Author Topic: SECURITY WARNINGS & Notices - Please post them here  (Read 2827314 times)

0 Members and 3 Guests are viewing this topic.

Alan Baxter

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #375 on: April 24, 2010, 06:36:28 AM »
Now also Fx is vulnerable to the newest Zeus version via HTML injection: http://www.scmagazineus.com/new-zeus-version-targeting-firefox-users-for-bank-fraud/article/168455/

It's good to know that Zeus isn't transmitted by a Firefox vulnerability. But once you've got it, even Firefox won't save you. Will Avast 5 block this new variant of Zeus?

http://www.scmagazineus.com/new-zeus-version-targeting-firefox-users-for-bank-fraud/article/168455/
Quote
In an email sent to SCMagazineUS.com on Wednesday, a spokesperson at Mozilla said that Zeus is not exploiting a vulnerability within Firefox, but is installed once a system has already been compromised.

"Once malware like Zeus is on a user's system, every application they use is at risk," the Mozilla spokesperson said.
Previous versions of Zeus had fairly limited capabilities for Firefox compared to those for Microsoft's Internet Explorer (IE) browser, Boodaei said. On Firefox, for example, the trojan previously was not capable of changing a bank's login page or altering a user's online transactions. As a result, most fraud incidents associated with Zeus have been sustained by users of IE.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33871
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #376 on: April 25, 2010, 06:08:18 PM »
Hi malware fighters,

Ongoing Twitter Support spam campaign
http://news.softpedia.com/newsImage/Email-Spam-Run-Impersonates-Twitter-Support-Staff-3.jpg/

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline mkis

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1618
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #377 on: April 25, 2010, 09:00:08 PM »
Not sure if this email was part of a spam campaign - profile of the sender was suspended a few hours later.

I did take the email as genuine, if perhaps a lttle bent -
did take me to Twitter, where the sender was following my tweets
sender only had three entries, one of which directed the viewer to 'meet the locals', most of whom were showing themselves off in various stages of undress, down to no dress at all. Including the sender I gather, but a girl was visiting at the time, and she informed me that this person - the sender - was not for me at all.  :)

And later, the sender's profile was suspended (does that mean withdrawn possibly?). But I think genuine Twitter

btw - I was on Firefox at the time, but the redirects to 'meet the locals' can still be found in my Chrome history (records all browsers), and they are still 'live', are they are showing the links to be local.
« Last Edit: April 26, 2010, 03:09:21 AM by mkis »
Avast7 Free, MBAM (on demand), MVPS Hosts

Intel DG41TY, Windows 7 Ultimate, IE9, Google Chrome, 4 GB ram, Secunia PSI, ccleaner, Foxit Reader, Faststone Image viewer, MWSnap.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37472
  • Not a avast user
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #378 on: April 25, 2010, 11:24:42 PM »
Sunbelt Software and Malwarebytes Partner to Improve the Security of the Internet
http://www.sunbeltsoftware.com/Press/Releases/?id=346
http://vipre.malwarebytes.org/

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37472
  • Not a avast user

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33871
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #380 on: April 26, 2010, 09:53:11 PM »
Hi malware fighters,

The blippy service leaked creditcard data to be found on Google: http://venturebeat.com/2010/04/23/blippy-credit-card-citibank/
Be aware with whom you share confidential data...

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline mkis

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1618
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #381 on: April 27, 2010, 06:42:17 AM »
Not sure whether this has been posted yet. But here goes -

Virus Bulletin - Latest Reactive and Proactive (RAP) test results
http://www.virusbtn.com/index

Efforts to perceptual map prevalence of virus and virus detection

http://docs.google.com/View?id=ah85g3kzb4tn_274cx84gggh

(I don't readily agree with their perception, but I do like Virus Bulletin)
« Last Edit: April 28, 2010, 12:37:57 AM by mkis »
Avast7 Free, MBAM (on demand), MVPS Hosts

Intel DG41TY, Windows 7 Ultimate, IE9, Google Chrome, 4 GB ram, Secunia PSI, ccleaner, Foxit Reader, Faststone Image viewer, MWSnap.

Hermite15

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #382 on: April 27, 2010, 11:13:53 AM »
Users' passwords exposed by Splunk
http://www.theregister.co.uk/2010/04/26/splunk_passwords_revealed/

Quote
Splunk, a kind of Google for business technology that boasts it can help reinforce your security, has exposed the details of major customers to hackers following a web site slip up.

The passwords of customers on Splunk.com were revealed after some debug information leaked on to its production servers. The debug code exposed users passwords to Splunk.com as clear text, the company said. The site contained the emails and user names customers had used to register with Spluk.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37472
  • Not a avast user

Offline mkis

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1618
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #384 on: April 28, 2010, 02:09:01 PM »
Secunia - Vulnerabilities vs. attack vectors...

http://secunia.com/blog/97
Avast7 Free, MBAM (on demand), MVPS Hosts

Intel DG41TY, Windows 7 Ultimate, IE9, Google Chrome, 4 GB ram, Secunia PSI, ccleaner, Foxit Reader, Faststone Image viewer, MWSnap.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33871
  • malware fighter
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #385 on: April 28, 2010, 08:11:21 PM »
Hi malware fighters,

First attempt to launch malcode from within PDF-file without the use of JS:
http://secshoggoth.blogspot.com/2010/04/launch-malicious-pdf.html
There is more to come, be aware...

pol

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

spg SCOTT

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #386 on: April 29, 2010, 08:13:18 PM »
ALL photocopied documents are stored on a hard drive within a hard drive in the photocopier...Potential Risk for information leaks...
 :o :o :o :o :o

http://www.cbsnews.com/stories/2010/04/19/eveningnews/main6412439.shtml

Wow, never even knew about this...

YoKenny

  • Guest
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #387 on: April 29, 2010, 08:35:30 PM »
ALL photocopied documents are stored on a hard drive within a hard drive in the photocopier...Potential Risk for information leaks...
 :o :o :o :o :o

http://www.cbsnews.com/stories/2010/04/19/eveningnews/main6412439.shtml

Wow, never even knew about this...
The most important information there:
How Bullock Kept Her Baby Adoption Secret
http://www.cbsnews.com/stories/2010/04/29/earlyshow/leisure/celebspot/main6443520.shtml?tag=strip

Offline nmb

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3054
Re: SECURITY WARNINGS & Notices - Please post them here
« Reply #388 on: April 30, 2010, 11:48:53 AM »
India now the primary producer of viruses

I feel bad : http://www.net-security.org/malware_news.php?id=1320  :( >:(

Avast! guys.. you got a bot in India?

nmb

Offline mkis

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1618
Avast7 Free, MBAM (on demand), MVPS Hosts

Intel DG41TY, Windows 7 Ultimate, IE9, Google Chrome, 4 GB ram, Secunia PSI, ccleaner, Foxit Reader, Faststone Image viewer, MWSnap.