Browse by Tags
All Tags »
Alerts (
RSS)
Sorry, but there are no more tags available to filter with.
Sun has released updates for Java SE. These updates address multiple vulnerabilities in Java Runtime Environment (JRE), Java Web Start, Java Management Extensions (JMX), JDK, and Java Runtime Environment Virtual Machine. These vulnerabilities may allow...
US-CERT is aware of deficiencies in the DNS protocol. Implementations of this protocol may leave the affected system vulnerable to DNS cache poisoning attacks. If an attacker can successfully conduct a cache poisoning attack, they may be able to cause...
Websense® Security Labs™ ThreatSeeker™ Network has discovered a substantial number of spam messages utilizing a reliable social engineering trick that lures users to download a Microsoft critical security update. Details ...
US-CERT has received reports of new phishing activity, some of which has been linked to Storm Worm. The latest activity is centered around messages related to the recent earthquake in China and the upcoming Olympic Games. This Trojan is spread via an...
Apple has released Mac OS X v10.5.3 and Security Update 2008-003 to address multiple vulnerabilities. These vulnerabilities affect a number of applications, libraries and the kernel. Exploitation of these vulnerabilities may allow an attacker to execute...
In a preventive measure designed to protect customers, ALWIL Sotware would like to draw attention to the fraudulent selling of their products via several web sites, many advertising via the Google Ad Words program. The web sites are mostly offering keys...
In the past, US-CERT has received reports of an increased number of phishing scams that take advantage of natural disasters. Due to recent natural disasters, US-CERT would like to remind users to remain cautious when receiving unsolicited email that could...
US-CERT is aware of a public report indicating that a phishing scam is circulating. This scam is related to the U.S. Internal Revenue Service economic stimulus rebate and arrives via email messages that appear to be from the IRS. The messages include...
US-CERT is aware of public reports of a vulnerability in Apple QuickTime. By convincing a user to open a specially crafted QuickTime file, an attacker may be able to execute arbitrary code. This vulnerability may have several attack vectors, such as visiting...
Description : A vulnerability has been reported in multiple Adobe products, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when handling BMP files. This can...
US-CERT is aware of public reports of a spear-phishing attack circulating via email messages that claim to be federal subpoenas. These messages appear to be legitimate because they can contain very specific information about the message recipient. The...
US-CERT is aware of a report of a buffer overflow vulnerability affecting ClamAV. This heap-based buffer overflow vulnerablity may allow an attacker to execute arbitrary code on an affected system. US-CERT recommends that users do not scan PE files from...
US-CERT has seen reports of an email attack targeting Microsoft's April Security Bulletin release cycle. This attack arrives via email messages with the subject line "Critical Patch Released: Microsoft Security Bulletin MS08-64738." These...
Experts at SophosLabs ™, Sophos's global network of virus, spyware and spam analysis centers, have advised the Apple Macintosh community not to panic following the discovery of another Trojan horse for the Mac OS X platform. Instead, Apple Mac lovers...
A critical vulnerability in VMware Inc.'s virtualization software for Windows lets attackers escape the "guest" operating system and modify or add files to the underlying "host" operating system, the company has acknowledged. As...
Websense(R) Security Labs(TM) has received reports of a Trojan keylogger aimed at the users of Habbo, a popular social networking site for teenagers. As of last month, Habbo's entry on Wikipedia said that over 8 million unique visitors access Habbo's...
Sunbelt Software is reporting a virulent and convincing fake greeting card site and associated malware . Like most malware these days, it is delivered through a rogue web site. The link to the site is in an e-mail spammed out to victims as a greeting...
Folks who are tapping into their tunes via the Yahoo Music Jukebox music player may find themselves at risk of allowing a malicious attacker into their computer, according to a security advisory issued Monday by Secunia . The "extremely critical"...
Mozilla's head of security yesterday confirmed a bug in Firefox that could be used by attackers to scout out a system prior to mounting a more thorough assault. The flaw, said Window Snyder, Mozilla's chief security officer, is in the browser's...
With consumers finally getting wise to phishing attacks, scammers are hitting the phones. The U.S. Federal Bureau of Investigation 's Internet Crime Complaint Center (IC3) warned Thursday that so-called "vishing" attacks are on the rise...
More Posts
Next page »