November 18, 2005 - Posts
Using SpywareBlaster to protect against Sony's rootkit (shared by a Calendar of Updates member which he found from another forum). Microsoft Security Response Center (MSRC) would like to remind users that they can block any specific ActiveX control from running in Internet Explorer themselves. So if you are using SpywareBlaster, you can use it's feature - Custom Blocking. If not, follow the guide mentioned by MSRC
Users of Microsoft's Windows AntiSpyware Beta 1 received an update to its definitions today. It's definitions 5777. According to Microsoft's Anti-Malware team, definitions 5777 will detect WinNT/F4IRootkit (that's their name for the rookit that have been shipped as part of hot "Sony’s XCP software"). The Malicious Software Removal Tool will have the detection for this rootkit too and it will be released as scheduled - 2nd Tuesday next month.
On November 16, 2005, Macromedia Inc. released patches for Macromedia Flash Media Server, the Macromedia Breeze Communication Server/Live Server and the Macromedia Contribute Publishing Server. The Macromedia Flash Media Server bug, which affects versions 1.0 through 1.5, causes crashes or instability because the server does not sufficiently validate some RTMP data. The Macromedia Breeze Communication Server/Live Server, part of Macromedia's Web conferencing and communications suite, has a denial-of-service hole in versions 4.x through 5.x. The vulnerability in the Macromedia Contribute Publishing Server, affecting versions prior to 1.11, can allow hackers to access sensitive information due to a "weak encryption algorithm being used to encrypt user password in connection keys that use shared FTP login credentials." The flaws are rated "moderately critical" by security alerts aggregator Secunia Inc. -- eWeek
According to security vendor iDefense, hackers are expected to release 65% more keylogging programs in 2005 than in 2004. The jump is partly due to growth in online banking, but can also be blamed on the growing world-wide market for stolen personal information and credit-card numbers. Keyloggers are often distributed via e-mail and included in messages that contain spyware or phishing attempts. The average cost of a successful keylogging attack is about $4,000 per victim and takes an average of 81 hours to be resolved. -- ComputerWorld
A trial version of the Trusted Download Program produced by online privacy watchdog group Truste, and supported by America Online, Yahoo, CNET Networks, Verizon and Computer Associates will be launched early in 2006. The internet service providers will be given a list of applications certified Truete. The program's goal is to certify downloads and consumers can get friendly and non-invasive software". -- CNET
A weakness has been reported in Safari, which can be exploited by malicious people to trick users into visiting a malicious website by obfuscating URLs displayed in the status bar. The problem is that the browser fails to show the correct URL in the status bar if an image control has been enclosed in a hyperlink and uses a form to specify the destination URL. This may cause a user to follow a link to a seemingly trusted website when in fact the browser opens a malicious website.
Affected Software: Safari 2.x
Solution: Do not follow links from untrusted sources.
http://secunia.com/advisories/17618/