Aurora Report

ISC had a few readers write in to let us know that the recent PDF/JBIG issues were cropping up on ot ...(more)...

10:02 PM (8 hours ago)

Adobe flash player patch, (Wed, Feb 25th)

A few readers wrote in to point out the fact that adobe released a new flash update today. It ...(more)...

10:02 PM (8 hours ago)

Adobe Acrobat pdf 0-day exploit, No JavaScript needed!, (Wed, Feb 25th)

So there is a brief blog post linked below that highlights the fact that the new adobe PDF vulnerabi ...(more)...

Feb 24, 2009 (16 hours ago)

Microsoft Releases Security Advisory 968272 Relating To A Vulnerability In Office Excel, (Tue, Feb 24th)

This day just keeps getting better and better. ...(more)...

Feb 24, 2009 (21 hours ago)

Gmail Access Issues Early This AM, (Tue, Feb 24th)

Greetings and welcome to Tuesday, Feb 24th. A number of our readers have written in to repo ...(more)...

Feb 24, 2009 (12 hours ago)

Brief: Attacks prompt Microsoft to fix Excel flaw

from SecurityFocus News

Attacks prompt Microsoft to fix Excel flaw

Security News

Feb 24, 2009 (17 hours ago)

What Have We Learned From Past Virus Infections?

from McAfee Avert Labs by Vinoo Thomas

The year 2009 has so far have a been hectic one for anti-virus vendors and IT administrators alike, “thanks” to two prolific malware families: W32/Conficker and W32/Virut. Malware researchers and field engineers have literally burned the midnight oil to ensure networks are protected against these threats.

Some of the organizations that were hit with these infections had the latest Microsoft updates installed but still got infected. During the post-mortem of the outbreaks, one glaring mistake stood out.

Administrators routinely attend to distress calls from users whenever they have an issue with their machines. By habit, the admins tend to log onto the affected workstation using their own accounts—which have domain-administrator privileges. For a moment, let us assume the suspicious user’s workstation was infected with W32/Conficker. What could possibly go wrong from here?

Feb 24, 2009 (15 hours ago)

Malware Riding On The Tides Of The Economic Crisis

from McAfee Avert Labs by Micha Pekrul

A new spam run is on the loose, misusing the global Economic Crisis as its social-engineering vector. Consumers looking for a bargain should take care, since the bad guys exactly want to fool people trying to save some money these days. Spam mails promoting bargains, which could help in the recession, are hitting the inboxes right now.

6:31 AM (15 minutes ago)

Excel Trojan targets unpatched flaws

Another day, another zero-day threat

Virus authors have reportedly created a Trojan that exploits an unpatched vulnerability in a range of versions of Excel.…

12:30 AM (6 hours ago)

Banking app vuln surfaces 18 months after discovery

Patch procrastination bares 24 sites

As a security auditor for 11 years, Adriel Desautels has written his share of vulnerability advisories, but never one like the one he issued Tuesday for a software package made by a small Vermont company called Cambium Group.…

Feb 24, 2009 (14 hours ago)

Adobe Flash vulnerable to remote-execution exploit

Attack of the killer Shockwaves

Updated Already under the gun for a critical hole in its ubiquitous Acrobat Reader, Adobe's security team has pushed out a fix for another serious vulnerability, this one in the company's Flash animation software.…

Feb 24, 2009 (15 hours ago)

Google's DoubleClick spreads malicious ads (again)

Lingering threat still not contained

Google's DoubleClick ad network has once again been caught distributing malicious banner displays, this time on the home page of eWeek.…

Feb 24, 2009 (17 hours ago)

Auction tools firm roots out malware infection

Trojan goes under the hammer at Auctiva.com

Auction tools site Auctiva.com has cleaned up its systems after it became the unwitting participant in a malware attack late last week.…

Feb 24, 2009 (19 hours ago)

Unofficial patch plugs 0-day Adobe security vuln.

Mind the gap

Updated Security researchers have developed an unofficial patch for a zero-day Adobe Acrobat and Reader vulnerability that's become the subject of hacker attacks.…

Feb 24, 2009 (21 hours ago)

Lads from Lagos crack cabinet minister's webmail account

Person in peril scam follows mystery Hotmail hack

Advanced fee fraudsters have broken into the webmail account of UK Justice Secretary Jack Straw to mount an audacious, and potentially politically embarrassing, scam.…

Feb 24, 2009 (19 hours ago)

Rogue Facebook app creates malign buzz

Sting in the tail

A Facebook application using misleading messages spread quickly over the weekend. The application itself did no harm beyond making a mess but may be part of an indirect attempt to attract surfers towards sites promoting scareware packages.…

Feb 24, 2009 (18 hours ago)

Remove a Virus or Other Malicious Infection

from Network World on Security by Lincoln Spector

A particularly malicious program infected Kentuckyearl's computer. He asked the Answer Line forum how to get rid of it.

4:52 AM (1 hour ago)

Laid-off Workers as Data Thieves?

from Network World on Security by Bill Brenner

When the depths of the economic crisis became clear last September, public relations firms started using it as an opportunity to drum up publicity for their security vendor clients. One PR flak even started her e-mail pitch to me with an admission that the IT angle was a stretch.

4:52 AM (1 hour ago)

Gov't CIO survey: Cybersecurity still needs work

from Network World on Security by Grant Gross

Cybersecurity continues to be a top concern among U.S. government CIOs, but agencies are still falling short of achieving good security results, according to a new survey of top government IT officials.

4:52 AM (1 hour ago)

VeriSign: We will support DNS security in 2011

from Network World on Security by Carolyn Duffy Marsan

VeriSign has promised to deploy DNS Security Extensions – known as DNSSEC – across all of its top-level domains within two years.

Feb 24, 2009 (22 hours ago)

WMAT Released - Web Mail Auth Tool For Testing Web Mail Logins

from Darknet - The Darkside by Darknet

WMAT is Web Mail Auth Tool that provide some essential functions for testing web mail logins, written in python with support of pyCurl. How it works? It is very simple, You give WMAT file with usernames, file with passwords, URL of web mail app and chose pattern for attack. Patterns are XML files that define post/get fields, [...]
Read the full post at darknet.org.uk

Feb 24, 2009 (13 hours ago)

Hackers Exploit Excel 'Zero-Day' Flaw

Microsoft confirms critical bug as attacks target Asian government offices, corporations.

Feb 24, 2009 (18 hours ago)

Are Alternative PDF Readers Vulnerable to Acrobat Exploit?

Symantec discovered a vulnerability in Adobe Acrobat Reader that can be exploited by specially targeted Trojans.

Feb 24, 2009 (22 hours ago)

Attackers Targeting Unpatched Vulnerability in Excel 2007

Microsoft's Excel spreadsheet program has a 0-day vulnerability that attackers are already exploiting on the Internet...

Other News

'Plug Computers' May Web-Enable Hard Drives

Marvell Technology touts a computer that is smaller and cheaper than a netbook.

Feb 24, 2009 (22 hours ago)

VMware Adds to Cloud Strategy