Search This Blog

Thursday, June 23, 2005

Analysts Warn of Possible TCP Port Attack



*********************************************************************

___________________________ Sponsors ________________________________

Wi-Fi Planet Conferences & Expos 2005
_____________________________________________________________________

*********************************************************************
http://esecurityplanet.com/
Thursday, June 23, 2005

eSecurityPlanet is part of the Earthweb network

All newsletters are sent from the domain "internet.com." Please use this domain name (not
the entire "from" address, which varies) when configuring e-mail or spam filter rules, if
you use them.

*********************************************************************

*********************************************************************
TRENDS
*********************************************************************

1. Analysts Warn of Possible TCP Port Attack
Analysts have detected a surge in sniffing on TCP Port 445 -- the port associated with a
recently patched Microsoft flaw.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,6y07,fooz,co7e,jjlo
------------------------------------------------------------
2. Quick Fix in Linux Kernel
The potential issue could have led to DoS attacks against the new 2.6.12 kernel.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,cr24,b0cg,co7e,jjlo
------------------------------------------------------------
3. 6/23: Mytob-FX Worm Uses Own Engine
W32.Mytob.FX@mm is a mass-mailing worm that uses its own SMTP engine to send an email to
addresses that it gathers from the compromised computer.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,16vd,bbu1,co7e,jjlo
------------------------------------------------------------
4. 6/23: Mytob-GV Worm Links IRC Server
Mytob.GV is a worm with backdoor characteristics that connects to an IRC server in order
to receive control commands, which allow the affected computer to be remotely
administrated.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,dpl,2qap,co7e,jjlo
------------------------------------------------------------
5. 6/23: Rbot-AGG Worm and IRC Trojan
W32/Rbot-AGG is a worm and IRC backdoor Trojan for the Windows platform.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,m5fm,i91y,co7e,jjlo
------------------------------------------------------------
6. 6/23: Mytob-BU a Mass-Mailing Worm
W32/Mytob-BU is a mass-mailing worm with backdoor functionality.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,6pbv,l11o,co7e,jjlo
------------------------------------------------------------
7. 6/23: Kelvir-BK Worm Spreads Via IM
Similar to other WORM_KELVIR variants, Worm_Kelvir.BK propagates via MSN Messenger, a
popular instant messaging application.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,k99d,74s8,co7e,jjlo
------------------------------------------------------------
8. 6/23: Mytob-HD Worm Sends Copy
Similar to other WORM_MYTOB variants, Worm_Mytob.HD propagates by sending a copy of
itself as an attachment to an email message, which it sends to target recipients using
its own Simple Mail Transfer Protocol (SMTP) engine.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,btv1,4s4f,co7e,jjlo
------------------------------------------------------------
9. 6/23: Tdiserv-A Worm OKs Remote Access
W32.Tdiserv.A is a worm that allows unauthorized remote access to the compromised
computer.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,d0mn,3157,co7e,jjlo
------------------------------------------------------------
10. 6/23: Qdens-B Worm Executes Files
W32.Qdens.B is a worm that downloads and executes remote files.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,h8nv,1vqi,co7e,jjlo
------------------------------------------------------------
11. 6/23: Mytob-FU a Mass-Mailing Worm
W32.Mytob.FU@mm is a mass-mailing worm that opens a back door and lowers security
settings on the compromised computer.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,21wv,83by,co7e,jjlo
------------------------------------------------------------
12. 6/23: Semapi-A a Non-Destructive Worm
Semapi.A is a worm without destructive effects that spreads via email in a message with
variable characteristics and across networks.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,7k5e,fj42,co7e,jjlo
------------------------------------------------------------
13. 6/23: Adware-FasterXP an Unwanted Program
Adware-FasterXP is not a virus or a Trojan.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,d5se,6qnk,co7e,jjlo
------------------------------------------------------------
14. 6/23: Kelvir-AP an IM Worm
W32/Kelvir-AP is an instant messaging worm for the Windows platform.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,akwn,ddzd,co7e,jjlo
------------------------------------------------------------

*********************************************************************

/-------------------------------------------------------------------\

Wi-Fi Planet Conference & Expo 2005 - The World's Largest
Wi-Fi Business Event - coming to a city near you! These are the
definitive events of the Wi-Fi industry, where business users
gain the knowledge they need to make strategic buying decisions
and where the industry charts it future direction. Don't miss these
must attend events that are held in San Jose, Tokyo, and Baltimore.
Register today! www.jupiterevents.com

\--------------------------------------------------------------adv.-/

*********************************************************************
PRODUCTS AND SERVICES
*********************************************************************

*********************************************************************
VIEWS
*********************************************************************

1. Updating our Thinking on Software Updates
eSecurityPlanet columnist Ken van Wyk looks at the issue of software updates --
particularly the lack there of for mobile devices.
http://nl.internet.com/ct.html?rtr=on&s=1,1pk4,1,ll7n,mfcu,co7e,jjlo
------------------------------------------------------------

*********************************************************************
Earthweb.com's Family of Online Services for IT Insiders
*********************************************************************

IT MANAGEMENT
http://itmanagement.earthweb.com/
HARDWARE & SYSTEMS
http://hardware.earthweb.com/
NETWORKING & COMMUNICATIONS
http://networking.earthweb.com/
WEB DEVELOPMENT
http://webdeveloper.earthweb.com/
SOFTWARE DEVELOPMENT
http://softwaredev.earthweb.com/

Get the latest technical tips, tools, and resources via Earthweb's
extensive collection of free e-mail newsletters!

*********************************************************************

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Advertising: If you are interested in advertising in our newsletters, call
Claudia at 1-203-662-2863 or send email to mailto:nsladsales@internet.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
For information about advertising opportunities, visit
http://www.jupiterweb.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
For details on becoming a Commerce Partner, contact David Arganbright
on 1-203-662-2858 or go to www.jupitermedia.com/corporate/licensingform.html
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
To learn about other free newsletters offered by internet.com or
to change your subscription visit http://e-newsletters.internet.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
internet.com's network of more than 160 Web sites is organized into 12
channels:
Developer http://internet.com/webdev/
Download http://internet.com/downloads/
International http://internet.com/international/
Internet Lists http://internet.com/lists/
Internet News http://internet.com/news/
Internet Resources http://internet.com/resources/
IT http://internet.com/it/
Small Business http://internet.com/sb/
Linux/Open Source http://internet.com/linux/
Windows Technology http://internet.com/win/
Wireless Internet http://internet.com/wireless/
xSP Resources http://internet.com/xsp/
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
To find an answer - http://search.internet.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Looking for a job? Filling an opening? - http://jobs.internet.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This newsletter is published by Jupitermedia Corporation
Copyright (c) 2005 Jupitermedia Corporation. All rights reserved.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
For information on reprinting or linking to Jupitermedia content:
http://www.jupitermedia.com/corporate/permissionform.html
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

You are subscribed to the eSecurity Planet newsletter as security.world@gmail.com. To unsubscribe from eSecurity Planet please send an email to: u-137a4-9058ade9fc-1768@nl.internet.com

To manage your newsletter subscription preferences, visit this location: http://nl.internet.com/profilepage.html?uid=9058ade9fc&eid=13028466

To unsubscribe via postal mail, please contact us at:

Jupitermedia Corp.
Attn: Newsletter Subscription Dept.
475 Park Avenue South
New York, NY 10016

Please include the email address which you have been contacted with.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This email is powered by EmailLabs (http://www.emaillabs.com)
Contact us for a FREE demo account

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)