Published: April 20, 2004
By Jerry Honeycutt
As if spam, viruses, and worms aren't bad enough. Adware and spyware are here to sap the remaining life out of your productivity and privacy. Cookies are harmless in comparison!Adware
is software that displays advertisements on your computer. These are ads that inexplicably pop up on your display screen, even if you're not browsing the Internet. Some companies provide "free" software in exchange for advertising on your display. It's how they make their money.Spyware
is software that sends your personal information to a third party without your permission or knowledge. This can include information about Web sites you visit or something more sensitive like your user name and password. Unscrupulous companies often use this data to send you unsolicited targeted advertisements.
Full article: Windows Security and Privacy
Microsoft teams are investigating a report of a security issue affecting customers using Microsoft Internet Information Services 5.0 (IIS) and Microsoft Internet Explorer, components of Windows.
Important Customers who have deployed Windows XP Service Pack 2 RC2 are not at risk.
Reports indicate that Web servers running Windows 2000 Server and IIS that have not applied update 835732, which was addressed by Microsoft Security Bulletin MS04-011
, are possibly being compromised and being used to attempt to infect users of Internet Explorer with malicious code.
More information: http://www.microsoft.com/security/incident/download_ject.mspx
With Windows XP Service Pack 2 (SP2), Microsoft is introducing a set of security technologies that will help improve Windows XP-based computers' ability to withstand malicious attacks from viruses and worms. These technologies include:
- Network protection
- Memory protection
- Improved email security
- Safer browsing
Together, these security technologies will help make it more difficult to attack Windows XP, even if the latest patches or updates aren't applied. These security technologies together are particularly useful mitigation against worms and viruses. To developers these technologies will have impacts on the applications that they create and the tools they use. This page contains resources to assist developers in dealing with these impacts.
More information: Microsoft® Security Developer Center
had an interview with Steve Ballmer recently. There was also a question about the MVPs
ActiveWin.com: How do you feel the Microsoft Most Valuable Professional (MVP) program has impacted Microsoft customers and technical communities worldwide?
Steve Ballmer: MVPs have a tremendous impact on Microsoft customers and technical communities worldwide, and their passion for technology is inspiring. Their commitment to helping customers optimize their use of Microsoft technologies is key, as is the feedback they provide, which is vital to product development and R&D. When I spoke at this year’s MVP summit, it was the largest ever, with MVPs representing 63 countries. We can’t thank the MVPs enough for their contributions.
Read the entire interview at: ActiveWin: Interviews
To aid IT professionals in planning and testing for the deployment of Windows XP Service Pack 2 (SP2), Microsoft is making available this preview, based on Release Candidate 2 (RC2) of SP2.
For the most up to date information and links to new documents as they become available, please see "Windows XP Service Pack 2 Resources for IT Professionals
Windows XP Service Pack 2 (SP2), currently a Release Candidate in Beta testing, includes significant enhancements to the Windows Firewall component, previously known as the Internet Connection Firewall (ICF).
Windows Firewall is a stateful host-based firewall that discards unsolicited incoming traffic, providing a level of protection for computers against malicious users or programs. To provide better protection for computers connected to any kind of network (such as the Internet, a home network, or an organization network), Windows XP SP2 enables Windows Firewall on all network connections by default.
To download this white paper, visit: Microsoft Download CenterRelated Resources:Manually Configuring Windows Firewall in Windows XP Service Pack 2Windows XP Service Pack 2; Resources for IT Professionals
This is a mass-mailing worm that constructs messages using its own SMTP engine, spoofing the From: address. It also attempts to propagate via P2P, via copying itself to folders on the local system (containing "share" or "upload" in the folder name).
While the original Zafi.A uses only Hungarian, the new Zafi.B spreads in email in English, Italian, Spanish, Russian, Swedish etc. Installation
When executed, the worm copies itself twice to the %windir%\system32 folder using a random name and .EXE and .DLL extension.Example:
For McAfee the minimum DAT file: 4366, which will be released on: 06/16/2004. However, detection and removal is included in their DAILY DAT (beta) files, which can be downloaded from their DAT File Updates
website.Other links: CA: Win32.Zafi.BSophos: W32/Zafi-BF-Secure: Zafi.BSymantec: W32.Erkez.B@mmTrendMicro: PE_ZAFI.B
RealNetworks Inc. has recently been made aware of security vulnerabilities that could potentially allow an attacker to run arbitrary code on a user's machine. While we have not received reports of anyone actually being attacked with this exploit, all security vulnerabilities are taken very seriously by RealNetworks Inc. Real has found and fixed the problem.This issue affects the following Windows products:
- RealOne Player (English)
- RealOne Player v2 (all languages)
- RealPlayer 10 (English, German and Japanese)
- RealPlayer 8 (all languages)
- RealPlayer Enterprise (all versions, standalone and "as configured" by the RealPlayer Enterprise Manager)
published a document on its Developer Network (MSDN), "How to Make Your Web Site Work with SP2"