Alerts
4:16 PM (2 hours ago)
TA09-069A: Microsoft Updates for Multiple Vulnerabilities
from US-CERT Technical Cyber Security Alerts
Microsoft Updates for Multiple Vulnerabilities
1:56 PM (5 hours ago)
MS09-008 – Important: Vulnerabilities in DNS and WINS Server Could Allow Spoofing (962238)
from Microsoft Security Bulletins
Bulletin Severity Rating:Important - This security update resolves two privately reported vulnerabilities and two publicly disclosed vulnerabilities in Windows DNS server and Windows WINS server. These vulnerabilities could allow a remote attacker to redirect network traffic intended for systems on the Internet to the attacker’s own systems.
1:56 PM (5 hours ago)
MS09-007 - Important: Vulnerability in SChannel Could Allow Spoofing (960225)
from Microsoft Security Bulletins
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in the Secure Channel (SChannel) security package in Windows. The vulnerability could allow spoofing if an attacker gains access to the certificate used by the end user for authentication. Customers are only affected when the public key component of the certificate used for authentication has been obtained by the attacker through other means.
1:56 PM (5 hours ago)
MS09-006 – Critical: Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)
from Microsoft Security Bulletins
Bulletin Severity Rating:Critical - This security update resolves several privately reported vulnerabilities in the Windows kernel. The most serious vulnerability could allow remote code execution if a user viewed a specially crafted EMF or WMF image file from an affected system.
Security News
2:06 PM (5 hours ago)
Microsoft Security Bulletin Summary for March 2009
from Microsoft Security Content: Comprehensive Edition
Revision Note: Bulletin Summary published.Summary: This bulletin summary lists security bulletins released for March 2009.
2:06 PM (5 hours ago)
MS09-008 – Important: Vulnerabilities in DNS and WINS Server Could Allow Spoofing (962238) - Version:1.0
from Microsoft Security Content: Comprehensive Edition
Severity Rating: Important - Revision Note: Bulletin published.Summary: This security update resolves two privately reported vulnerabilities and two publicly disclosed vulnerabilities in Windows DNS server and Windows WINS server. These vulnerabilities could allow a remote attacker to redirect network traffic intended for systems on the Internet to the attacker’s own systems.
2:06 PM (5 hours ago)
MS09-007 - Important: Vulnerability in SChannel Could Allow Spoofing (960225) - Version:1.0
from Microsoft Security Content: Comprehensive Edition
Severity Rating: Important - Revision Note: Bulletin published.Summary: This security update resolves a privately reported vulnerability in the Secure Channel (SChannel) security package in Windows. The vulnerability could allow spoofing if an attacker gains access to the certificate used by the end user for authentication. Customers are only affected when the public key component of the certificate used for authentication has been obtained by the attacker through other means.
2:06 PM (5 hours ago)
MS09-006 – Critical: Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690) - Version:1.0
from Microsoft Security Content: Comprehensive Edition
Severity Rating: Critical - Revision Note: Bulletin published.Summary: This security update resolves several privately reported vulnerabilities in the Windows kernel. The most serious vulnerability could allow remote code execution if a user viewed a specially crafted EMF or WMF image file from an affected system.
2:06 PM (5 hours ago)
Microsoft Security Advisory (968272): Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution
from Microsoft Security Content: Comprehensive Edition
Revision Note: V2.1 (March 5, 2009): Removed Open XML File Format Converter for Mac from the affected software listed in the Overview section. The Open XML File Format Converter for Mac is not affected by the vulnerability described in this advisory.Summary: Microsoft is investigating new public reports of a vulnerability in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file. At this time, we are aware only of limited and targeted attacks that attempt to use this vulnerability.
12:54 PM (6 hours ago)
Proxy Attack Stupid Buzzword Contest
from CGISecurity - Website and Application Security News by Robert A.
I just released a paper on an attack vector against certain transparent proxy architectures via the use of client side plugins with sockets support. If you've been reading this site for awhile you can probably tell that I frown upon new industry buzzwords and often make fun of new silly sounding...
4:26 PM (2 hours ago)
Democrats.org Blog Spam Contributes to Google Search Poisoning
from McAfee Avert Labs by Craig Schmugar
The other day I blogged about Google Trends being abused to serve malware. The attackers were not only targeting the most popular search terms, but also manipulating Google’s page rankings to appear high up on search results. Shortly thereafter it appeared that Google took action against that attack. In deed a Google spokesperson confirmed that idea.
Today, Brian Krebs blogged on a separate story, but mentioned that while searching for a related term (pifts.exe), Google returned a poisoned link high on the results list. After doing a little searching I discovered that the relevant term did seem to appear on Google’s top 100 search terms for a brief period. However, the other terms I checked on Google Trends did not yield high ranked poisoned links as before. But, I did come across a potential source for the page rank manipulation aspects of these attacks; www.democrats.org, which is “Paid for by the Democratic National Committee “, and linked to from www.barackobama.com.
4:04 PM (3 hours ago)
The long road to Reader and Flash security Nirvana
Critical Adobe updates not easy to come by
Updated Adobe on Tuesday patched a hole in its ubiquitous Acrobat Reader program that allows attackers to remotely install malware without requiring unsuspecting users to do anything more than browse to the wrong website.…
2:04 PM (5 hours ago)
Conspiracy theories fly around Norton forum 'Pifts' purge
EXE phones home?
Conspiracy theories are running rampant in the absence of a clear explanation of why Symantec deleted threads expressing concern about a file called pifts.exe from its Norton support forums.…
10:02 AM (9 hours ago)
No investigation after malware is found on parliamentary PC
Hill to climb for new e-crime unit
Police did not investigate when Alun Michael MP reported a PC in his office was attacked with malware, the former minister has revealed.…
10:02 AM (9 hours ago)
Eset false alarm puts system files on remand
Kryptik cock-up
Slovakian anti-virus firm Eset has confirmed that a misfiring virus definition update wrongly labelled Windows system files as infected with malware.…
9:02 AM (10 hours ago)
Russian politician: 'My assistant started Estonian cyberwar'
Dubious DDoS lols
A junior Russian politician has admitted that a Russian government official might have played some part in the infamous cyberattacks against Estonia two years ago - sort of.…
4:50 AM (14 hours ago)
Trademarks as keywords for targeted ads?
from Network World on Security by M. E. Kabay
I've been doing research for my annual review of intellectual property law and have had a great deal of fun learning about all sorts of interesting new developments. Here's a case that might interest readers who work in commercial organizations with valuable trademarks but that raises unexpected questions about freedom of speech.
4:50 AM (14 hours ago)
Business size and NAC needs
from Network World on Security by Tim Greene
As NAC matures, it is becoming clear that the needs of smaller businesses and those of enterprises call for different solutions.
4:50 AM (14 hours ago)
Inexpensive scanners can 'fingerprint' paper, researchers say
from Network World on Security by Robert McMillan
Think two blank sheets of paper are the same? Look closer.
4:50 AM (14 hours ago)
Companies get checklist for complying with PCI standard
from Network World on Security by Jaikumar Vijayan
The organization responsible for administering the Payment Card Industry Data Security Standard is offering new guidance to companies on how to focus their PCI DSS compliance efforts so as to more quickly them in position to meet the rules on protecting credit and debit card data.
12:36 PM (6 hours ago)
France, Ireland to launch e-crime police training programs
from Network World on Security by Jeremy Kirk
France and Ireland are hoping the European Commission will back a plan to create an academically accredited cybercrime training program for law enforcement.
12:36 PM (6 hours ago)
Germany ratifies cybercrime treaty
from Network World on Security by Jeremy Kirk
Germany has become the latest country to ratify the only international treaty concerning computer crime.
12:36 PM (6 hours ago)
Symantec's Altiris 7 boosts Mac, Linux PC management
from Network World on Security by Eric Lai
Symantec Corp. Tuesday announced Version 7.0 of its Altiris client and server management suite. The upgrade, the first released since Symantec's acquisition of Altiris almost two years ago, includes new features for remotely deploying and managing Mac and Linux desktop PCs and, on the server side, improved performance monitoring of physical and virtual machines.
12:36 PM (6 hours ago)
Steps to Communicate Security's Value to Non-security People
from Network World on Security by Joan Goodchild
The biggest challenge security teams face in their organization is one of perception, according to Michael Santarcangelo, founder of Security Catalyst, a New York-based consultancy focused on changing the way people protect information.
4:50 AM (14 hours ago)
Internet Explorer 8: Security Features for Enterprise Users
from Network World on Security by Shane O'neill
Over the past year, Internet Explorer has lost market share while browsers such as Mozilla's Firefox, Apple's Safari and even the nascent Google browser Chrome have made incremental gains.
4:50 AM (14 hours ago)
Mozilla Patches Fastest. NOT!
from Network World on Security by Jeff Jones
If you take away one thing from reading this, I hope that you take away skepticism. The Mozilla team focuses on security and that is a relatively rare thing in the software industry--and I heartily applaud them for their intent and efforts. I wish more would follow their example. However, I think the vulnerability picture for Firefox may not be quite as rosy as some would wish.
4:50 AM (14 hours ago)
Safari's Security Reputation Takes a Beating
from Network World on Security by Tom Kaneshige
Apple's Safari browser has taken some shots lately over its security capabilities compared to those of other popular browsers-but this doesn't mean Safari is a sieve.
1:00 PM (6 hours ago)
VideoJak - IP Video Security Assessment Tool
from Darknet - The Darkside by Darknet
What is VideoJak? VideoJak is an IP Video security assessment tool that can simulate a proof of concept DoS against a targeted, user-selected video session and IP video phone. VideoJak is the first of its kind security tool that analyzes video codec standards such as H.264. VideoJak works by first capturing the RTP port used in a [...]
Read the full post at darknet.org.uk
6:51 PM (39 minutes ago)
Adobe Acrobat 9.1 released, (Tue, Mar 10th)
from SANS Internet Storm Center, InfoCON: green
Gilbert and Robert wrote in to point to the eagerly awaited Adobe Acrobat fix that was released toda ...(more)...
2:13 PM (5 hours ago)
March black Tuesday overview, (Tue, Mar 10th)
from SANS Internet Storm Center, InfoCON: green
Overview of the March 2009 Microsoft patches and their status. # ...(more)...
9:02 AM (10 hours ago)
conspiracy fodder: pifts.exe, (Tue, Mar 10th)
from SANS Internet Storm Center, InfoCON: green
Several readers wrote in with samples of a file PIFTS.exe that seems to be related to a Norton updat ...(more)...
8:01 AM (11 hours ago)
Browser plug-ins, transparent proxies and same origin policies, (Tue, Mar 10th)
from SANS Internet Storm Center, InfoCON: green
First, just a quick reminder: Same origin policy is a way a browser keeps methods from being ...(more)...
6:51 PM (39 minutes ago)
TinyURL and security, (Tue, Mar 10th)
from SANS Internet Storm Center, InfoCON: green
Roseman wrote in with a pointer to a techrepublic blog that points out the well known danger to the ...(more)...
4:49 PM (2 hours ago)
Gmail Down; Outage Could Last 36 Hours for Some People
from PC World Latest Technology News
Gmail is having an outage on Tuesday that may not be fully fixed until late Wednesday.
4:49 PM (2 hours ago)
Lawmaker: New Cybersecurity Regulations Needed
from PC World Latest Technology News
The U.S. Congress should explore new cybersecurity regulations, a lawmaker says.
4:49 PM (2 hours ago)
Microsoft Patches Windows DNS, Kernel Flaws
from PC World Latest Technology News
Microsoft has fixed flaws in its Windows kernel, SChannel and DNS server software.
4:49 PM (2 hours ago)
Microsoft Patches Windows DNS, Kernel Flaws
from PC World Latest Technology News
Microsoft has fixed flaws in its Windows kernel, SChannel and DNS server software.
12:24 PM (7 hours ago)
Hackers Update Conficker Worm, Evade Countermeasures
from PC World Latest Technology News
Computers infected with the Conficker worm are being updated with a new variant that sidesteps an industry effort to sever the link between the worm and its hacker controllers.
12:24 PM (7 hours ago)
Internet Explorer 8: Security Features for Business
from PC World Latest Technology News
Microsoft hopes to return IE to its past glory with Internet Explorer 8.
10:24 AM (9 hours ago)
McAfee Funds E-crime Training in Europe, US
from PC World Latest Technology News
Security vendor McAfee will give grants to a European and a U.S. organization to better train law enforcement and legal...
Other News
2:02 PM (5 hours ago)
Scratch Lowers Resistance to Programming
from Wired Top Stories by Dylan Tweney
MIT Media Lab develops a new programming language called Scratch that makes it easy for kids to develop programs that interact with things in the real world.
7:00 PM (39 minutes ago)
Meet Mikogo: a New Online Collaboration Tool
from PC World Latest Technology News
So if you've ever had to work together with a phalanx of co-workers dispersed across time and space, you may have run into...
12:42 AM (19 hours ago)
HP Expands Virtual Storage Offerings
from PC World Latest Technology News
HP introduced new virtual storage arrays and software aimed at helping enterprises cut costs.
No comments:
Post a Comment