Archive for the ‘Security News’ Category:
Microsoft Security Bulletin for February 2010
This is Official Microsoft Security Bulletin Summary for February 2010, At the time of this post, some of these link were not live!
Critical (5)
Microsoft security bulletin MS10-006
Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251)
http://www.microsoft.com/technet/security/…n/ms10-006.mspx
Microsoft security bulletin MS10-007
Vulnerability in Windows Shell Handler Could Allow Remote Code Execution (975713)
http://www.microsoft.com/technet/security/…n/ms10-007.mspx
Microsoft security bulletin MS10-008 More »
Related Terms:
microsoft security bulletin virut -iPad security risks
Apple’s much hyped iPad tablet may come tightly locked down but the device is still likely to be affected by many of the security issues that affect the iPhone, as well as some of its own.reports By John Leyden.
Graham Cluley, senior technology consultant at Sophos, commented: “The iPad, from the sound of things, will be as locked down as the iPhone. Hackers will no doubt try to jailbreak it. But the main threat would be phishing and browser exploits.”
Malware related risks may also trouble the iPad. The only risks to affect the iPhone to date have relied on a very small but well publicised number of worms (e.g. ikee) that exploited default passwords and open SSH shells on jailbroken iPhones. More »
Why Google was using IE6
Google’s problems in China are multiplying faster than business opportunities in the People’s Republic. Why search engine giant was using IE6 remains a mystery [ A Report From John Leyden @ theregister.co.uk]
Fresh analysis has revealed the sophistication of malware used in attacks against Google and other hi-tech firms originating from China last month.
It’s now known that the attack took advantage of a zero-day vulnerability in Internet Explorer – CVE-2010-0249 – to drop malware onto compromised systems. After backdoor components (malicious Windows library files) are loaded, pwned systems attempt to contact command and control (C&C) servers. More »
Prevent your email address from becoming a target to spammers
Spam email is unsolicited email, usually with a commercial focus. Other names for Spam include "Unsolicited Commercial Email" (UCE) or perhaps more accurately, "Unsolicited Bulk Email" (UBE). Spammers will send thousands, and in some cases millions, of emails to try to lure people into buying their products, clicking on "affiliate links".
Most people who have an email address for any significant amount of time receive “spam email”, and the longer you maintain a particular email address the more spam you are likely to receive. Spammers create lists of email addresses by collecting them from websites, buying them from other businesses, and even by guessing possible names on popular email hosts such as Yahoo! mail and Hotmail. It is possible to buy large email lists for relatively small amounts of money. Once you start receiving spam from a particular email address, it becomes effectively impossible to remove your name from the lists.
* Do not post your e-mail address in a straight form on the Internet. If you need to post your e-mail address, post it in a disguised form.
* Never respond to spam. If you reply, even to request removing your e-mail address from the mailing list, you are confirming that your e-mail address is valid and the spam has been successfully delivered to your inbox, not filtered by a spam filter, that you opened the message, read the contents, and responded to the spammer. Lists of confirmed e-mail addresses are more valuable to spammers than unconfirmed lists, and they are frequently bought and sold by spammers. More »
Related Terms:
zombie zone -Tags: trojan
Alert-”Your Computer Is Infected”
Its A Fake Message from Rogue Programs, These “threats” are nonexistent and are designed to persuade computer users to click on the ad, which promises to provide software to resolve the risks. The software, known as rogue antivirus programs or rogue anti-spyware, is fraudulent. Many people opt to purchase this software because the ads look authentic. It is an understandable reaction to want to protect your computer. However, opting to purchase rogue antivirus programs will result in a loss of money and may cause some issues with your system’s performance. There are many variations of the fake message alert and a host of rogue programs that distribute them. Some common ones include Antivirus 2007, 2008 and 2009, XP Antivirus, Antivirus System Pro, Win32/InternetAntivirus, Home Antivirus 2009, Spyware Detect, and WinPC Defender, among others. Remember, If you know which programs you have installed to protect you against threats, then you will be able to distinguish real from fraudulent warnings.
What is Net-Worm.Win32.Kido.ih
According to virustlist, Net-Worm.Win32.Kido.ih is a network worm spreads via local net-works or removable storage media(USB-disc,etc). When it copies itself to remote computers, the worm creates a temporary file with a random extension. The program itself is a Windows PE DLL file. The worm components vary in size from 155KB – 165KB. It is packed using UPX.
The worm then launches an HTTP server on a random TCP port; this is then used to download the worm’s executable file to other computers. More »