VB Migration

Tag: exploit

  • 4 out of 5 critical issues fixed on Patch Tuesday

    Expected patch omitted from monthly security update. Microsoft has announced the contents of its monthly ‘Patch Tuesday’ security update release, with four ‘Critical’ and two ‘Important’ fixes pushed out to users of its operating systems and software. A fifth issue, labelled ‘Critical’ in the advance notification released last week, remains open as the expected patch…

  • Yahoo!-owned ad firm serves up trojans

    Infectious flash adverts displayed on major sites. Advertising supplied by ad firm Right Media , a company bought out by web giant Yahoo! earlier this year after an initial investment in October 2006, has been serving up ads which use exploits to drop malware onto vulnerable systems. The ads are thought to have appeared on…

  • YouTube latest Storm hook

    Fake video links aim to pull in yet more victims. The never-ending stream of ‘Storm’ attacks continued over the weekend with a new tactic – the latest spammed email campaign contained links claiming to lead to videos on highly popular entertainment site YouTube . The simple emails follow in the wake of several similar campaigns,…

  • Storm e-card malware keeps on coming

    No end to flood of fake friendly greetings. A further wave of e-cards carrying links to ‘Storm’ malware (various labelled Nuwar, Peacomm, Dorf, Zhelatin) has been hitting inboxes around the world all this week, with no signs of any letup in the deluge. The latest barrage carry a simple message, using spoofed source addresses and…

  • Webcam zero-day in Yahoo! Messenger

    Video chat invites pose vulnerability danger. A zero-day vulnerability has been reported in the webcam module of Yahoo! Messenger , allowing attackers remote access to systems open to the exploit. Little detail has yet emerged on the nature of flaw, which was first uncovered after a post detailing how to exploit it was spotted on…

  • 14 flaws fixed in bumper Patch Tuesday

    Critical remote execution and hijack holes closed. Microsoft ‘s monthly ‘Patch Tuesday’ security bulletin includes nine separate bulletins this month, covering a total of 14 vulnerabilities in the Windows operating system and other Microsoft software, including three flaws in the Internet Explorer browser and one in the Excel spreadsheet software. Other vulnerabilities marked at the…

  • Fake malware infection alerts spammed out

    Latest spam run masquerades as malware warning and fix. The group behind last week’s Fourth of July spams are thought to be behind another campaign this week, with messages claiming to warn of malware infections detected on the recipient’s system, and a trojan waiting to be downloaded if a link to an alleged patch is…

  • Mpack packs punch in Italy

    10,000 sites carrying exploits in large-scale attack. Sophisticated remote-exploit attack kit ‘Mpack’ has been spotted in use in increasingly large numbers throughout Europe, with Italy by far the most seriously affected, in an attack of almost unprecedented scale and virulence. First spotted over the weekend, the number of compromised sites carrying the malicious attacks has…