Unless you’re brand new to computers, the recent news that an Internet Explorer hole was exploited in China-based attacks against Google Gmail users and dozens of high-tech companies was no surprise.
Lately, malware has increasingly targeted holes in media players such as Adobe’s Flash Player and Reader PDF software, so the Chinese attack on IE is [...]
Perhaps Google’s announcement that Chinese cyber attackers went after human rights activists’ Gmail accounts has made you skittish about just how private your own messages are on the Google e-mail service.
Well, if you want to take a significant step in keeping prying eyes away from your electronic correspondence, one good encryption technology that predates Google [...]
Another iPhone worm has been spotted in the wild.
Unlike the previous exploitation, which merely changed a jailbroken iPhone’s wallpaper to a picture of Rick Astley of “Rickrolling” fame, this new threat allows hackers to steal sensitive information.
According to security firm Sophos, which wrote about the exploitation after a Dutch ISP spotted it late last week, [...]
A number of fraudulent emails have gone out recently purporting to be from Intuit. The latest one claims to be from the QuickBooks Update Center and contains the subject line “Intuit Secure Update.” This email is not legitimate. Ignore it and delete it.
For reference, the text of the fraudulent email is as follows:
From: QuickBooks Update [...]
When the President of the United States warns schoolchildren to watch what they say and do on Facebook, you know that we’ve got a problem…and it’s not one limited to the U.S.’s borders, either. People everywhere are mindlessly over-sharing on the world’s largest social network, without a second thought as to who’s reading their posts [...]
Microsoft Security Bulletin MS09-043 – Critical
Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (957638)
Published: August 11, 2009 | Updated: October 27, 2009
Version: 2.0
General Information
Executive Summary
This security update resolves several privately reported vulnerabilities in Microsoft Office Web Components that could allow remote code execution if a user viewed a specially crafted Web page. [...]
Lavasoft has updated its popular malware and spyware detection and removal tool Ad-Aware. Rather than a dramatic redo, version 8.1 builds on the improvements made in the previous version. The new version is faster, has better removal abilities, and introduces a behavioral detection engine.
Called Genotype, Ad-Aware’s heuristic-based behavioral detection engine isn’t explicitly called out in [...]
According to tech news site Neowin, an anonymous user posted usernames and passwords for over 10,000 Windows Live Hotmail accounts to web site PasteBin, including accounts on email domains like @hotmail.com, @msn.com, and @live.com. Neowin verified that the accounts are genuine, and that most appear to be based in Europe. Ars Technica reports, more specifically, [...]
Researchers at security firm Finjan have discovered details of a new type of banking Trojan horse that doesn’t just steal your bank log in credentials but actually steals money from your account while you are logged in and displays a fake balance.
The bank Trojan, dubbed URLZone, has features designed to thwart fraud detection systems which [...]
A security researcher has said there is a zero-day vulnerability affecting Windows 7 and Vista.
The flaw in Windows 7 could allow an attack which would cause a critical system error, or “blue screen of death,” according to researcher Laurent Gaffie.
Gaffie wrote in his blog that the flaw lies in a Server Message Block 2 (SMB2) [...]
