Hackers are exploiting the vulnerabilities of PDFs. And these PDFs are not caught by virus scanners. A company may be infected with multiple viruses every week and have no means of protection. More effort needs to be made by companies to protect themselves against these kinds of attacks.

In the first quarter of 2009, malicious PDF files made up 56% of all exploits tracked by ScanSafe. That figure climbed above 60% in the second quarter, over 70% in the third and finished at 80% in the fourth quarter.”

PDF exploits are usually the first ones attempted by attackers,” said Mary Landesman, a ScanSafe senior security researcher, referring to the multi-exploit hammering that hackers typically give visitors to malicious Web sites. “Attackers are choosing PDFs for a reason. It’s not random. They’re establishing a preference for Reader exploits.”

via Rogue PDFs account for 80% of all exploits, says researcher.

Interesting behind-the-scenes look at Western Digital — a leader in the data storage and hard drive industry.

When you buy a car, you look under the hood. Given the critical importance of hard disk storage in all of our lives, we thought you might want a peek under that hood, too. Now that Western Digital is in the business of breaking new capacity records the latest Caviar Green was the first drive to hit 2TB, for example, we jumped at the chance to take a first-ever, unrestricted tour of its California R&D facilities. This is the place where magnetic technology of the 1950s meets the nano- and quantum-level technologies of the current decade.

via Great Mysteries To Be Revealed… – Picture Story – Tom’s Hardware.

Yet more evidence that the forensics community needs to be focusing on mobile devices. Join viaForensics’ Open Source Android Forensics project.

Computer scientists at Rutgers University this week are demonstrating ways that rootkits can attack new generations of smart mobile phones.

The researchers… are showing how a rootkit could cause a smartphone to eavesdrop on a meeting, track its owner’s travels, or rapidly drain its battery to render the phone useless — all without the user’s knowledge.

“Smartphones are essentially becoming regular computers,” says Vinod Ganapathy, assistant professor of computer science in Rutger’s; School of Arts and Sciences. “They run the same class of operating systems as desktop and laptop computers, so they are just as vulnerable to attack by [malware].”

via Researchers: Rootkits Work Nicely On Smartphones, Thank You – wireless security/Security – DarkReading.

Application security may still have a ways to go, but Open Source is showing promise…

Despite the relatively gloomy picture of developers still missing the mark initially on security, there were some bright spots in the report: Open-source software isn’t as risky as you’d think, and financial services organizations and government agencies tend to have more secure applications from the get-go; more than half of their apps passed as acceptable in the first submission to testing, according to Veracode’s report.

“The conventional wisdom is that open source is risky. But open source was no worse than commercial software upon first submission. That’s encouraging,” Oberg says. And it was the quickest to remediate any flaws: “It took about 30 days to remediate open-source software, and much longer for commercial and internal projects,” he says.

via State Of Application Security: Nearly 60 Percent Of Apps Fail First Security Test – DarkReading.

A recent article on Law.com (part one of a seven part series) discusses the importance of legal holds for the preservation of electronically stored information (ESI) and other documents.

Why are courts placing so much emphasis on this ministerial step in preservation of issuing a written litigation hold? It appears that patience is running thin for lost ESI in federal court. More importantly, ignorance of litigation hold requirements is no excuse. Also, the days of he-said-she-said litigation hold arguments are numbered. Courts want to see a transparent and credible process by simply looking at a few documents such as the written hold notice, distribution list, follow-up interview reports or logs, as examples.

As articulated by Judge Scheindlin in Pension Committee v. Banc of America, courts definitely do not want to wade through stacks of motions papers and days of hearings to determine if preservation efforts were sufficient to prevent the destruction of ESI and other documents. As a result, it is imperative for an organization to have in place a litigation hold policy and adequate procedures necessary to avoid going down the litigation “detour” of discovery sanctions motions.

via Law.com – Step 1 for Legal Holds: Trigger Events.

Mobile phones these days are essentially computers and are increasingly a magnet for criminal activity. Corporations and individuals need take seriously the threat against these devices. And e-forensic investigators need to learn new techniques and devise tools to combat this threat. (Hint: Take a look at viaForensics’ work on iPhone and Android forensics).

The increasing use of mobile devices for banking, money transfer, and payment is increasing the risk that criminals will target these devices for financial gain.

More banks are providing customers with the ability to access their accounts using mobile devices. In a number of cases, criminals have gained access to bank accounts by tricking cell phone providers into issuing SIM cards associated with the customer’s account…

In addition, fraudulent mobile banking applications have emerged for Android devices that attempt to steal personal financial information…

These risks will continue to grow in the coming years as more mobile devices are used to execute financial transactions…

via Identity Theft Coming to a Mobile Device Near You.

FOR IMMEDIATE RELEASE

Contact:
Andrew Hoog
Chief Investigative Officer
viaForensics
Phone: +1 312-283-0551
http://viaforensics.com/contact-us

viaForensics announces release of Open Source Android Forensics application

viaForensics has released a beta version of its Open Source Android Forensics application supporting all Android devices.

Chicago, Feb 25, 2010 – viaForensics, a computer and mobile forensics firm, has released a beta version of its Open Source Android Forensics application, which allows forensics examiners to export data from an Android device for use by law enforcement and forensic investigators.

The beta version of the application, developed under the direction of lead architect Derek Guardiola, can be downloaded to an Android device enabling examiners to then export data, including browser history, call logs, contact methods, organizations, people and short message service (text messages), to a CSV file on an SD Card.

The development of this application on an open source platform, viaForensics believes, will support the further development of an unparalleled Android Forensics application which can be used free of charge. Developers can easily create plug-ins which will extract additional data from Android devices. Developers interested in participating in the application can contact viaForensics. The project source code and apk files can be downloaded from Google Code: http://code.google.com/p/android-forensics/

As the foremost experts in Android Forensics, viaForensics has developed techniques and training programs preparing law enforcement and forensic providers with the resources to successfully investigate Android devices. viaForensics is also in development on a complimentary reporting application for the extracted data. For more information, visit the viaForensics web page on Android Forensics.

About viaForensics

viaForensics is an innovative computer/mobile forensic and e-discovery firm focusing on providing proactive services to corporations, law enforcement and law firms. Andrew Hoog is a computer scientist, computer/forensics researcher and Chief Investigative Officer at viaForensics.

###