wifiphone - Security

Rogue ad hits the New York Times website

a@b.com (nina) — Mon, 14 Sep 2009 13:55:29 +0800

New York Times' Web site is struggling with problems created by "unauthorized advertising, but it is unknown which appear on the site, and whether the website had been compromised.

Rogue ad warns readers that his computer may be infected with a virus and redirects it to a site that is willing to offer anti-virus software, according to a note published in the newspaper media & advertising section:
...

Hacker pleads guilty to ID theft nets millions

a@b.com (nina) — Mon, 14 Sep 2009 13:43:43 +0800

28-year-old Miami man who made millions of hacking computer networks and steal credit card numbers, pleaded guilty Friday and agreed to lose more than 2,7 million dollars in restitution, as well as condos, jewelry, and a car.
...

Mozilla patches holes in Firefox 3.5, 3.0

a@b.com (nina) — Thu, 10 Sep 2009 16:10:57 +0800

Mozilla on Wednesday released two new versions of its browser, Firefox 3.5.3 and 3.0.14 that the patch three critical security holes and fix various other errors.

Upgrading can be extracted through check "Help" menu option for updates, or can be downloaded directly.
...

Microsoft: Windows 7 does not affect the latter lack

a@b.com (nina) — Wed, 09 Sep 2009 20:50:31 +0800

Microsoft issued a formal recommendation on the safety end of Tuesday announced zero-day flaw in Windows Vista and Windows Server 2008. Nevertheless, the software giant also said that the error does not affect the final version of Windows 7, in contrast to previous reports.
...

Microsoft Issues Critical Windows patch

a@b.com (nina) — Wed, 09 Sep 2009 20:43:24 +0800

Microsoft issues critical ispraaMicrosoft on Tuesday issued five critical updates related as part of its monthly Patch Tuesday release.

While the issues affect various versions of Windows in different ways, Microsoft says, none of the issues apply to the final version of Windows 7, which Microsoft wrapped up in July.
...

Windows 7, Vista zero-day lack of reported

a@b.com (nina) — Wed, 09 Sep 2009 20:42:00 +0800

Microsoft said Tuesday that it is investigating reports of zero-day vulnerability affecting 7 and Windows Vista.

Error in Windows 7 may allow an attack that would lead to a critical system failure, or "blue screen of death", according to surveys by Laurent Gaffie.
...

Norton calls quorum for 2010

a@b.com (nina) — Wed, 09 Sep 2009 20:40:33 +0800

Symantec is betting that the program to a large extent the behavior of future Battlefront security and makes a great leap in its 2010 list of security programs with behavioral engine is called a quorum.

Debuting Wednesday, as the main Norton AntiVirus 2010 and more reliable Norton Internet Security 2010 will use the quorum, which Symantec calls on advanced network security, based both on traditional malware, and the reputation of both files and software.
...

Microsoft reports of attacks using the vulnerability of IIS

a@b.com (nina) — Sat, 05 Sep 2009 17:57:09 +0800

Vulnerability in Microsoft software for web sites housing is being used for a "limited attacks on the servers it is running, the company said Friday.

Microsoft opened the Internet Information Services (IIS) vulnerability on Monday and Friday, said he was still working on a security update to fix this problem. At the same time, the Advisory contains instructions for a workaround, including disabling the various elements of vulnerable FTP (File Transfer Protocol) Service to upload and download files.
...

Symantec: Written code allows VoIP espionage

a@b.com (nina) — Thu, 03 Sep 2009 13:56:11 +0800

Along with keyloggers that track what you type, now we have to worry about malicious software that listens to our voice over Internet protocol calls.

Symantec security blog on Thursday unveiled a new Trojan horse, Tojan.Peskyspy ", that records VoIP communications, specifically targeting Skype". Postings are based on an analysis of Karthik Selvaraj Symantec, said that "its existence is not because of any problem from the Skype", but that Skype can be targeted "just because it has such a large install base."
...

Microsoft issues Advisory server deficiency

a@b.com (nina) — Wed, 02 Sep 2009 18:25:43 +0800

Microsoft on Tuesday released a security advisory for a Web server flaw that was made public on Monday.

The flaw affects some versions of the products Microsoft Internet Information Services, but also to be used it requires the user must have the FTP functions enabled. Disadvantage could allow an attacker to take on this server.
...