 Security: Threat Alert
Network World's Security: Threat Alert Newsletter, 11/15/07 Multiple patches from Microsoft, Apple By Jason Meserve Today's bug patches and security alerts: Microsoft fixes URL problem in Windows
Microsoft has released its November security updates, fixing a critical Windows bug that has been exploited by online criminals. Microsoft released just two security updates this month, but security experts say that IT staff will want to install both of them as quickly as possible. The MS07-061 update is particularly critical because the flaw it repairs has been seen in Web-based attack code, said Amol Sarwate, manager of Qualys's vulnerability research lab. "This was a zero-day [flaw] that was being used in the wild by hackers," he said. IDG News Service, 11/13/07. Also: Microsoft prepares three Vista updates for November release | Executive Guide The Security Treadmill This Executive Guide offers interviews with leading, real-world security experts who tell you how to get inside users' heads, fight for a bigger security budget, and whether VoIP security issues are overstated or underrated, and much more. Review this informative guide today. Click Here for More Information
| | Microsoft advisories: Vulnerability in Windows URI Handling Could Allow Remote Code Execution Vulnerability in DNS Could Allow Spoofing Microsoft finds holes in Windows 2000 flaw claim
Microsoft has rejected claims by a team of Israeli researchers that a loophole exists in the Windows 2000 random number generator, allowing hackers to retrieve users' personal information. Computerworld, 11/14/07.
********** Apple fixes security bug with iPhone update
Apple has pushed out its iPhone 1.1.2 firmware update to users of its popular mobile phone, fixing a widely publicized bug in the iPhone's browser. Apple made the software available for download last Thursday, but on Monday it began pushing it out automatically to users via its iTunes updating mechanism. The iPhone uses iTunes to scan for security updates once per week, so users will gradually be offered this new firmware over the next seven days. IDG News Service, 11/13/07. Apple advisory Apple patches Safari 3 Beta for Windows
A flaw in the tabbed browsing function of the Safari 3 Beta browser for Windows could be exploited to steal user credentials. An update is available. New Mac OS X v10.4.11 releases multiple flaws
This new update for Mac OS X fixed flaws in Flash Player Plug-in, AppleRAID, BIND, bzip2, CFFTP, CFNetwork, CoreFoundation, CoreText, Kerberos, Kernel, remote_cmds, Networking, NFS, NSURL, Safari, SecurityAgent, WebCore and WebKit. The most serious of the flaws could be exploited to run malicious code.
********** Seven new updates from Gentoo: Pioneers (denial of service) TikiWiki (multiple flaws) Cpio (buffer overflow, code execution) Ruby on Rails (multiple flaws) CUPS (memory corruption, code execution) FLAC (buffer overflow, code execution) Mozilla Firefox, SeaMonkey, XULRunner (multiple flaws)
********** Three new fixes from Mandriva: Mono (buffer overflow, code execution) libpng (multiple flaws) kernel (multiple flaws)
********** Three new patches from Ubuntu: poppler (denial of service, code execution) Emacs (code execution) FLAC (buffer overflow, code execution)
********** Today's malware news: Maxtor hard drives may have shipped with a virus
According to an alert from Seagate, which owns the Maxtor brand: "If you have purchased a Maxtor Basics Personal Storage 3200 product since August 2007 the product may be infected with a virus. Kaspersky Labs, a maker of anti-virus software, has alerted Seagate to the existence of a virus found on at least one Maxtor Basics Personal Storage 3200 product." Catch of the Day
Today's special is Trojan-Dropper.W32/Agent.CPL. We discovered this phish in spam runs promoting a YouTube video. If you click the link in the spam message, it opens a fairly decent copy of YouTube's site. F-Secure Antivirus Research blog, 11/12/07. How to Buy a Fake Jeep - Trojan.Bayrob Dissected
We have previously discussed Trojan.Bayrob without describing the entire attack from end to end. This article will show how the entire scam works from initial contact right through to the actual sale. To start with, take a look at this video for a walk-through of our analysis. Symantec Security Response blog, 11/14/07. Indian news site dispensing malware
The Web site of IndiaTimes, the online news site of the Times Group, one of India's large news and entertainment groups, exposed visitors to malware, according to an advisory Friday by ScanSafe. IDG News Service, 11/12/07. ScanSafe blog: IndiaTimes Hack Leads to Cocktail of Compromise
********** From the interesting reading department: Half a million database servers have no firewall
Think your database server is safe? You may want to double-check. According to security researcher David Litchfield, there are nearly half a million database servers exposed on the Internet, without firewall protection. IDG News Service, 11/14/07. Web attacks slip under the radar
The latest innovations in Web attack kits have forced security researchers to admit that many malicious Web sites are slipping under the radar. Recent Web attack kits such as WebAttacker, MPack and IcePack are using features such as IP tracking and geographic awareness to throw security researchers off the scent, according to a new report from the Honeynet Project. TechWorld, 11/12/07. Microsoft's OneCare 2.0 due next week
Microsoft plans to release a major update to its Windows Live OneCare security suite next week, according to online retailer Amazon.com. IDG News Service, 11/14/07. Editor's note: Starting the week of Nov. 19, subscribers to the HTML version of this newsletter will notice some enhancements to the layout that will provide you with easier and clearer access to a wider range of resources at Network World. We hope you enjoy the enhancements and we thank you for reading Network World newsletters.
|
No comments:
Post a Comment