Do you hate having to remember different passwords for every site you sign up for? Google sympathizes. They're working on a way to let you keep far fewer passwords in your life on the web. It's actually something that sites like Plaxo and Facebook already do: allowing you to register for a site by sharing information from an existing account (like your Gmail, for example).

The information never gets stored by the new site you're signing up for, so using your existing credentials is both convenient and secure. Plus, you don't get one of those annoying email messages asking you to confirm your account. (Is it just me, or do those things get marked as spam most of the time, anyway?)

Google's working on some code that will let companies offer this service - it's called "hybrid onboarding," technically - to their users. It's not going to have an immediate impact, but I hope this will cause more sites to get on board with hybrid onboarding and ditch the annoying signup processes and endless passwords.

[via AppScout]

These days, cybercriminals seem to have one thing on their mind: your money. Gone are the days where a virus would simply infect your .exe files and make your system hard - or damn near impossible - to use.

It's bad enough that the bulk of the malware and malicious web scripting we're confronted with on daily basis wants to trick us into installing rogue antivirus software - which tries to trick users into paying to register the useless scareware. Now, they're moving up to hostage taking.

Yep. Digital hostages could be the next big thing in cybercrime, whether it be your iPhone or your important .DOC files.

Ars Technica reported recently about one hacker who exploited vulnerabilities in jailbroken iPhones to gain access, alter the lockscreen to display the warning in the screenshot, and ask for €5 to leave users alone. He also promised to provide a link to instructions on how to prevent this particular hack.

In this particular case, the hacker had a change of heart and has now posted said removal instructions at no charge. If we hear about one, chances are good there are dozens more - many of whom won't show this kind of courtesy after-the-fact.

iPhone aren't the only thing under attack. Computer Associates have discovered a new ransomware variant called LoroBot which targets a PC user's data - specifically doc, xls, zip, mp3, txt, docx, xlsx, and others. Once a system has been infected, the malware then goes to work encrypting those files so you can no longer access them.

The only way to gain access again? Why, to pay the piper, of course. $100 will get you the necessary file to undo the encryption. Fortunately, CA has also provided a tool to do it for free (download here) if you've been victimized. Rogue antivirus apps were once fairly uncommon and now they're everywhere. Could ransomware be the next big thing?

One thing is for sure: if you're running Windows you're using the most popular OS in the world - and because of its massive market share, it's the number one target for malware. Make sure your system is fully updated and you're running a good antivirus app.

I make no bones about the fact that I'm a fan of Malwarebytes. It's easily the best free malware removal app in my toolkit, and it's the first program I turn to when cleaning up an infected system. The Malwarebytes team has worked incredibly hard since their application burst onto the scene, and countless technicians and PC users appreciate the phenomenal work they've done.

Now, for the past few weeks I've been reading numerous blog posts about how IOBit is giving away their security software for free. The offer was timed to coincide with the launch of Windows 7, and has popped up in my Google Reader several times since.

How do the two relate?

A few weeks ago, Malwarebytes staffers came across an interesting post on the IOBit forums. The post detailed a keygen for Malwarebytes and reported it using the same name MBAM reports. The crew dug further and found more evidence of copycat detections.

To confirm their suspicions, a fake signature implanted in the Malwarebytes database.

"The final confirmation of IOBit's theft occurred when we added fake definitions to our database for a fake rogue application we called Rogue.AVCleanSweepPro. This "malware" does not actually exist: we made it up. We even manufactured fake files to match the fake definitions. Within two weeks IOBit was detecting these fake files under almost exactly these fake names."

If this is proven to be true, I certainly hope that Malwarebytes is successful in prosecuting IOBit. For another company to use a tactic as underhanded as this - let's face it, it's outright theft - to build a product and label it as their own is appalling.

IOBit are, of course, defending themselves in their forums. They respond:

"We have never used the database of any other companies. And hope Malwarebytes stop spreading malicious rumors for hyping itself[...]A legal letter will be released later, which will prove that there is no problem with Intellectual Property Rights.

For the sake of avoiding dispute and possible problems, we have deleted all disputed items in our database temporarily, and have updated IObit Security 360's database."

Nevertheless, IOBit's reputation is taking a beating now on WebOfTrust - Malwarebytes supporters have been all too happy to head over and vote down IOBit's trust, privacy, and vendor reliability ratings.

WordPress has become a victim of its own popularity. The blogging-based content management system powers a huge amount of websites, and has become a target for hackers. Site hacks have been around for a long time, but recently they seem to have evolved.

In the past hackers would gain control of a site just to prove that could, then typically post a quasi-incoherent message on the site to prove their hacking prowess and illiteracy. Now hackers have become more advanced, and hacking has become financially motivated. Hacks include embedding links (some hidden, some not) for the purposes of gaming search engines, and instead of crowing about their conquest, hackers are now trying to hide and cover their tracks as much as possible.

This means that site owners are losing their confidence that their sites have not been compromised. With recent highly publicized exploits that allowed hackers to take control of out-of-date WordPress installations, it became even more important to make sure your site is clean.

If you're running a WordPress site on your own server, one step you can take to make sure that it is clean is to install and run the WordPress Exploit Scanner plugin. Beware, the exploit scanner is very thorough, and it will likely report a lot (and I mean a LOT) of false positives. It essentially reports any hiding behavior, which some of the plugins on your site might be doing for very normal reasons.

Even with the false-positives, the WordPress Exploit Scanner is a useful tool in any blogger's toolbox.

In AV Comparative's most recent report on malware removal, MSE was the only free antivirus rated Advanced+. That ranking placed it alongside big names like Norton, Kaspersky, and F-Secure. Security Essentials also beat out technician favorite ESET, which managed only an Advanced rating.

It's also worth noting that only three antivirus apps - Norton 2010, eScan, and Security Essentials - scored marks of good or better in removal of malware and removal of leftovers. So not only has MSE beaten free competitors like AVG (version 8.5 tested, not 9.0), Avira, and Avast, it also posted test scores equal to or better than a dozen antivirus programs you'd have to pay for.

Well done, Microsoft!

[via Ars Technica]

Warning! There's a Twitter phish-fest going on at the moment. Hopefully you'll read this before you become an ill-fated Twit...!

If you receive a DM that looks something like this:

hi. this you on here? http://blogger.djh****.com

Do not use the link!

It will redirect you to a copycat Twitter log-in page, and then forward you to a fake fail whale -- and then later, when you least expect it, your account will have its avatar replaced with a naked girl that seems to be enjoying a deliciously unsymbolic and in-your-face penis. You will then, unwittingly, tell your friends all about fantastic dating websites that you've had a lot of success with recently. I think you'll all agree that's a fate even worse than a celebrity not responding to your well-thought-out and poignant tweet.

[via Sophos]

If you didn't ask to have your Facebook password reset, think twice before opening an email that looks like it's from Facebook's support team. A lot of these fake password-reset emails have been going out lately, and the attachments they contain can take over your computer and add it to the Bredolab botnet, according to ZDnet.

Your first clue that these emails are sketchy is that they contain a zipped .exe file, which is a horribly insecure and inefficient way to send an account password. Although the mail looks like it comes from support@facebook.com, the address is just spoofed to fool you. The botnet behind this attack, Bredolab, is reportedly involved in some large-scale spamming and identity theft activities, so don't risk letting your computer become part of it.

[via ZDNet]

Yesterday, I showed you a pain-free way to get rid of excess software that comes bundled on new systems and replace it with high-quality free programs. Those of you who want a bit more choice than what Ninite offers will probably do your installs manually -- so let's take a look at some antivirus options for your Windows 7 system.

There are plenty of pay-for programs you probably already about, like Norton, McAfee, Kaspersky and Trend Micro. I'm going to focus on the free options -- of which there are many!

Hey, you just paid for an OS or a whole new computer -- why not save a few bucks if you can?

Fortunately, Microsoft knows this. After all, Security Essentials is based on Forefront - their enterprise antivirus product. And in the enterprise it's common practice to install updates manually.

To that end, Security Essentials definitions can be downloaded as a standalone executable from Microsoft. They're available from the Malware Protection Center where you'll also find the current defs for Forefront and Defender.

Download the .exe yourself, run it, and your Security Essentials is up-to-date! Better yet, set up an app like Ketarin to handle scheduled downloads for you and save yourself a step.

[via Raymond.cc]

Social networking sites like Twitter and Facebook can already be dangerous places. Things like short links and bogus messages from friends with compromised accounts put unsuspecting and under-prepared users at risk.

Now, AVG's security researchers have discovered a new threat on Facebook. For the first time, they've found hacked Facebook apps. According to AVG, the apps are being used to launch drive-by attacks which target vulnerabilities in Adobe Reader and Adobe Flash. AVG reports finding seven hacked apps, but they admit there could well be more.

First things first: if you're not running up to date versions of either of those, download them right now. Here's the link to Flash and here's one for Reader. Using anything but the most current version could leave you open to attack.

The attack works like this. Visit the Facebook page for any of the hacked apps and click to install. Instead of the normal process, the page will try to push a poisoned PDF document to your machine. Once open, the infected PDF infects your system with a bogus antivirus application - which are often notoriously difficult to remove.

I've mentioned fake antivirus programs like these before on Download Squad. If you've been infected, you can try the tools listed on this post to clean up your system.

To keep from getting infected in the first place, make sure you:

• have a good antivirus program installed and that it is fully updated
• update browser plugins like Java, Flash, and Adobe Reader as soon as you are prompted to do so
• install any critical Windows updates that are available
• check comments on new apps before you install - others may have already been infected and left a post on the wall!