Donna's SecurityFlash : Revealed

Free Software Tests for Bot Infections

donna — Fri, 26 Oct 2007 11:37:15 GMT

PineApp has released a free zombie test that can instantly discover whether an organization’s computer network might be an unwitting spamming machine -- a “zombie” or “bot” -- that can send thousands of infected spam messages to other networks—without...(read more)

GMail shakes IMAP out of coma

donna — Wed, 24 Oct 2007 15:33:43 GMT

Google has slipped IMAP support into its GMail service, allowing users to manage their mail on the server and access it using different clients, with the status of their messages maintained. IMAP is a vast improvement over POP3 - the more popular protocol...(read more)

MSDN Tester Center

donna — Mon, 22 Oct 2007 17:38:03 GMT

Is your role that of a software tester? Do you spend your days writing test code for your organization? Do you yearn for a central location where you can discuss practices, tools and testing in general with your peers? MSDN has the site for you. Today...(read more)

Microsoft Lawsuits Help Protect Consumers From Software Piracy

donna — Tue, 18 Jul 2006 17:54:00 GMT

In an unprecedented move by the company, 26 cases filed nationwide, including one against a criminally indicted reseller, illuminate company’s stronger enforcement efforts as part of Genuine Software Initiative. More in http://www.microsoft.com/presspass...(read more)

BitDefender Releases Antirootkit Beta

donna — Thu, 06 Jul 2006 16:03:00 GMT

BitDefender has announced the release of BitDefender Rootkit Removal Tool Beta - a software tool which is designed to detect and remove rootkits hiding on Windows systems. Rootkits are a new class of threats: malicious software packages designed to surreptitiously...(read more)

McAfee reached 200,104 detections

donna — Tue, 04 Jul 2006 17:51:00 GMT

From McAfee Avert Labs Blog : In some hours, we will make available our latest anti virus definitions for McAfee VirusScan. It will be numbered : DAT-4800. With this release version the number of threats detected will exceed 200,000 to reach 200,104 detections...(read more)

WinPatrol v10 now monitors hidden files

donna — Fri, 30 Jun 2006 07:56:00 GMT

The above-image is from our friend --> Bits from Bill and I find it not just a bit but a big bit because WinPatrol v10 now... Monitor Hidden Files files in critical system areas. A new list of Hidden Files is available to help you clean up your machine...(read more)

Agnitum News: Outpost Pro 4.0 with new functionality

donna — Thu, 27 Apr 2006 17:40:00 GMT

Agnitum will release Outpost Pro 4.0 to deliver superior proactive security with the new functionality:

* Anti-Leak Features
* Spyware Signature Analyzer
* Exclusive Application Verification
* 64-bit support
* Additional Improvement

Strider URL Tracer with Typo-Patrol released by Microsoft

donna — Mon, 10 Apr 2006 18:38:00 GMT

"When a user visits a Web site, her browser may be instructed to visit other third-party domains without her knowledge. Some of these third-party domains raise security, privacy, and safety concerns. The Strider URL Tracer, available for download, is a tool that reveals these third-party domains, and it includes a Typo-Patrol feature that generates and scans sites that capitalize on inadvertent URL misspellings, a process known as typo-squatting. The tool also enables parents to block typo-squatting domains that serve adult ads on typos of children's Web sites."

System Requirements
- Requires IE6 and WinXP
- .NET Framework v2

http://research.microsoft.com/URLTracer/

MailWasher integrates with Blue Frog software

donna — Thu, 06 Apr 2006 00:54:00 GMT

Firetrust's MailWasher anti-spam program integrates with Blue Security's Blue Frog software, enabling users to automatically and seamlessly report spam

Blue Security, Inc., developers of the Do Not Intrude Registry solution to eliminate unsolicited e-mail spam, and Firetrust, an anti-spam and e-mail security provider, have joined forces to protect users from unsolicited bulk e-mail. Firetrust's MailWasher® 5.2 anti-spam program integrates with Blue Security's Blue Frog software, enabling users to automatically and seamlessly report their spam to Blue Security. Blue Security's service is provided free of charge to all Firetrust's users.

http://www.bluesecurity.com/blue-frog/News/announcement12.asp

Dr.Web LiveCD released

donna — Fri, 31 Mar 2006 06:00:00 GMT

"Doctor Web, Ltd., a Russian anti-virus software developer, announces the release of public beta-version of new Dr.Web product – Dr.Web LiveCD – a disk for a computer emergency protection.

Dr.Web LiveCD is an image of the boot compact disk which contains all necessary tools to check your computer for viruses without installation of any programs on the hard drive. The check is made by the scanner with the newest anti-virus bases included into the CD. Dr.Web LiveCD allows to check files in all file systems of Windows (FAT, FAT32 and NTFS). "

More info at More info at http://info.drweb.com/show/2780/en

Google Launches Free Hosting Service

donna — Thu, 23 Feb 2006 22:10:00 GMT

Google has launched a beta version of a free hosting service, Google Page Creator.

The service, which is currently limited to existing users of Google's Gmail, allows users to build a web page using a web-based interface. Each site has its own subdomain, with a web address using the structure of http://gmailname.googlepages.com, and users can choose among up to 40 page designs.

The introduction of Google Page Creator follows the recent launch of free hosting products by Microsoft and Go Daddy.

Netcraft

Second Max OS X malware discovered

donna — Fri, 17 Feb 2006 15:58:00 GMT

F-Secure reports a proof of concept worm for Mac OS X 10.4.
Apple Mac OS X users are advised to upgrade to Mac OS X 10.5!

"Today we got a sample of rather interesting case, a Mac OS X Bluetooth worm that spreads over Bluetooth.

OSX/Inqtana.A is a proof of concept worm for Mac OS X 10.4 (Tiger). It tries to spread from one infected system to others by using Bluetooth OBEX Push vulnerability CAN-2005-1333.

If you are using OS X 10.4 make sure that you have latest security patches installed and you are safe from Inqtana.A and any future worm that tries to use same exploit.

Inqtana.A has not been met in the wild and it uses Bluetooth library that is locked into specific Bluetooth address and the library expires on 24. February 2006. So it is quite unlikely that Inqtana.A would be any kind of threat."

Microsoft released Windows Defender Beta 2

donna — Tue, 14 Feb 2006 05:13:00 GMT

Windows Defender Beta 2 Build 1051 available for download
Download from Microsoft

Features
- Windows Defender is part of Windows Vista
- Support for non-admins to runs scans and remove detected threats
- The 'heavy lifting' of Windows Defender is done by a system service
- Streamlined, easier to use UI, with a completely redesigned UI for RTP
- Enhanced Software Explorer views - especially the classification column and network connected programs view
- The ability to update our engine and definitions via WU
- Sample submissions and improve data telemetry to improve future definition updates
- Better signatures that allow WD to detect and remove items that WAS B1 cannot
- Accessibility support (one of our biggest complaint areas in WAS B1)
- Localized Japanese and German builds on the way soon
- Native X64 support

For more information on Windows Defender (Beta 2) please visit the new website at http://www.microsoft.com/antispyware

via Calendar of Updates

www.virus.gr test several anti-virus, anti-spyware and anti-trojan programs

donna — Sun, 12 Feb 2006 16:36:00 GMT

www.virus.gr test several antivirus and anti-trojan programs during December 14 to 22. They used 113334 virus samples without using default settings of an anti-virus, anti-spyware and anti-trojan software.

Result: http://www.virus.gr/english/fullxml/default.asp?id=72&mnu=72

1. Kaspersky Personal Pro version 5.0.390- 99.46%
Kaspersky 2006 beta version 6.0.15.222- 99.46%
2. F-Secure 2006 version 6.10.330 - 96.92%
3. CyberScrub version 1.0 - 96.62%
4. eScan Virus Control version 2.6.522.9 - 95.21%
5. McAfee version 10.0.27 - 94.80%
6. BitDefender version 9 - 90.75%
7. Nod32 version 2.50.41 - 88.79%
8. AntiVir Personal version 6.32.00.51 - 86.55%
9. MKS_VIR 2005 - 86.16%
10. Norton Professional version 2006 - 85.17%
11. F-Prot version 3.16d - 84.96%
12. Dr. Web version 4.33 - 84.68%
13. Panda Titanium 2006 version 5.01.00 - 82.02%
14. Virus Chaser version 5.0a - 79.37%
15. AVG version 7.1.371 - 77.97%
16. PC-Cillin 2006 version 14.00.1341 - 77.84%
17. Avast version 4.6.744 - 76.93%
18. BullGuard version 6 - 74.02%
19. UNA version 1.83 - 69.83%
20. Norman version 5.83.07 - 69.13%
21. Sophos Sweep version 3.99 - 67.76%
22. VBA32 version 3.10.5 - 63.36%
23. Zondex Guard version 5.3.3 - 56.81%
24. Vexira 2005 version 5.001.32 - 51.62%
25. ClamWin version 0.87.1 - 48.45%
26. E-Trust version 7.0.6.7 - 47.84%
27. ZoneAlarm with VET Antivirus έκδοση 6.1.737.000 - 47.70%
28. Digital Patrol version 5.00.08 - 47.02%
29. Ewido version 3.5 - 46.31%
30. V3Pro 2004 - 44.16%
31. Solo 4.0 version 3.1.0 - 42.45%
32. Fire version 2.7 - 38.38%
33. Protector Plus version 7.2.H01 - 38.06%
34. A Squared Personal version 1.6 - 35.31%
35. Quick Heal version 8.00 - 33.76%
36. ViRobot Expert version 4.0 - 32.37%
37. AntiTrojan Shield version 2.1.0.14 - 26.45%
38. PC Door Guard version 4.2.0.35- 26.05%
39. Trojan Hunter version 4.2.908 - 11.53%
40. VirIT version 5.2.53 - 10.33%
41. Tauscan version 1.70.1414 - 7.21%
42. Trojan Remover version 6.4.4 - 7.19%
43. The Cleaner version 4.1.42.52 - 5.97%
44. CounterSpy version 1.5.82 - 5.87%
45. SpySweeper version 4.5.7.642 - 2.99%
46. IP Armor version 5.46.0703 - 2.46%
47. Hacker Eliminator version 1.2 - 1.77%
48. Spyware Doctor version 3.2.2.453 - 1.55%
49. Abacre 1.3 - 0.00%
50. SpyHunter 2.0 - 0.00%

NTT develops secure IM system

donna — Sat, 11 Feb 2006 18:45:00 GMT

There are already a few secure IM systems out there, such as e/pop, and add-ins like IM Secure Pro, but the new stand-alone messaging tool from NTT in Japan looks promising, especially as it uses Transport Layer Security and can connect to AIM et al.

Digital World Tokyo

Microsoft plan to release seven (7) security updates on Feb. 14th

donna — Fri, 10 Feb 2006 09:03:00 GMT

The Microsoft Security Bulletin Advance Notification has been updated. It now outline what they plan to release this month as part of Microsoft's monthly security bulletins. Microsoft is planning to release:

Seven (7) Security Updates

One (1) Microsoft Security Bulletin affecting Microsoft Windows Media Player. The highest Maximum Severity rating for this is Critical. These updates will not require a restart. These updates will be detectable using the Microsoft Baseline Security Analyzer and the Enterprise Scanning Tool.
Four (4) Microsoft Security Bulletins affecting Microsoft Windows. The highest Maximum Severity rating for these is Critical. Some of these updates will require a restart. These updates will be detectable using the Microsoft Baseline Security Analyzer.
One (1) Microsoft Security Bulletin affecting Microsoft Windows and Microsoft Office. The highest Maximum Severity rating for these is Important. These updates will require a restart. These updates will be detectable using the Microsoft Baseline Security Analyzer.
One (1) Microsoft Security Bulletin affecting Microsoft Office. The highest Maximum Severity rating for this is Important. These updates may require a restart. These updates will be detectable using the Microsoft Baseline Security Analyzer.

One (1) Non-security High Priority updates on MU, WU, WSUS and SUS

Microsoft will not release any NON-SECURITY High-Priority Updates for Windows on Windows Update (WU) and Software Update Services (SUS).
Microsoft will release one (1) NON-SECURITY High-Priority Updates on Microsoft Update (MU) and Windows Server Update Services (WSUS).

Microsoft Windows Malicious Software Removal Tool

Microsoft will release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services and the Download Center

Microsoft will host a webcast on the above security bulletins. The webcast focuses on addressing your questions and concerns about the security bulletins. Therefore, most of the live webcast is aimed at giving you the opportunity to ask questions and get answers from their security experts.

Start Time: Wednesday, February 15, 2006 11:00 AM (GMT-08:00) Pacific Time (US & Canada)
End Time: Wednesday, February 15, 2006 12:00 PM (GMT-08:00) Pacific Time (US & Canada)

ZonedOut v3.0

donna — Sat, 04 Feb 2006 17:15:00 GMT

ZonedOut v3.0 is a complete Internet Explorer Security Zone Manager. Manage Zone Sites at the Current User and Local Machine level in style. Version 3.0 includes a help file with General Usage notes, An outline of Commands, and the Freeware License Agreement. It is very important to read this help file.

Change Log:
Version 3.0 2-4-06
-Added ability to operate within the Local Machine Key
-Added help file

Download and read the important notes at http://www.funkytoad.com/zonedout.htm

Laplink created PCdefense

donna — Tue, 24 Jan 2006 04:40:00 GMT

Software provider Laplink, which has been providing PC utility software for over 23 years, has used its expertise to create PCdefense. Laplink's leadership in providing secure file transfer, synchronization, migration, remote control, and other software has now prompted the company to address the dangers facing consumers and businesses alike due to current online PC security gaps.

PCdefense takes a new approach to protecting PC users and their computers. The product addresses deficiencies in conventional and popular security products that are leaving millions of Internet users vulnerable to privacy violations, identity theft, and catastrophic attack.

http://www.laplink.com/products/pcdefense/overview.asp

Microsoft Simplifies Its Software Support Lifecycle

donna — Tue, 10 Jan 2006 18:09:00 GMT

The end of the Microsoft Support Lifecycle will now coincide with the release of Microsoft’s monthly security bulletin release cycle, instead of preceding it, and Exchange Server 5.5 customers are the first to benefit from the change.