops to smartphones and all devices in between – ThreatMetrix™ has solutions for fighting cybercriminals wherever they choose to wage crime.

ThreatMetrix offers a complete package of online protection including secure browsing technology that protects smart phones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. And, it’s done without relying on passwords, user names and cookies to protect its clients. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.

Do you know your malware? Sometimes we take it for granted that everybody’s speaking the same language because they’re using the same words. Here’s a real-life example from the time of the Vietnam War. When a recently separated soldier, who’d just gotten back from Vietnam, was asked how he was doing, he replied, “Uptight.”

A look of concern came over his friend who’d never been in the army. “What’re you uptight about?”

“Huh?” questioned the ex-soldier.

“What?” responded his friend.

The conversation could’ve continued this way all night, but mercifully one of them asked what “uptight” meant to the other.

It seemed “uptight” from the U.S. army’s “uptight outta sight” meant everything was perfect, while the rest of the world took “uptight” to mean nervous and worried.

To get everyone using the same words to describe different types of malware, we’d like to thank pcmag.com and Neil Rubenking, Lead Analyst for Security at pcmag.com, for providing these definitions.

Adware. As the name suggests, the purpose of adware is to display ads. That doesn’t sound too awful, but some adware threats bombard you with so many ads you can hardly use the computer.

APT (Advanced Persistent Threat). The term APT refers to an elaborate attack like Duqu or Stuxnet that’s backed by a government or other powerful group. You probably won’t get hit by an APT, but your bank or your business might.

Backdoor. Just as it sounds, a backdoor opens up your computer to hack attack. It allows full access to everything on the computer, bypassing the requirement to log in with a Windows password.

Bot. On its own, a bot isn’t harmful. The creator, or “bot herder,” works hard to get as many silent bot infestations as possible installed, then rents out the bot network to others. DDoS (Distributed Denial of Service) attacks are often managed by sending commands to a bot network that cause all the infested PCs to run an attack script.

Dialer. You’re not likely to suffer a dialer attack. This type of malware uses the computer’s modem to make calls to premium numbers, running up charges on the victim’s phone bill. But these days, with virtually everyone on broadband, dialers aren’t every effective.

Dropper. A dropper doesn’t harm your system itself. Instead, it installs other threats, or opens a channel through which the bad guys can push malware.

Exploit. Sometimes the bad guys discover a way to exploit a bug in the operating system or in a common program; typically the exploit lets them execute code opens the door to other malware. Legitimate vendors do their best to patch these holes, naturally.

Keylogger. Basically a form of spyware, a keylogger captures everything you type, including passwords and other sensitive information. Some keyloggers also capture screenshots, log your Web browsing history, record anything copied to the clipboard, and more.

Malware. The comprehensive term malware applies to any software whose purpose is malicious, including (but not limited to) all of the other types described here.

Ransomware. A ransomware threat encrypts your important documents, disables Windows logon, or otherwise makes your computer unusable until you pay the ransom demanded by its perpetrators. It’s a bit dodgy for the perps, since they might be tracked through the ransom payment.

RAT (Remote Access Trojan). Like all Trojans, a RAT masquerades as an innocent and useful program. Behind the scenes, though, it opens up a backdoor that gives its owner complete access to the affected computer.

Rootkit. Antivirus software can only remove threats that it can detect. Rootkit technology hides a threat’s file and Registry traces so that most programs can’t “see” them. Only specialized anti-malware technology can bring the hidden traces into view.

Scareware. A fake antivirus that pretends to find problems on your system and displays a big, frightening warning—that’s scareware. Naturally you must pay the registration before it will “fix” the made-up problems. In most cases there’s no actual malicious code, just a huge scam to con you into paying money for nothing.

Spyware. Spyware simply means malicious software that steals credit card numbers, passwords, and other sensitive personal information.

Trojan. Named for the Trojan Horse of legend, a Trojan is a seemingly benign program that does something nasty in secret. Trojans are the most common type of malware on the Android platform. While you play a Trojanized Android game, it may be sending your contacts to a server in Russia, or making $10/minute phone calls.

Virus. A computer virus spreads by injecting its code into other programs or, less commonly, into the boot sector of a disk. When you execute the infected program, the virus code runs too. It may simply infect more files, or it may perform a “payload” action like wiping out your hard drive.

Worm. Like a virus, a worm replicates itself within the computer or across the network. Unlike a virus, it doesn’t wait for you to launch an infected program. Network worms can spread around the world with alarming rapidity.

Mix and Match. These categories aren’t mutually exclusive. A Trojan could use keylogger technology to spy on you and steal passwords. A virus could hide from antivirus programs using rootkit technology.

Now that you know they’re proper names, it’s time to fight them with the best weapons in the world – solutions from ThreatMetrix™.

ThreatMetrix offers a complete package of online protection including secure browsing technology that protects smart phones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. And, it’s done without relying on passwords, user names and cookies to protect its clients. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.

Did you know that before 1995, there was not one, single instance of cybercriminals taking advantage of an online banking transaction to steal a customer’s money? Of course, before 1995, there was no online banking.

So, back to brick and mortar banking. Somehow, that doesn’t seem like the optimum solution. Christy Serrato, solutions marketing for financial services, at ActivIdentity probably wouldn’t think so. In a recent talk, she said banks needed to provide “strong and versatile authentication” especially in emerging markets. “[S]trong, multi-factor authentication can provide the answer with elements such as one-time password tokens, mobile authentication, smartcards and USB keys.”

Then she goes on to point out some of the negatives, “Malware has been the catalyst for strong authentication, yet an increase in authentication can often mean a reduction in user-friendliness. Customer convenience can easily be sacrificed, and so to counter this, strong authentication can be combined with other layers such as device identification, secure browsers and mobile location services to provide a strong contextual way of invoking security where needed.

“This means distinguishing between consumer and corporate customers, which allows organizations to apply the appropriate level of security and user-friendliness where needed.”

Serrato also noted that roughly 80% of financial institutions don’t have the timeline or budget in place to implement recent Federal Financial Institutions Examination Council (FFIEC) guidelines that call for multi-authentication.

RFPconnect.com, which quoted Serrato, advised banks to take small steps in stages toward multi-factor authentication until they’re fully covered.

Instead of small steps, some of which make customers uncomfortable, ThreatMetrix™ offers a giant leap in secure coverage.

Without relying on passwords, user names and cookies to protect clients, ThreatMetrix offers protection from every type of malware for every type of device. ThreatMetrix’s complete package of online protection provides secure browsing technology that protects smart phones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.

Cutting edge bank robber’s app circa 1880.

The latest wrinkle in malware apps comes from Europe. This smart bit of malware steals online banking credentials and enables ongoing communication with external servers. That way it can update itself with new commands or add new server addresses if it wants to talk to other servers – or if other servers want to talk to it.

A piece in Mobilesecurity.com says the malware, a token generator app, has targeted widely-used European banks. The malware, which cloaks itself in the genuine bank’s colors and logo, offers users a security token for initiating online banking sessions to Android users.

To get the phony token, the user must enter the first factor of authentication, which, for most users is a password. If the user doesn’t enter it, the app sends an error message. Which is pretty much what any genuine app would do.

Let’s say the user sends his/her password and clicks (GENERATE). The malware app sends the user a fake token, which is simply any random number the app happens to generate. At the same time the app sends the user’s password to a cybercriminal’s cell phone along with the user’s device identifiers.

One device identifier is the International Mobile Equipment Identity or IMEI, a number, usually unique, to identify GSM, WCDMA, and iDEN mobile phones, as well as some satellite phones. It is usually found printed inside the battery compartment of the phone. It can also be displayed on the screen of the phone by entering *#06# into the keypad.

Another device identifier is International Mobile Subscriber Identity or IMSI. It’s a unique identification associated with all GSM and UMTS network mobile phone users. It is stored as a 64 bit field in the SIM inside the phone and is sent by the phone to the network.

The app also sends the phone number, contact lists and any other bits of information that can be used to steal a victim’s identity.

In the Mobilesecurity.com piece, malware researcher Carlos Castillo writes, “From man-in-the-middle attacks we now see more sophisticated, remote-controlled banking Trojans that can get more than one factor of authentication and update itself to, for example, modify a phishing attack to get other required credentials–such as the name or the ID number of the user–to perform electronic fraud. Due to the increasing popularity of Android and mobile-banking applications, we expect that more threats like this will appear.”

The threats are out there and multiplying. To protect your company and your customers, counter those threats with the best protection on the planet from ThreatMetrix™.

ThreatMetrix offers a complete package of online protection including secure browsing technology that protects smart phones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. And, it’s done without relying on passwords, user names and cookies to protect its clients. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.

Taking advantage of Android’s permission system, Android.Opfake.B, disguised as an innocent app, is malware that “smuggles” its way aboard the Android operating system via an APK (application package file), the file format used to distribute and install application software and middleware onto Google’s Android operating system. To evade detection once it’s loaded, Android.Opfake.B becomes polymorphic, changing the names of the applications it pretends to be and creating countless domains to host its malicious files.

Receiving commands from a remote C&C (Command and Control) server, Android.Opfake.B carries out various functions. It’s safe to say none of them do anybody any good except for the cybercrooks who tricked the Droid user into downloading the malware.

Old variants of Android.Opfake simply asked for permission (see following example) to send SMS messages at premium (rip-off?) SMS rates.

Now, the developers appear to be making a major upgrade in sophistication – and nastiness. The latest version of the malware wants permission to read contact data, modify and delete content on the SD card, and automatically start at boot — among other things (see following example).

(Images courtesy of Joji Hamada at Symantec.)

Android.Opfake.B not only sends premium SMS messages, says Symantec’s Joji Hamada, “it posts the phone number of the compromised device on to a predetermined server, notifying the attacker of the infection. There is also a back door running in the background, waiting for commands through SMS. When a message containing a certain string is received, the malware reads it as a command from the attacker and, depending on the instructions, performs the following actions:

• Sends details such as the IMEI, IMSI, or any received SMS messages

• Sends SMS messages

• Configures the URL that communicates with the server

• Updates or removes rules used by the malware to process the SMS messages received

• Issues HTTP GET requests

• Exfiltrates the contact list on the device

• Downloads .apk files and stores them on the SD card

The malware is keeping itself alive by running in the background and automatically starts if the device is rebooted. There is also code that attempts to install downloaded .apk files, which could be updates of the malware. However, it lacks the permission to do so in the current version.”

By the time it’s through with the user, Android.Opfake.B has turned his/her Droid into a bot. Turned an Android into a robot. Hard not to comment on the irony in the language. But, we won’t.

Anyway…

Andreas Baumhof, chief technology officer, ThreatMetrix, points out that “fake” security software requesting user permission to load often looks more “authentic” than the real thing. (See following examples of genuine software.)

There are lots of other questions about Android’s permission system, such as “Does it really work?” But, we’ve run out of electrons for now, so they’ll have to wait for a future blog.

One thing you don’t have to wait for is the solution to your company’s online security requirements. Just contact ThreatMetrix™.

ThreatMetrix offers a complete package of online protection including secure browsing technology that protects smart phones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. And, it’s done without relying on passwords, user names and cookies to protect its clients. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.

You’ve been around the block. You know the score. You’re nobody’s fool.

Anyway, when it comes to malware and navigating the Internet, you maintain a healthy suspicion of everything, including what your friends send. You have a good nose for sniffing out the difference between a spoofed website and a genuine one. You know better than to click on the wrong link. And, then one day…

Padmini Harchandrai in Tech2.in.com relates the tale of security expert Vanja Svajcer who received a Facebook friend request. Being careful, Svajcer used his Android device to check the requester out before accepting the request. A link on the requester’s Facebook profile redirected Svajcer’s browser to a webpage automatically downloading malware to his Android phone. The malware package was called any_name.apk and it looked like it was designed to earn money for scammers through premium rate phone services.

Svajcer said the malware was using a class name, com.opera.install, which made it look like it was associated with a legitimate Opera browser app. “An encrypted configuration file inside the package include[d] the dialing codes for all supported countries (for instance, the UK …) and the premium rate number and text of the SMS message which it intend[ed] to send.” The application made an appearance to let Svajcer know what it planned to do when he ran it, but in reality, it installed itself without his permission.

Knowing there was malware, but wanting to know how it worked, Svajcer visited the same link a few days later on his Android smartphone. This time he was taken to another website, which downloaded a different application, allnew.apk. The new application performed the same function as the original malware, but was coded differently as Andr/Opfake-C.

Harchandrai writes, “This kind of malware is similar to clickjacking, which takes place very often on Facebook. Users are usually shown a link that is malicious and provocative in nature and when they click on it, they are made to go through surveys, which ask them for very personal information before they are told they can see the video.

“Sometimes, the end result is a sale of very expensive premium telephone plans. However, even after they’ve filled out the surveys, the promise of viewing the video is never met. It’s…called clickjacking, because when users click “Like” on the first bait page, their friends see that activity and are in a position to fall victim to the same trap.”

Wow, don’t even get the see the video. Talk about adding insult to injury.

ThreatMetrix™ can’t do anything about online insults, but it can save your company and your customers from injury caused by cybercriminals. Without relying on passwords, user names and cookies to protect clients, ThreatMetrix offers protection from every type of malware for every type of device. ThreatMetrix’s complete package of online protection provides secure browsing technology that protects smart phones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.

According to a recent survey, there were more than four million new Windows’ malware strains in the last quarter of 2011 as opposed to fifty that targeted Apple computers. Unfortunately for Apple users, Flashback G is one of the 50.

The new Trojan steals passwords to services such as Google, PayPal and online banking and causes Safari and Skype to crash. First discovered in September 2011, the infection is increasing by exploiting Java.

If Java is not installed or its security patches aren’t up-to-date, Flashback.G, attempts to trick users into installing it by presenting a fake security certificate (SEE ABOVE) that looks like it comes from Apple. The victim clicks “Continue” and game over.

According to an article in telegraph.co.uk, Mac users running the most recent version of OS X, Snow Leopard, are most at risk. That’s because they might not be familiar with Java, which was included as part of the installation package for the first time. It’s recommended that those users update Java ASAP. Users running previous versions of OS X, such as Lion, who installed Java themselves, are advised to keep it updated and not accept any phony certificates purportedly coming from Apple.

Think Apple wants to hear the good news or the bad news first? With all their money, they probably could care less. But, here goes. The bad news is cybercriminals are targeting Macs more and more. The good news is they’re targeting Macs because Macs’ market share is increasing.

Now, want to hear some really good news? ThreatMetrix™ offers the best protection against cybercrime on the planet, and information about how your company can get it, is a click away.

ThreatMetrix offers a complete package of online protection including secure browsing technology that protects smart phones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. And, it’s done without relying on passwords, user names and cookies to protect its clients. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.

Hackers got NASA’s number, which turns out to be thirteen, the number of times NASA’s computer systems were breached last year.

Testifying before Congress, Paul Martin said, “These incidents spanned a wide continuum from individuals testing their skill to break into NASA systems, to well-organized criminal enterprises hacking for profit, to intrusions that may have been sponsored by foreign intelligence services seeking to further their countries’ objectives.

“Some of these intrusions have affected thousands of NASA computers, caused significant disruption to mission operations, and resulted in the theft of export-controlled and otherwise sensitive data, with an estimated cost to NASA of more than $7 million.”

Mashable.com reports that in one instance, the agency discovered an intrusion into its system by hackers working through a China-based IP address. The hackers gained access to NASA’s Jet Propulsion Laboratory’s network, allowing them to view, copy, delete and tamper with classified information. But, before closing the door behind them, the hackers uploaded software allowing them access to other NASA systems while covering their digital tracks.

In a separate breach, hackers took computer access codes from more than 150 NASA employees. Unfortunately, Martin said, the agency failed to move quickly enough to ensure that those hackers wouldn’t be able to use the codes to gain access to its networks.

Making note of the increasing sophistication of the attacks, which NASA has spent approximately $58 million on security to deter, Martin comments, “Some NASA systems house sensitive information which, if lost or stolen, could result in significant financial loss, adversely affect national security, or significantly impair our nation’s competitive technological advantage. Even more troubling, skilled and committed cyberattackers could choose to cause significant disruption to NASA operations, as IT networks are central to all aspects of NASA’s operations.”

FBI director, Robert Mueller has said that hackers could top terrorists as the main threat to the U.S. in the near future.

Chinese emperors constructed the Great Wall of China to keep out barbarians. Stones may not be able to keep modern barbarians from wreaking havoc with your network, but ThreatMetrix™ can.

Without relying on passwords, user names and cookies to protect clients, ThreatMetrix offers protection from every type of malware for every type of device. ThreatMetrix’s complete package of online protection provides secure browsing technology that protects smart phones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.

*Triskaidekaphobia. On the off chance you may not know and can’t wait till the next Friday the Thirteenth to hear it on the news, triskaidekaphobia is fear of the number 13.

For ThreatMetrix™, the honors continue coming. Last year it was a Red Herring Global 100 Award. This year ThreatMetrix is a finalist for the 2012 Merchant Risk Council Emerging Technology Awards (METAwards) in the “established company” category.

The Merchant Risk Council presents METAwards in recognition of the most innovative and progressive technologies and solutions specifically designed to help e-commerce merchants better fight online fraud and reduce losses in online payment transactions. The reason for ThreatMetrix’s selection is the company’s ThreatMetrix™ Cybercrime Defender Platform, which helps merchants protect customer data and secure transactions against fraud, malware, data breaches, as well as man-in-the browser (MitB) and Trojan attacks. The Cybercrime Defender Platform serves as the first perimeter of defense against fraud and malware by offering a shared intelligence solution that analyzes data across the platform – and throughout a global network.

The METAwards competition will take place from 11:15 a.m. – 12:15 p.m. Wednesday, March 28, in the Grand Ballroom at the Wynn Hotel.

Peter Liske, vice president of product management at ThreatMetrix, and Stephen Baumer, CTO of GoPro, will be speaking on “Extreme Fraud Fighting on the Edge” at 9 a.m. March 29 at a joint session of the Conference, which serves as the industry’s leading event on managing payments, preventing online fraud and promoting secure e-commerce.

“To successfully protect the integrity of online transactions, merchants must determine if a device has been compromised and if the transaction is fraudulent,” said Bert Rankin, vice president of marketing, ThreatMetrix. “This requires sophisticated malware detection and intelligent device identification in a time when cybercrime is a growing threat.”

In fact, according to CyberSource, merchants reported losing an estimated $3.4 billion to online fraud in 2011. The same study revealed that device fingerprinting, in particular, is highest on merchants’ “plan to buy” list over the next year.

“We are honored to be recognized by the Merchant Risk Council for contributing an innovative solution that better protects merchants and their customers from cybercrime,” added Rankin.

For more information, visit ThreatMetrix at booth No. 208 at the MRC e-Commerce Payment & Risk Conference. To register for the event, visit the Merchant Risk Council website.

So you like to talk sex…or to talk about sex. Hey, we’re all adults here. No problem. Uh, come to think of it. Yes problem. No, we’re all still adults – well most of us.

The problem is if you’ve been chatting on YouPorn and would prefer not to share that bit of trivia with others – like your husband/wife’s divorce lawyer, the Enquirer, TMZ, E! News, Homeland Security, the PTA and your parole officer.

According to the AP and others, up to one million users had their person information compromised. Or as a Huffington Post post “playfully” expressed it in a double entendre headline, “Up To 1 Million Adult Chat Users’ Email Addresses and Passwords Exposed”.

While the exact number could not be confirmed, security expert Anders Nilsson wrote in his blog that login information for more than a million accounts was made public, the leak probably caused by a programming error that made a debugging log – which collected usernames and passwords – open to public view.

Alexa, which provides free online global web metrics, notes YouPorn is the 98th most popular site in the U.S. and the 96th most popular website in the world. Manwin, which acquired YouPorn in 2011, owns the largest network of adult websites in the world, with more than 60 million visitors each day.

The Huffington Post quotes Kate Miller, a spokesperson for YouPorn’s parent company, emphasizing that YouPorn ”was not hacked, but that its third-party chat service ‘failed to take the appropriate precautions in securing its user data’ and has since been taken offline pending an investigation.’” You might say Ms. Miller accused YouPorn’s third-party chat service of being caught with its pants down.

The bad news for YouPorn chat users doesn’t necessarily stop at being “outed” as a talker. In his blog, security professional, Graham Cluley, points out that some YouPorn users may have utilized the same passwords to logon to other sites. “So, if your YouPorn password is now known, hackers might try that same password against your email address, your PayPal account, your Amazon account, and many other online resources.”

In a Forbes article, Kashmir Hill referred to a tag cloud created by Ashkan Soltani, an independent researcher, showing that some of the most used passwords were in the YouPorn data leak.

In a related story, a person claiming to be a 17-year-old hacker in Morocco said he accessed personal information of users of a Brazzers-operated adult site, which is also owned by Manwin. And, we thought you had to be 21 before you were permitted to hack an adult site – go figure.

There’s a sure way not having personal customer information compromised in a breach. And that’s choosing security solutions that don’t rely on passwords and Social Security numbers to verify user identity. In a word, that’s choosing ThreatMetrix™.

ThreatMetrix offers protection from every type of malware for every type of device. ThreatMetrix’s complete package of online protection provides secure browsing technology that protects smartphones and other devices against malware and stops man-in-the-browser (MitB) attacks. The ThreatMetrix™ Cybercrime Defender Platform is the first industry solution that integrates sophisticated malware detection and advanced device identification technologies in a single, unified platform. This unified approach to cybersecurity is a game changer. By integrating malware detection and device identification with shared, centralized intelligence, ThreatMetrix delivers the unique ability to protect the integrity of entire online transactions. And, it’s done without relying on passwords, user names and cookies to protect its clients. The ThreatMetrix Cybercrime Defender Platform uses anonymous data from the computer, its connection to the Internet and contextual data from a transaction to sniff out cybercriminals of all types, as well as spies and hackers of all types.