Category: blog
-
Another IE zero day exploited
Second DirectShow vulnerability in six weeks labelled ‘extremely critical’. Microsoft has issued an advisory on a serious vulnerability in an ActiveX control in its Internet Explorer browser, the second zero-day alert in the same area of the product in recent months. The issue has been flagged as ‘extremely critical’ by vulnerability watchers at Secunia ,…
-
Keyloggers used to loot US county
$415,000 sneaked from local government funds. A Kentucky county has suffered losses of $415,000 after keylogging malware infiltrated its computer systems, allowing cybercriminals access to sensitive user data which let them syphon cash to accounts in the Ukraine. Custom variants of the Zbot trojan were used to steal the passwords of the county treasurer, and…
-
Serious false positive hits users of old McAfee engines
Batch of system files wrongly flagged as malware, current versions not affected. An update released by McAfee last week resulted in problems around the world, as some vital system files were flagged as malware by updated scanner products, bringing affected systems to a crashing halt. The issue is believed only to have affected users of…
-
VB announces latest VBSpam certification results
Two products achieve top level VBSpam Platinum award. Virus Bulletin has announced the results of its second comparative review of anti-spam products, revealing two top-level awards. Of the nine products tested, two achieved VBSpam Platinum certification awards, while one VBSpam Gold award and two silver-level awards were handed out. VB’s Anti-spam Test Director Martijn Grooten…
-
DKIM usage shows significant growth
US banks urged to use authentication method In a report on its website , Internet giant Cisco states it has been seeing almost 700,000 non-spam messages that contain valid DKIM signatures per week – a number that has almost tripled since a year ago. DKIM (DomainKeys Identified Mail) is an authentication method where the sending…
-
Cyber-security organisations link up to foster collaboration
ASC, NCSA and StopBadware form ‘chain of trust’ initiative. Three major groups focused on issues of cyber security – the Anti-Spyware Coalition (ASC), the US National Cyber Security Alliance (NCSA) and StopBadware.org – have announced a joint initiative to encourage greater trust and cooperation between the various firms, bodies, groups and individuals fighting against the…
-
Gumblar compromise growth continues
Dominant web threat infecting still more vulnerable sites. A major web compromise, estimated by some to represent over 40% of infected web pages last week, has continued growing in size and prevalence at an alarming rate. The threat, commonly dubbed ‘Gumblar’ after a domain used by early versions, but also known as ‘JS/Redir’, is thought…
-
McAfee to acquire Solidcore
Whitelisting firm to be assimilated by security giant. McAfee has announced the acquisition of whitelisting firm Solidcore in a deal reported to be worth a base rate of $33 million, with an additional $14 million on the table if sales targets are reached. Solidcore , a privately owned firm founded in 2003 and based in…
-
AV protection free for aliens
Klingon language scanner given away. After last summer saw malware making its way into space , it seemed like only a matter of time before alien races would need protection from the digital contagions infesting our planet, and security firm Sophos has stepped up to fill the gap. A version of the company’s ‘Threat Detection…