Someone has been trying to pose as us again, and is sending out an e-mail that looks like this:

From: Account Support
Date: Saturday, August 28, 2010 4:33 AM
To: none
Subject: Account Alert!!!

At this point, you've probably read there are vulnerabilities in Apple's iOS that allow drive-by jailbreaks. And you also know that those vulnerabilities can be used for other drive-by exploits such as malicious attacks.

A World of Warcraft account could be a gold pot for phishers, depending on the player's achievement. In-game items are in demand and could be sold for real cash value, making WoW accounts a favorite phishing target.

An analyst from our Response Lab recently received an e-mail from Blizzard (the creator of WoW) asking for account verification. At a glance, the e-mail appeared to be coming from a legit source. Look at the "From" address. Nothing suspicious here.

One week ago, TNW Apple published a story about Apple's App Store. It seems that some unscrupulous developers have been using compromised iTunes accounts to "App Farm" a profit from junk applications. TNW Apple's story was originally about Thuat Nguyen, but it rapidly expanded.

For the past 12 hours, over 1000 Twitter accounts have been hacked with an unknown method.

The symptoms are always the same; the account is used to broadcast the phrase "Hacked By Turkish Hackers".

Here's a sample search via search.twitter.com.

An SMS scam syndicate has been busted with the arrest of 26 people according to Malaysia's The Star Online.

Our Malaysian lab did some investigation on this topic back in 2007 and managed to record a conversation with one of the phishers.

Introduction

Well, here we are again… After the gang behind Zeus released a new major release of the Zeus Trojan (dubbed Zeus v2), it has received quite a bit of media attention. Our report provides an in-depth look at this new threat from a technical level to provide interested parties detailed information what Zeus v2 does and how it performs its dirty tasks.

For online criminals, it's easy to gain access to stolen bank accounts and credit cards. What's much harder is to empty those accounts without getting caught.

For this, criminals need money mules: individuals who are recruited to move the money. In many cases these individuals have no idea they are working for organized crime. When phishing and banking trojan victims realize they've lost their money, the tracks will lead to the money mules — not the real criminals.

How you given any thought to the monetary value of your virtual commodities? How much is an online game account worth?

For Hannu Ahola, it was 4,000 euros.

Marja, a contributer to F-Secure's Safe and Savvy blog, read about Hannu's case last November in the Helsinki Sanomat (in Finnish).

F-Secure Labs is launching a new feature in Browsing Protection today.

Web security has become increasingly important over the last few years and we've already developed various protection mechanisms to keep our customers safe against exploits, phishing attacks, and drive-by-downloads. However, there's still more we can do against one of the most sinister of attacks.