Fantastic news from the Hover blog:
We’ve partnered up with Google to cut down 10+ of the steps needed for the domain registration portion of the signup process to just three steps. Now, you can not only verify, but also transfer your email in just a couple of clicks. The best part – you’re no longer required to leave the Google App to complete domain registration!
via Hover integrates with Google Apps | Hover Blog.
This is quite nice and very handy, although you’d only need it during initial setup.
However, if you’re an Apps re-seller and set up domains and accounts for people frequently, it will save a lot of time.
Talk about an easy exploit:
Two researchers who set up doppelganger domains to mimic legitimate domains belonging to Fortune 500 companies say they managed to vacuum up 20 gigabytes of misaddressed e-mail over six months.
The intercepted correspondence included employee usernames and passwords, sensitive security information about the configuration of corporate network architecture that would be useful to hackers, affidavits and other documents related to litigation in which the companies were embroiled, and trade secrets, such as contracts for business transactions.
via Researchers’ typosquatting snarfed 20GB of Fortune 500 e-mails.
These attacks still work, because people still click the links or open the attachments and lack the appropriate counter-measures.
Dubbed “Here you have” because of its e-mail subject line, the worm struck organizations such as NASA and the Walt Disney Co. In some ways, the worm is a throwback to attacks such as the Anna Kournikova virus, which security researchers at Symantec noted actually had the same subject line when it appeared in 2001.
“This used to be a massive problem when e-mail worms were at their peak, and this re-emergence shows that you can never assume old tried and true methods won’t be used again,” said Bradley Anstis, vice president of technology strategy at M86 Security.
The body of the e-mail sometimes contained the message “This is The Document I told you about, you can find it Here,” followed by a malicious link that appears to be a PDF document but is actually a .SCR file. The e-mail then instructs the recipient to “please check it and reply as soon as possible.” Other versions of the worm have the subject “Just For you” and “This is The Free Dowload [sic] Sex Movies,you can find it Here” in the body.
via ‘Here You Have’ Worm Floods E-Mail Inboxes – Security from eWeek.