bits and bytes : Security

Storm Worm not done yet

tashi — Sun, 04 May 2008 22:31:00 GMT

Despite the article at computerword.com April 22, 2008 reporting that Microsoft’s Malicious Software Removal Tool (MSRT) had made Storm pretty insignificant, the botnets appear to be preparing for another attack, possibly targeting around Mother’s Day...(read more)

Debate with rogue antispyware maker

tashi — Sun, 04 Nov 2007 20:55:00 GMT

I have been following a discussion of iedefender at CastleCops which is five pages long so far. The topic started with: "Attached below is a copy of IEdefender (hxxp://www.iedefender.com/) a new rogue software." To which the vendor replied:...(read more)

DirectRevenue-Best Offers, shuts down

tashi — Thu, 25 Oct 2007 20:25:00 GMT

Posted on DirectRevenue's home page and giving no reason for the sudden closure. "Best Offers and Direct Revenue have ceased operations. To service legacy consumers we are maintaining this page of uninstall instructions, an uninstall software...(read more)

Microsoft Security Intelligence Report, third volume

tashi — Wed, 24 Oct 2007 03:12:00 GMT

From the Webpage portal: "The Microsoft Security Intelligence Report (SIR) provides an in-depth perspective on the changing threat landscape including software vulnerability disclosures and exploits, malicious software (malware), and potentially...(read more)

VirusRay, latest Zlob rogue anti-spyware program

tashi — Tue, 23 Oct 2007 19:53:00 GMT

The Zlob Trojan Downloader typically poses as audio or video codecs, required to be installed on your computer so you can watch or listen to certain media. VirusRay is just the latest infection that downloads and installs rogue anti-spyware programs and...(read more)

Microsoft August 2007 Bulletin Release Advance Notification

tashi — Thu, 09 Aug 2007 21:35:00 GMT

Scheduled August bulletin release day, August 14, 2007. The Microsoft Security Response Center (MSRC) "Next Tuesday, we’re currently planning to release nine security bulletins: Six Microsoft Security Bulletins affecting Microsoft Windows with a...(read more)

Warning to WordPress & Joomla theme users

tashi — Sun, 05 Aug 2007 17:19:00 GMT

Weblog Tools Collection posted an alert regarding a site called Templatebrowser dot com, which provides direct downloads to public blog themes. Apprantly the themes have been modified to include an additional functions.php file, calling home after a theme...(read more)

Ben Edelman Charges Zango is in Violation of FTC Agreement

tashi — Wed, 01 Aug 2007 05:02:00 GMT

Among the allegations: "Widespread Zango “ActiveX” Installations without Unavoidable, Prominent Disclosure of Material Terms (XP SP1 and Earlier). Details. Widespread Zango Banner-Based Installations without Unavoidable, Prominent Disclosure of Material...(read more)

Firefox v2.0.0.6 released

tashi — Tue, 31 Jul 2007 05:08:00 GMT

From an administrator account, start Firefox > Help > Check for Updates. Or download: http://www.mozilla.com/firefox/all.html "Release Date: July 30, 2007 Security Update: The following security issues have been fixed: MFSA 2007-27 Unescaped...(read more)

TRUSTe finds Rogue Distributor Exploiting Security Flaws

tashi — Mon, 23 Jul 2007 05:04:00 GMT

TRUSTe Blog: RelevantKnowledge Removed from TDP White List for Three Months "After notification by several sources, TRUSTe investigated a distributor installing comScore’s RelevantKnowledge on consumer machines through a security exploit." "The...(read more)

Critical Vulnerabilities in FireFox, Thunderbird and Opera

tashi — Thu, 19 Jul 2007 18:06:00 GMT

Secunia Advisory SA26095 Mozilla Firefox Multiple Vulnerabilities: http://secunia.com/advisories/26095/ Description: "Some vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to conduct spoofing and cross...(read more)

Storm Worm Attacks

tashi — Mon, 09 Jul 2007 16:06:00 GMT

The subject matter varies in the attempt to get people to download the bad exe file. Sample: "Virus Activity Detected! Dear Customer, Our robot has detected an abnormal activity from your IP adress on sending e-mails. Probably it is connected with...(read more)

Spam Trojan Uses Generated Yahoo and Hotmail Accounts

tashi — Mon, 09 Jul 2007 07:25:00 GMT

Security company BitDefender reports a new threat, dubbed Trojan.Spammer.HotLan.A, using automatically generated Yahoo and Hotmail accounts to send out spam email. “There are only about 500 or so new accounts being created every hour,” commented head...(read more)

Microsoft Security Bulletin Advance Notification for July 2007

tashi — Fri, 06 Jul 2007 01:52:00 GMT

The Microsoft Security Response Center (MSRC) "Next Tuesday, we’re currently planning to release six security bulletins: · Three Microsoft Security Bulletins affecting Microsoft Windows with a Maximum Severity rating of Critical. These updates will...(read more)

Exchange and Security MVPs Q&A chat

tashi — Mon, 18 Jun 2007 22:34:00 GMT

TechNet: http://www.microsoft.com/technet/community/chats/default.mspx Exchange Server Q&A with the MVP Experts "Exchange MVPs will be on hand to answer your questions about Exchange Server, Outlook and Exchange for Small Business Server. Chat...(read more)

OPERATION BOT ROAST

tashi — Wed, 13 Jun 2007 22:53:00 GMT

FBI Press Release: Over 1 Million Potential Victims of Botnet Cyber Crime "Today the Department of Justice and FBI announced the results of an ongoing cyber crime initiative to disrupt and dismantle “botherders” and elevate the public’s cyber security...(read more)

FBI Takes Down Botnet

tashi — Wed, 13 Jun 2007 19:50:00 GMT

ABC News reports the FBI has identified 1 million computer addresses that have been hacked by criminals who hijack other people’s computers, turn them into servers and use them to send out massive amounts of spam and spyware. http://www.abcnews.go.com...(read more)

Yahoo! Messenger critical vulnerabilities

tashi — Fri, 08 Jun 2007 23:10:00 GMT

Yahoo! Webcam ActiveX Controls Multiple Buffer Overflows "eEye Digital Security has discovered two critical vulnerabilities in ywcupl.dll (version 2.0.1.4) and ywcvwr.dll (version 2.0.1.4) included by default in all releases of Yahoo! Messenger 8...(read more)

Microsoft Security Bulletin Advance Notification for June 2007

tashi — Fri, 08 Jun 2007 02:47:00 GMT

Microsoft planned to implement a change with June’s ANS release on Thursday, June 7, which can now be seen at TechNet. http://www.microsoft.com/technet/security/bulletin/ms07-jun.mspx The Microsoft Security Response Center (MSRC) http://blogs.technet...(read more)

Zango's tango

tashi — Thu, 07 Jun 2007 17:40:00 GMT

Technology & Marketing Law Blog: Zango’s Busy Litigation Docket PC Tools & Kaspersky Responses to Zango Lawsuit Zango Also Loses Kaspersky TRO Motion Sunbelt Blog: Zango TRO against PC Tools denied Vitalsecurity: Rogue Security Applications Being...(read more)