Browse by Tags

• 960714
• adobe
• adobe acrobat
• adobe reader
• advertising
• antispam
• anti-spam
• Anti-Spyware
• Anti-Virus
• attack
• CA
• CA Anti-Spam
• codec
• CVE-2008-2992
• cyber crime
• fake codec
• fake updates
• internet
• internet explorer
• jsp
• malware
• Microsoft
• MS08-078
• out-of-band
• paypal
• PDF exploit
• phishing
• remote code execution
• rogue security software
• rossano
• Rossano Ferraris
• security
• security update
• spam
• spyware
• user permission
• video codec
• vulnerability

• Urgent: Microsoft out-of-band security update for Internet Explorer

  I don’t post on vulnerabilities often, but this Internet Explorer vulnerability is particularly bad and needs your attention. Do you use Internet Explorer? If yes, I highly recommend patching your system NOW. Microsoft released an urgent security update... Posted Dec 18 2008, 08:30 PM by Benjamin Googins with | with 1 comment(s) Tags: 960714, internet explorer, Microsoft, MS08-078, out-of-band, remote code execution, security update, Vulnerabilities, vulnerability

• Yet Another Exploited PDF in the Wild

  As mentioned in my previous post Prevalence of Exploited PDFs , over the past months CA ISBU has seen consistent, recurring attacks on malware explicitly designed to exploit PDF vulnerabilities – this mainly involves the ' Collab.collectEmailInfo... Posted Nov 10 2008, 10:24 PM by Methusela Cebrian Ferrer with | with no comments Tags: adobe, adobe acrobat, adobe reader, CVE-2008-2992, malware, PDF exploit, Vulnerabilities

• Reshipping scam: a new cyber-criminal trend?

  Are you looking for a new job? What about getting $2000 monthly working at home? You just only need to follow some of our directions and a good compensation is waiting for you… Attractive job? Yes probably, but what is behind it? It seems cyber-criminals... Posted Oct 22 2008, 05:31 AM by Rossano Ferraris with | with 2 comment(s) Tags: antispam, anti-spam, Anti-Spyware, Anti-Virus, CA, CA Anti-Spam, cyber crime, phishing, rossano, Rossano Ferraris, spam, Vulnerabilities, vulnerability

• Compromised websites: a real danger for Internet users

  It seems Internet users do not have any peace anymore. We have witnessed a lot of security issues on the Internet to date but never like this latest period, which can be named -to my personal perspective- as “the age of compromised websites”. The Anti... Posted May 28 2008, 12:23 PM by Rossano Ferraris with | with 2 comment(s) Tags: Anti-Spyware, attack, CA, internet, Rossano Ferraris, security, spyware, Vulnerabilities, vulnerability

• PayPal Closes a Phishing Vulnerability

  Take a close look at this image. You can click to enlarge it. It looks like the PayPal login page, but some things are off. For one, the title is "Login - PayPal Phishing Proof of Concept". That is because this isn't the PayPal login page... Posted Feb 17 2008, 10:44 AM by Stefan Berteau with | with 8 comment(s) Tags: jsp, paypal, phishing, Vulnerabilities, vulnerability

• Internet searches under attack: next in series

  by Rossano Ferraris Another interesting case I would like to bring to your attention is the effect of the so-called “fake-codec” trojans. Here is what I figured out after searching the phrase “daily dawn” on the Google search engine. The screenshot reflects... Posted Jan 15 2008, 11:40 AM by Rossano Ferraris with | with 3 comment(s) Tags: advertising, Anti-Spyware, attack, CA, codec, fake codec, fake updates, rogue security software, Rossano Ferraris, spyware, user permission, video codec, Vulnerabilities

• Be aware of fake Microsoft Updates

  by Rossano Ferraris The other day spammers spread two interesting emails to users throughout the Internet and attempted to make users believe these emails originated from Microsoft. The emails contained an alert that advised users of an undiscovered vulnerability... Posted Nov 27 2007, 08:25 AM by Rossano Ferraris with | with 1 comment(s) Tags: Anti-Spyware, fake updates, spyware, Vulnerabilities

• Ghosts and Ghouls

  A famous quotation from the The Art of War is "If you know both yourself and your enemy, you will come out of one hundred battles with one hundred victories." A malware author following the principles of Sun Tzu might say "If you know both... Posted Oct 31 2007, 04:57 PM by Alain Zidouemba with | with no comments Tags: Anti-Spyware, Anti-Virus, Vulnerabilities

• The Culprit Isn’t Always a Trojan

  The day after I got back from a 16 day trip to Europe, I opened a letter from an unknown company who informed me that information about my bank account had been removed by one of their employees. The employee sold the information to a data broker who... Posted Aug 10 2007, 03:15 PM by Nancy Strutt with | with no comments Tags: Anti-Spyware, Anti-Virus, Vulnerabilities

• Robbery, is your data prepared?

  A chill ran up my spine when I came to my front door and it was already open. A USB cable lay strewn across the doorway. I could hear a stereo speaker eerily buzzing inside. I pushed the swinging door aside and confirmed my fear. I was robbed! After a... Posted Jul 15 2007, 11:00 PM by Benjamin Googins with | with 1 comment(s) Tags: Anti-Spyware, Anti-Virus, Vulnerabilities

• The Security Risk of WiFi Networks

  After trials, US operator T-Mobile USA has released two new handsets that enable users to communicate either over its cellular infrastructure or over WiFi. The technology behind this new service called HotSpot@Home is Generic Access Network (GAN), formerly... Posted Jun 29 2007, 03:26 PM by Alain Zidouemba with | with no comments Tags: Vulnerabilities

• PocketPCMag Promotes Online Gaming...Just Not The Way You'd Think

  It appears that the website pocketpcmag.com has been hijacked. At the time this article is written, webpages for articles dated June 2006 and May 2005 contain JavaScript code that lead to another page and script. The script uses an iFrame to redirect... Posted Apr 11 2007, 12:14 PM by Alain Zidouemba with Tags: Anti-Spyware, Vulnerabilities

• Super Bowl XLI Password Stealer

  A few days shy of one of the most important days of the year for sports fans across America, the website for the venue of Super Bowl XLI had a little surprise for its visitors. Earlier today, dolphinstadium.com, dolphinsstadium.com and proplayerstadium... Posted Feb 02 2007, 08:03 PM by Alain Zidouemba with Tags: Anti-Spyware, Vulnerabilities

• Microsoft December Bulletin Release

  The last monthly Microsoft security bulletin release for 2006 is out today, bringing the total number of bulletins for 2006 to 78. Microsoft published 45 bulletins in 2004, and 58 in 2005, so the upward trend is clear. Open issues Two recently reported... Posted Dec 12 2006, 05:27 PM by Kevin Kotas with | with no comments Tags: Vulnerabilities

• Microsoft November Bulletin Release

  For this month's release, Microsoft has issued 6 bulletins addressing 13 vulnerabilities. Five of the six bulletins have a cumulative rating of Critical and one has a rating of Important. 11 days vs 2 months Patches for the XMLHTTP 4.0 ActiveX Control... Posted Nov 14 2006, 11:47 AM by Kevin Kotas with | with no comments Tags: Vulnerabilities