This blog is moving

I'm moving to:

http://www.securitybalance.com
http://www.paesdebarros.com.br/blog/

Changing blog

I'm setting a new blog, "Security Balance". If you are reading this by RSS, please set your feed reader to:

http://feeds.feedburner.com/SecurityBalance

The new website is http://www.securitybalance.com

Another bot prediction that comes true

I've just read this on Network World:

Botnet-controlled Trojan robbing online bank customers

Well, take a look at my presentation in BH Europe this year (March). This was there, as well as the method being used by the malware from that article:

"The Trojan has the ability to use a man-in-the-middle attack, a kind of shoulder-surfing when someone logs into a bank account. It can inject a request for a Social Security number or other information, and it's very dynamic. It’s targeted for each specific bank." (Don Jackson, SecureWorks)

So, another prediction from that presentation has just been confirmed.